Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.mft
File: YAc2XgzzDKj86YxiZg0YapebyVk.mft (raw, json)
Hash identifier: 5SEEOihQMnt9b0BwUS/uEUwf8gRvEipZYrsF9oR1veQ=
Subject key identifier: 2A:FC:B7:16:36:4F:2C:CA:F0:40:C2:A2:14:5A:20:F6:65:4B:ED:4E
Authority key identifier: 60:07:36:5E:0C:F3:0C:A8:FC:E9:8C:62:66:0D:18:6A:97:9B:C9:59
Certificate issuer: /CN=6007365e0cf30ca8fce98c62660d186a979bc959
Certificate serial: 0194C463BB9F8C9AED1DDC7083A99F7468D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAc2XgzzDKj86YxiZg0YapebyVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.mft
Manifest number: 078C
Signing time: Sun 02 Feb 2025 02:00:57 +0000
Manifest this update: Sun 02 Feb 2025 02:00:57 +0000
Manifest next update: Mon 03 Feb 2025 02:00:57 +0000
Files and hashes: 1: Oc_LJaADC2cknQ1kKmCdsTOaMZk.roa (hash: JMTbvNQOvHmoLJzyFa8UDUWlgTHr2CpWgpqDOMIvsck=)
2: YAc2XgzzDKj86YxiZg0YapebyVk.crl (hash: FcpS3V/VRDK9FaU/D4otwGsiFWBw3mWwop3vjnhgvCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.mft
rsync://rpki.ripe.net/repository/DEFAULT/YAc2XgzzDKj86YxiZg0YapebyVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:63:bb:9f:8c:9a:ed:1d:dc:70:83:a9:9f:74:68:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6007365e0cf30ca8fce98c62660d186a979bc959
Validity
Not Before: Feb 2 02:00:57 2025 GMT
Not After : Feb 3 02:00:57 2025 GMT
Subject: CN=2afcb716364f2ccaf040c2a2145a20f6654bed4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:2a:81:20:93:b8:ba:ee:4b:6f:1d:48:46:32:
0a:d8:80:33:96:d4:ca:ef:10:6f:af:26:cf:d6:8f:
03:b2:4f:cb:63:32:f6:fe:0c:95:a1:07:7a:99:8d:
26:f6:07:e8:c1:fa:56:dd:ac:1c:28:4f:d2:a6:3c:
31:a0:3f:d4:df:6f:14:a6:15:33:a2:12:b7:77:0b:
c6:26:d3:88:13:d5:a9:75:3e:ff:a8:84:87:b7:4b:
be:df:81:c4:95:e4:fe:ed:7a:f4:ef:e0:28:2a:ad:
82:b0:33:21:14:95:5c:11:40:cd:ff:da:fd:67:ed:
6b:2e:49:70:fe:0c:31:6d:6b:cd:46:5e:43:b7:04:
ae:1d:c5:69:03:08:9d:aa:ef:8b:4d:43:28:89:8d:
21:00:8e:89:3c:98:a8:d7:5f:6f:12:5f:e5:63:78:
91:18:cb:22:fb:27:f1:2d:9b:ea:49:4e:76:e0:33:
d7:69:9d:a7:a5:66:71:fb:26:04:7c:4a:fb:41:58:
d4:5b:ea:6e:ed:0b:2c:2b:b1:35:5d:d6:84:bf:89:
fe:0e:46:14:83:39:67:9f:bf:94:f1:35:fc:c1:93:
10:52:74:5d:71:14:40:47:dd:5b:18:d9:4a:a3:20:
fc:87:b8:90:ea:39:34:1e:60:84:cf:41:24:43:5f:
0e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:FC:B7:16:36:4F:2C:CA:F0:40:C2:A2:14:5A:20:F6:65:4B:ED:4E
X509v3 Authority Key Identifier:
keyid:60:07:36:5E:0C:F3:0C:A8:FC:E9:8C:62:66:0D:18:6A:97:9B:C9:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAc2XgzzDKj86YxiZg0YapebyVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:97:0b:68:40:15:8d:66:ae:a0:89:a5:d6:58:46:13:df:df:
