Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
File: lQSgmkWW2BV9pp3DNGxavOTOThM.mft (raw, json)
Hash identifier: p+plegQSbSTDweIy2/FdYM/OyCq27HlTbuk+Qm5lyRU=
Subject key identifier: 43:A5:AD:4F:B0:31:05:F9:00:ED:A1:FA:61:49:CA:DE:A2:A6:ED:E5
Authority key identifier: 95:04:A0:9A:45:96:D8:15:7D:A6:9D:C3:34:6C:5A:BC:E4:CE:4E:13
Certificate issuer: /CN=9504a09a4596d8157da69dc3346c5abce4ce4e13
Certificate serial: 0194C3BE42E6FDB42D0CB99B4F83413514F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
Manifest number: 8A
Signing time: Sat 01 Feb 2025 23:00:13 +0000
Manifest this update: Sat 01 Feb 2025 23:00:13 +0000
Manifest next update: Sun 02 Feb 2025 23:00:13 +0000
Files and hashes: 1: lQSgmkWW2BV9pp3DNGxavOTOThM.crl (hash: TPEvicqpUcX6g0CYGa1X+anSo/XesSvhLHGVEmvGpJU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 23:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:be:42:e6:fd:b4:2d:0c:b9:9b:4f:83:41:35:14:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9504a09a4596d8157da69dc3346c5abce4ce4e13
Validity
Not Before: Feb 1 23:00:13 2025 GMT
Not After : Feb 2 23:00:13 2025 GMT
Subject: CN=43a5ad4fb03105f900eda1fa6149cadea2a6ede5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:65:ee:5e:54:8b:7e:c2:24:a1:3b:27:7f:61:
22:c0:ba:61:0b:aa:bf:fd:ca:61:d2:83:7e:cc:df:
bb:0c:2e:f8:39:47:9b:ca:7d:ba:f3:b3:b0:7f:ff:
d4:3f:bb:95:e4:b1:b9:cf:fd:25:ba:8b:7e:ee:7f:
9e:30:33:15:5d:6e:dc:0c:59:c3:20:83:d3:92:f7:
48:3b:1a:b0:e5:eb:8e:0d:9b:da:ce:70:07:38:bc:
c9:16:be:95:1e:b9:e4:f0:dd:6b:87:25:c5:4d:16:
2f:dd:fd:8d:13:7f:0f:98:9a:83:e1:7a:e8:ac:9e:
8b:5b:56:08:6f:ca:8a:94:ac:95:84:c5:11:b4:46:
59:9f:28:bb:76:1c:f1:89:39:56:10:76:cf:fe:ea:
fc:94:7b:68:69:9c:04:7b:99:45:76:41:21:ab:e5:
06:67:83:3b:af:b3:47:9a:90:c6:d5:57:c2:87:54:
79:07:a2:8d:ea:16:95:04:db:8c:49:e8:90:11:12:
e8:a8:63:ac:a1:b3:7d:fc:42:9d:15:dd:ba:06:b6:
65:f3:c7:ad:d1:74:d0:8c:96:d4:ec:17:28:de:f1:
a8:65:4c:44:08:69:ac:20:60:ab:29:c3:e7:d7:fa:
c1:a9:78:cf:4a:52:99:fb:f7:bb:33:96:b6:00:fd:
a9:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:A5:AD:4F:B0:31:05:F9:00:ED:A1:FA:61:49:CA:DE:A2:A6:ED:E5
X509v3 Authority Key Identifier:
keyid:95:04:A0:9A:45:96:D8:15:7D:A6:9D:C3:34:6C:5A:BC:E4:CE:4E:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:0a:c9:cf:62:d4:7c:94:54:ce:fc:49:33:59:7a:cb:d0:1f:
14:49:d0:04:cc:50:7a:be:3b:92:27:ec:e1:8e:5b:7f:25:f0:
f9:0c:89:b4:d9:1a:34:2c:c4:4e:dd:7c:38:34:06:7f:fe:81:
d5:6c:86:fc:fd:2e:2a:d5:e5:32:c3:56:60:40:c7:ee:17:0e:
41:75:0c:72:69:e7:1e:26:ae:5a:5b:a6:01:32:00:3b:95:06:
03:8b:56:13:bd:f9:96:1d:f3:73:15:75:7d:bc:4a:f9:c6:9f:
57:7d:53:24:0a:09:88:2b:de:0c:b8:43:07:ca:a1:b3:ea:7d:
c8:f2:d3:fe:db:db:fa:18:0e:47:be:be:00:2b:67:09:a2:db:
5a:35:ca:9c:4c:a0:db:24:58:ef:9b:ab:64:c2:3e:c0:d8:a4:
ab:ee:fe:25:1e:b1:2c:b7:74:16:7b:93:02:4f:24:6d:53:ba:
77:9b:a6:61:1d:3b:cc:5a:40:a4:f8:2f:88:40:d0:a9:b1:55:
b7:33:e6:0e:b8:2a:b1:5f:5e:9a:60:ae:c4:30:48:05:bd:88:
ea:9d:ba:96:c3:4b:24:7b:16:f4:f0:6e:a3:c0:a7:f8:da:79:
a9:72:11:20:d0:0e:ed:3e:14:96:da:c3:45:83:b7:d4:36:e6:
25:79:73:1e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTDvkLm/bQtDLmbT4NBNRTyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1MDRhMDlhNDU5NmQ4MTU3ZGE2OWRjMzM0NmM1YWJjZTRj
ZTRlMTMwHhcNMjUwMjAxMjMwMDEzWhcNMjUwMjAyMjMwMDEzWjAzMTEwLwYDVQQD
Eyg0M2E1YWQ0ZmIwMzEwNWY5MDBlZGExZmE2MTQ5Y2FkZWEyYTZlZGU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl2XuXlSLfsIkoTsnf2EiwLphC6q/
/cph0oN+zN+7DC74OUebyn2687Owf//UP7uV5LG5z/0luot+7n+eMDMVXW7cDFnD
IIPTkvdIOxqw5euODZvaznAHOLzJFr6VHrnk8N1rhyXFTRYv3f2NE38PmJqD4Xro
rJ6LW1YIb8qKlKyVhMURtEZZnyi7dhzxiTlWEHbP/ur8lHtoaZwEe5lFdkEhq+UG
Z4M7r7NHmpDG1VfCh1R5B6KN6haVBNuMSeiQERLoqGOsobN9/EKdFd26BrZl88et
0XTQjJbU7Bco3vGoZUxECGmsIGCrKcPn1/rBqXjPSlKZ+/e7M5a2AP2pLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEOlrU+wMQX5AO2h+mFJyt6ipu3lMB8GA1UdIwQY
MBaAFJUEoJpFltgVfaadwzRsWrzkzk4TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFFTZ21rV1cyQlY5cHAzRE5HeGF2T1RPVGhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC85ZWFmNWMtOGM1NC00NWVkLWJmYzQt
NjczYzM4ODkxNjFkLzEvbFFTZ21rV1cyQlY5cHAzRE5HeGF2T1RPVGhNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC85ZWFmNWMtOGM1NC00NWVkLWJmYzQtNjczYzM4ODkxNjFk
LzEvbFFTZ21rV1cyQlY5cHAzRE5HeGF2T1RPVGhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWgrJz2LU
fJRUzvxJM1l6y9AfFEnQBMxQer47kifs4Y5bfyXw+QyJtNkaNCzETt18ODQGf/6B
1WyG/P0uKtXlMsNWYEDH7hcOQXUMcmnnHiauWlumATIAO5UGA4tWE735lh3zcxV1
fbxK+cafV31TJAoJiCveDLhDB8qhs+p9yPLT/tvb+hgOR76+ACtnCaLbWjXKnEyg
2yRY75urZMI+wNikq+7+JR6xLLd0FnuTAk8kbVO6d5umYR07zFpApPgviEDQqbFV
tzPmDrgqsV9emmCuxDBIBb2I6p26lsNLJHsW9PBuo8Cn+Np5qXIRINAO7T4UltrD
RYO31DbmJXlzHg==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:48:25 2025 by rpki-client