Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.mft
File: R7lNsbPetIBa0mFVS65rpfp0CMs.mft (raw, json)
Hash identifier: rEPLT+l1bpI11W63vApXGM48mbQBqqMdcaIQ/3ahnLE=
Subject key identifier: 2F:0C:B5:95:16:85:FF:11:EF:3D:0B:EF:39:B4:63:AB:36:7A:02:09
Authority key identifier: 47:B9:4D:B1:B3:DE:B4:80:5A:D2:61:55:4B:AE:6B:A5:FA:74:08:CB
Certificate issuer: /CN=47b94db1b3deb4805ad261554bae6ba5fa7408cb
Certificate serial: 019510C74360714E08A28FD16BB416FC1EEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R7lNsbPetIBa0mFVS65rpfp0CMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.mft
Manifest number: 1451
Signing time: Sun 16 Feb 2025 22:00:49 +0000
Manifest this update: Sun 16 Feb 2025 22:00:49 +0000
Manifest next update: Mon 17 Feb 2025 22:00:49 +0000
Files and hashes: 1: R7lNsbPetIBa0mFVS65rpfp0CMs.crl (hash: fcxV9U6DfJ5CIUv4sx46gU1nMKD24ovjlT1ZyUB/yUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/R7lNsbPetIBa0mFVS65rpfp0CMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:43:60:71:4e:08:a2:8f:d1:6b:b4:16:fc:1e:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47b94db1b3deb4805ad261554bae6ba5fa7408cb
Validity
Not Before: Feb 16 22:00:49 2025 GMT
Not After : Feb 17 22:00:49 2025 GMT
Subject: CN=2f0cb5951685ff11ef3d0bef39b463ab367a0209
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:95:3b:09:8e:1a:f9:0d:a5:9a:7e:ac:f9:ee:
90:6f:01:ed:e9:ac:f7:a2:7d:1b:ff:89:12:86:2a:
b3:1c:fe:67:6e:e8:bc:2d:67:43:bf:c4:75:26:e8:
22:f8:a8:5c:37:80:2e:d1:c5:ea:fe:d8:f1:77:59:
e7:0a:d8:ff:bb:11:f4:3f:c4:e4:27:56:bb:78:1d:
79:52:78:18:00:89:15:8b:25:68:d2:d5:e3:ab:1d:
ba:4b:42:2b:52:a0:94:d0:79:69:c6:61:10:b3:68:
37:49:a1:0e:36:93:ea:3a:7b:e3:84:4b:ef:a6:88:
3e:92:49:cf:01:7c:19:84:b0:e6:36:4a:fd:67:92:
38:ca:fd:67:13:ed:6c:a7:c7:a8:03:d9:5e:27:75:
6f:25:20:ce:f6:7d:00:2b:ba:fe:40:bf:80:69:a5:
4c:4c:c0:39:bf:71:45:53:9d:36:ca:ca:64:5a:f4:
ef:6f:67:bf:eb:c8:3e:73:08:6e:5e:82:e3:60:21:
c3:c2:f6:57:83:f8:c4:99:b1:f2:4a:8b:81:77:7b:
30:57:4a:32:63:96:a8:35:77:c5:db:06:7e:25:4a:
9e:86:3f:c3:78:86:f4:6b:27:5e:b1:32:29:65:aa:
2c:cb:18:c5:9e:f2:99:b1:1d:a2:27:ce:b6:e3:1c:
6e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:0C:B5:95:16:85:FF:11:EF:3D:0B:EF:39:B4:63:AB:36:7A:02:09
X509v3 Authority Key Identifier:
keyid:47:B9:4D:B1:B3:DE:B4:80:5A:D2:61:55:4B:AE:6B:A5:FA:74:08:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R7lNsbPetIBa0mFVS65rpfp0CMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:18:09:eb:79:33:e0:37:b5:42:57:ea:98:07:98:67:dc:d9:
44:ba:ff:86:88:d6:b8:7f:e8:4e:3e:23:38:9b:45:fa:94:d4:
27:8d:70:61:15:0e:df:ce:cd:f1:ef:c2:ed:6e:32:28:00:c0:
09:02:b0:24:6a:83:bd:a7:c3:80:8a:ed:84:1f:e7:2e:b4:88:
6b:4b:77:5d:c4:fc:56:99:42:c7:9b:f4:32:01:96:61:25:7e:
88:a5:ad:53:14:b3:e1:e7:62:3f:55:14:a8:78:19:e7:ad:8d:
b8:72:bc:11:4c:8f:0b:b5:42:b3:b3:11:8b:b9:2c:0d:9b:10:
be:ec:83:66:63:4e:ae:e1:73:e8:0c:8c:23:dd:2a:06:c9:a9:
c0:c4:31:eb:8d:85:45:c5:49:f7:8d:ce:e8:f2:c0:eb:92:9f:
0d:41:59:6d:51:3f:3c:cc:ce:69:50:64:26:43:23:96:b6:cf:
c0:3d:97:41:de:c2:09:13:64:6c:ac:35:f8:fc:0e:ab:85:75:
c5:1f:6f:8b:a9:ec:a8:0a:06:14:1c:66:c2:6d:24:74:d3:32:
2a:94:6c:68:88:c4:e8:05:50:3e:a3:e8:23:79:cc:34:9f:72:
47:d7:08:6f:49:48:6e:e9:d2:2a:7a:08:eb:a7:0c:8d:37:14:
3e:98:30:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQx0NgcU4Ioo/Ra7QW/B7vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ3Yjk0ZGIxYjNkZWI0ODA1YWQyNjE1NTRiYWU2YmE1ZmE3
NDA4Y2IwHhcNMjUwMjE2MjIwMDQ5WhcNMjUwMjE3MjIwMDQ5WjAzMTEwLwYDVQQD
EygyZjBjYjU5NTE2ODVmZjExZWYzZDBiZWYzOWI0NjNhYjM2N2EwMjA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt5U7CY4a+Q2lmn6s+e6QbwHt6az3
on0b/4kShiqzHP5nbui8LWdDv8R1Jugi+KhcN4Au0cXq/tjxd1nnCtj/uxH0P8Tk
J1a7eB15UngYAIkViyVo0tXjqx26S0IrUqCU0HlpxmEQs2g3SaEONpPqOnvjhEvv
pog+kknPAXwZhLDmNkr9Z5I4yv1nE+1sp8eoA9leJ3VvJSDO9n0AK7r+QL+AaaVM
TMA5v3FFU502yspkWvTvb2e/68g+cwhuXoLjYCHDwvZXg/jEmbHySouBd3swV0oy
Y5aoNXfF2wZ+JUqehj/DeIb0aydesTIpZaosyxjFnvKZsR2iJ8624xxuUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC8MtZUWhf8R7z0L7zm0Y6s2egIJMB8GA1UdIwQY
MBaAFEe5TbGz3rSAWtJhVUuua6X6dAjLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUjdsTnNiUGV0SUJhMG1GVlM2NXJwZnAwQ01zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC84NzFmOGUtZTdjMC00MjY0LWJhZWEt
MmMyOTRlYzgxMjk3LzEvUjdsTnNiUGV0SUJhMG1GVlM2NXJwZnAwQ01zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC84NzFmOGUtZTdjMC00MjY0LWJhZWEtMmMyOTRlYzgxMjk3
LzEvUjdsTnNiUGV0SUJhMG1GVlM2NXJwZnAwQ01zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJRgJ63kz
4De1QlfqmAeYZ9zZRLr/hojWuH/oTj4jOJtF+pTUJ41wYRUO387N8e/C7W4yKADA
CQKwJGqDvafDgIrthB/nLrSIa0t3XcT8VplCx5v0MgGWYSV+iKWtUxSz4ediP1UU
qHgZ562NuHK8EUyPC7VCs7MRi7ksDZsQvuyDZmNOruFz6AyMI90qBsmpwMQx642F
RcVJ943O6PLA65KfDUFZbVE/PMzOaVBkJkMjlrbPwD2XQd7CCRNkbKw1+PwOq4V1
xR9vi6nsqAoGFBxmwm0kdNMyKpRsaIjE6AVQPqPoI3nMNJ9yR9cIb0lIbunSKnoI
66cMjTcUPpgwYg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:30:39 2025 by rpki-client