f2:26:46:54:c7:80:b4:62:c8:50:7a:db:88:70:f6:52:04:b6:
cf:b6:fd:67:e3:5a:3d:c5:ef:6f:34:32:28:c6:79:d0:f7:29:
af:c1:f6:3e:ba:23:be:70:04:6c:e5:58:bd:ac:a3:4e:8f:5e:
6e:cb:6b:ed:f2:8c:ff:95:e1:43:4c:3d:f4:b5:4b:f9:c0:20:
bf:5a:63:df:be:36:fa:16:bb:8a:86:41:df:99:59:3a:2c:38:
4e:7d:03:44:05:0b:65:44:45:69:4f:3c:bb:42:e9:64:91:5f:
14:9c:d1:8a:04:e2:52:9a:bc:b8:c8:e5:4c:39:b2:38:d5:1f:
b3:66:31:81:5d:35:4e:48:d5:42:ca:1b:fe:ce:4f:78:f4:5c:
44:ba:08:fb:65:0a:17:7e:a7:d4:bf:ab:76:64:50:c4:04:72:
dc:15:da:34:db:9d:93:33:c6:63:d3:29:83:48:12:a0:a7:0d:
ea:e2:89:68:38:a1:bb:0d:64:00:c9:7e:d9:0e:87:4c:ff:9b:
66:a6:f1:51:73:3d:8a:9c:a5:ba:b8:92:de:6d:c2:52:e2:3b:
68:81:4d:3e:e8:13:db:24:26:66:aa:a4:67:13:06:06:0a:2b:
a6:2b:2d:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTEY7ufjJrtHdxwg6mfdGjUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwMDczNjVlMGNmMzBjYThmY2U5OGM2MjY2MGQxODZhOTc5
YmM5NTkwHhcNMjUwMjAyMDIwMDU3WhcNMjUwMjAzMDIwMDU3WjAzMTEwLwYDVQQD
EygyYWZjYjcxNjM2NGYyY2NhZjA0MGMyYTIxNDVhMjBmNjY1NGJlZDRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApSqBIJO4uu5Lbx1IRjIK2IAzltTK
7xBvrybP1o8Dsk/LYzL2/gyVoQd6mY0m9gfowfpW3awcKE/SpjwxoD/U328UphUz
ohK3dwvGJtOIE9WpdT7/qISHt0u+34HEleT+7Xr07+AoKq2CsDMhFJVcEUDN/9r9
Z+1rLklw/gwxbWvNRl5DtwSuHcVpAwidqu+LTUMoiY0hAI6JPJio119vEl/lY3iR
GMsi+yfxLZvqSU524DPXaZ2npWZx+yYEfEr7QVjUW+pu7QssK7E1XdaEv4n+DkYU
gzlnn7+U8TX8wZMQUnRdcRRAR91bGNlKoyD8h7iQ6jk0HmCEz0EkQ18OSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCr8txY2TyzK8EDCohRaIPZlS+1OMB8GA1UdIwQY
MBaAFGAHNl4M8wyo/OmMYmYNGGqXm8lZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUFjMlhnenpES2o4Nll4aVpnMFlhcGVieVZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi84MjZlZWItMGJiMi00MmE4LTg0ZTIt
Yjc1YjQ5MDQ5ODJmLzEvWUFjMlhnenpES2o4Nll4aVpnMFlhcGVieVZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi84MjZlZWItMGJiMi00MmE4LTg0ZTItYjc1YjQ5MDQ5ODJm
LzEvWUFjMlhnenpES2o4Nll4aVpnMFlhcGVieVZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGZcLaEAV
jWauoIml1lhGE9/f8iZGVMeAtGLIUHrbiHD2UgS2z7b9Z+NaPcXvbzQyKMZ50Pcp
r8H2ProjvnAEbOVYvayjTo9ebstr7fKM/5XhQ0w99LVL+cAgv1pj3742+ha7ioZB
35lZOiw4Tn0DRAULZURFaU88u0LpZJFfFJzRigTiUpq8uMjlTDmyONUfs2YxgV01
TkjVQsob/s5PePRcRLoI+2UKF36n1L+rdmRQxARy3BXaNNudkzPGY9Mpg0gSoKcN
6uKJaDihuw1kAMl+2Q6HTP+bZqbxUXM9ipyluriS3m3CUuI7aIFNPugT2yQmZqqk
ZxMGBgorpistsQ==
-----END CERTIFICATE-----
Generated at Sun Feb 2 07:07:18 2025 by rpki-client