Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft
File: pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft (raw, json)
Hash identifier: R4VqfSZACSTsBGpaAd8cnn9cTPE5D4Poa+dhJ3o2lic=
Subject key identifier: CC:98:25:67:89:1F:F7:63:C2:BD:37:63:30:A9:B5:AD:55:88:54:05
Authority key identifier: A4:F5:53:3A:52:7B:26:4C:A2:E8:37:32:85:D7:80:D3:3A:2B:D0:A1
Certificate issuer: /CN=a4f5533a527b264ca2e8373285d780d33a2bd0a1
Certificate serial: 019511A2FBE0EE94BF0C7CAA8389771B1E0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft
Manifest number: EA
Signing time: Mon 17 Feb 2025 02:00:48 +0000
Manifest this update: Mon 17 Feb 2025 02:00:48 +0000
Manifest next update: Tue 18 Feb 2025 02:00:48 +0000
Files and hashes: 1: aU9nU6J43VKML7pOttC9ZY6jQ98.roa (hash: FbRy0Mzafv2hiOEuNsxPoMw70K3GoSJZXHuz7LnmQeE=)
2: pPVTOlJ7Jkyi6DcyhdeA0zor0KE.crl (hash: qhuZ11JaOQNd9QfoNzDjpevIRTz+NIWwOHFxhZ1yIk8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft
rsync://rpki.ripe.net/repository/DEFAULT/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:fb:e0:ee:94:bf:0c:7c:aa:83:89:77:1b:1e:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f5533a527b264ca2e8373285d780d33a2bd0a1
Validity
Not Before: Feb 17 02:00:48 2025 GMT
Not After : Feb 18 02:00:48 2025 GMT
Subject: CN=cc982567891ff763c2bd376330a9b5ad55885405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:ee:c6:aa:21:49:eb:d2:c6:6b:24:f1:75:6b:
2e:68:84:ae:c5:fa:47:72:fc:ac:be:54:69:b2:ef:
f6:90:75:c6:01:47:70:59:96:68:74:ed:a1:43:bb:
e1:8a:20:a3:94:c2:d3:e0:fa:74:a9:f6:13:9b:19:
55:7d:6c:76:5d:fe:ce:21:7e:9f:c8:59:b8:fd:6b:
5d:ae:4f:61:53:46:cc:fd:6d:52:b1:d6:e1:55:da:
f1:f7:9b:0e:fd:0d:9e:7a:fd:f0:9d:a7:f7:f1:5d:
ec:78:81:f0:87:7d:7a:6d:18:eb:57:bc:fd:e5:0d:
00:ad:c7:6c:ef:0f:99:60:e0:af:0d:a3:71:23:88:
be:1a:8e:c0:21:5f:e4:62:ee:4b:c1:e4:00:e8:3b:
99:3f:d7:d2:1d:99:35:3f:37:7c:db:7d:24:2a:65:
53:d8:21:09:09:92:2b:ca:2e:5f:41:8e:ca:80:45:
4d:95:cd:df:d4:4a:c1:bd:f5:0e:70:8f:bc:02:07:
53:96:0b:03:64:c2:16:20:f5:7d:ef:75:61:80:fa:
46:ec:1d:79:0d:0d:a3:03:67:72:48:90:3f:3e:08:
99:6d:2e:50:27:2f:0d:76:39:23:ab:60:d3:45:27:
09:ef:ce:b7:09:ae:f5:7e:e1:66:30:34:3d:b5:36:
82:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:98:25:67:89:1F:F7:63:C2:BD:37:63:30:A9:B5:AD:55:88:54:05
X509v3 Authority Key Identifier:
keyid:A4:F5:53:3A:52:7B:26:4C:A2:E8:37:32:85:D7:80:D3:3A:2B:D0:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:94:ac:97:27:57:70:f2:62:64:97:8c:e2:52:59:ec:bb:e9:
16:af:f8:9e:54:5e:84:92:2f:75:9c:e7:e2:8d:89:57:05:a5:
76:c6:ca:31:0f:4f:20:76:fb:c1:78:a8:d8:e9:33:86:4a:9f:
ff:58:6e:e3:07:a4:c8:b6:f8:3b:82:6c:d0:e6:96:2c:5e:2d:
7b:37:c7:d9:bd:b3:fb:89:79:0e:f5:1b:ca:d9:53:d1:8a:2e:
5c:07:df:11:37:9c:de:5f:69:ea:9c:8e:0f:d9:d6:0a:b7:55:
5a:c1:b3:be:82:d5:32:c7:46:4e:98:6a:5d:68:e4:c4:a6:ab:
c3:76:ec:c9:2c:f6:53:4a:1f:3b:93:ea:24:81:75:93:39:35:
74:ee:1f:3a:ac:22:d6:8b:9b:76:65:9a:24:5b:b8:df:42:1a:
1d:61:fd:29:e4:c6:a0:f7:e9:bb:23:fb:43:d2:12:57:5c:90:
2f:b8:4e:e5:71:62:22:fd:35:ed:99:72:7d:28:07:f7:f6:11:
e4:c8:92:f0:ab:58:41:9a:06:39:c6:26:18:2c:b5:c8:2b:a3:
15:70:f0:d5:99:3f:6c:18:6c:1a:0b:5c:55:c2:ee:4d:4e:0f:
03:6b:2e:6d:f5:09:8f:2d:4a:ce:2e:d5:d8:79:4d:28:31:93:
c6:f8:d4:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURovvg7pS/DHyqg4l3Gx4LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0ZjU1MzNhNTI3YjI2NGNhMmU4MzczMjg1ZDc4MGQzM2Ey
YmQwYTEwHhcNMjUwMjE3MDIwMDQ4WhcNMjUwMjE4MDIwMDQ4WjAzMTEwLwYDVQQD
EyhjYzk4MjU2Nzg5MWZmNzYzYzJiZDM3NjMzMGE5YjVhZDU1ODg1NDA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9u7GqiFJ69LGayTxdWsuaISuxfpH
cvysvlRpsu/2kHXGAUdwWZZodO2hQ7vhiiCjlMLT4Pp0qfYTmxlVfWx2Xf7OIX6f
yFm4/Wtdrk9hU0bM/W1SsdbhVdrx95sO/Q2eev3wnaf38V3seIHwh316bRjrV7z9
5Q0Arcds7w+ZYOCvDaNxI4i+Go7AIV/kYu5LweQA6DuZP9fSHZk1Pzd8230kKmVT
2CEJCZIryi5fQY7KgEVNlc3f1ErBvfUOcI+8AgdTlgsDZMIWIPV973VhgPpG7B15
DQ2jA2dySJA/PgiZbS5QJy8Ndjkjq2DTRScJ7863Ca71fuFmMDQ9tTaCrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMyYJWeJH/djwr03YzCpta1ViFQFMB8GA1UdIwQY
MBaAFKT1UzpSeyZMoug3MoXXgNM6K9ChMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFBWVE9sSjdKa3lpNkRjeWhkZUEwem9yMEtFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9hZmMzYzgtZTk1Mi00MDcwLWE1NDYt
NDI0NDYyYmM5NDliLzEvcFBWVE9sSjdKa3lpNkRjeWhkZUEwem9yMEtFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi9hZmMzYzgtZTk1Mi00MDcwLWE1NDYtNDI0NDYyYmM5NDli
LzEvcFBWVE9sSjdKa3lpNkRjeWhkZUEwem9yMEtFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd5SslydX
cPJiZJeM4lJZ7LvpFq/4nlRehJIvdZzn4o2JVwWldsbKMQ9PIHb7wXio2Okzhkqf
/1hu4wekyLb4O4Js0OaWLF4tezfH2b2z+4l5DvUbytlT0YouXAffETec3l9p6pyO
D9nWCrdVWsGzvoLVMsdGTphqXWjkxKarw3bsySz2U0ofO5PqJIF1kzk1dO4fOqwi
1oubdmWaJFu430IaHWH9KeTGoPfpuyP7Q9ISV1yQL7hO5XFiIv017ZlyfSgH9/YR
5MiS8KtYQZoGOcYmGCy1yCujFXDw1Zk/bBhsGgtcVcLuTU4PA2subfUJjy1Kzi7V
2HlNKDGTxvjUdw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:03 2025 by rpki-client