Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft
File: xWYvmAINpON9UO07swICd08pLXo.mft (raw, json)
Hash identifier: lIo5SKdxAig73D6WWRvjshpRnROe3IGQZZjQhZAdD3o=
Subject key identifier: DD:B7:B7:A7:E7:4B:9B:5A:E8:C8:45:EF:10:B4:96:01:CA:A0:83:A5
Authority key identifier: C5:66:2F:98:02:0D:A4:E3:7D:50:ED:3B:B3:02:02:77:4F:29:2D:7A
Certificate issuer: /CN=c5662f98020da4e37d50ed3bb30202774f292d7a
Certificate serial: 0194C3F6147C10D3FFD739E572D233985F97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xWYvmAINpON9UO07swICd08pLXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft
Manifest number: 80
Signing time: Sun 02 Feb 2025 00:01:11 +0000
Manifest this update: Sun 02 Feb 2025 00:01:11 +0000
Manifest next update: Mon 03 Feb 2025 00:01:11 +0000
Files and hashes: 1: k3mYd88nhjXgIJYUkD0IW4wB334.roa (hash: ES4bfd/D7kl4HbO8JFVGRKGNEndi7/c5Oef8CAe6LiM=)
2: xWYvmAINpON9UO07swICd08pLXo.crl (hash: 2Fuk4e9f1aeX5aQjyQ1wHHAKVBvk43zPw8Afo7vguKc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft
rsync://rpki.ripe.net/repository/DEFAULT/xWYvmAINpON9UO07swICd08pLXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f6:14:7c:10:d3:ff:d7:39:e5:72:d2:33:98:5f:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5662f98020da4e37d50ed3bb30202774f292d7a
Validity
Not Before: Feb 2 00:01:11 2025 GMT
Not After : Feb 3 00:01:11 2025 GMT
Subject: CN=ddb7b7a7e74b9b5ae8c845ef10b49601caa083a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:2e:51:eb:fc:f7:5b:1b:fa:e9:d2:9c:93:9e:
8f:40:e1:c9:b0:b2:1e:9d:b7:60:91:30:9f:67:a3:
d6:99:e2:12:af:e8:57:64:8b:a8:19:aa:a0:61:89:
e2:dd:65:c8:89:4d:1d:dc:89:4f:ab:ea:bc:15:3d:
c4:d7:c2:a3:6b:b9:71:c7:3b:da:1e:57:d2:77:97:
f3:a8:18:da:24:42:ae:48:08:c0:7c:c1:f9:47:06:
28:64:5f:cf:40:a3:95:18:50:61:55:85:c7:57:87:
fc:6d:ff:45:71:d4:28:c5:25:b1:76:23:3c:46:f2:
41:9c:a1:8b:1e:ea:f9:40:e3:fa:80:1f:86:9c:3e:
1c:61:42:a0:04:8a:53:ff:f0:56:96:4e:90:16:9b:
77:86:09:19:b8:90:1e:c5:04:a5:d4:74:40:a8:63:
3d:ff:8f:80:ed:b4:2d:37:1d:b6:79:97:33:ae:ba:
16:34:de:f2:51:12:ba:f5:cb:ab:6c:42:37:c6:5d:
01:9d:86:2b:d1:6f:33:00:4b:a9:ef:09:fd:f7:dc:
92:58:81:65:8d:bf:e1:b6:54:a3:29:80:81:73:2a:
11:67:02:15:af:3b:6d:63:2c:f4:6d:e6:8d:1b:7e:
cc:54:17:8a:45:fb:70:50:2c:03:71:d2:5d:28:34:
5c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:B7:B7:A7:E7:4B:9B:5A:E8:C8:45:EF:10:B4:96:01:CA:A0:83:A5
X509v3 Authority Key Identifier:
keyid:C5:66:2F:98:02:0D:A4:E3:7D:50:ED:3B:B3:02:02:77:4F:29:2D:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xWYvmAINpON9UO07swICd08pLXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:34:d4:e3:19:4e:91:50:7a:43:9f:a7:82:d2:c9:d3:32:f1:
c0:ed:4c:42:98:12:2a:b7:ff:e5:e6:58:10:bd:1f:47:f4:fe:
42:ec:e6:40:ca:87:40:88:eb:9e:67:a5:4f:94:0d:26:d2:9f:
95:1f:77:e8:19:ce:5d:cf:4a:e4:35:5a:fb:73:58:19:bb:ca:
36:12:b4:a1:6a:2c:12:c1:63:c8:46:c8:ce:18:0f:fc:02:d6:
94:22:d1:9f:66:bb:ec:ff:03:08:35:f3:e4:98:56:2a:fb:e8:
57:0e:17:89:25:78:e5:a7:2a:45:11:98:66:3d:30:32:c4:12:
a0:ce:4f:ee:e5:34:7a:9d:07:60:10:d1:ca:2b:bc:0f:1c:94:
45:ae:e6:90:56:c2:71:ce:10:b4:cf:bf:b5:41:a2:a1:df:8c:
d3:6a:08:a1:b0:63:8f:3e:c6:7e:8d:06:0b:7a:84:c1:92:c1:
18:42:67:6d:7e:ad:54:df:83:1a:80:21:f0:78:62:ec:67:3b:
1d:58:63:18:bf:e5:fd:b6:85:df:bd:5c:1d:77:9d:de:84:50:
90:0d:d0:c3:e6:54:31:41:dd:ee:2d:89:cf:a2:25:5c:d1:9d:
31:8e:74:ec:6d:c6:52:95:08:d2:e6:23:e3:e1:f7:31:6a:8b:
06:74:e0:38
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTD9hR8ENP/1znlctIzmF+XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1NjYyZjk4MDIwZGE0ZTM3ZDUwZWQzYmIzMDIwMjc3NGYy
OTJkN2EwHhcNMjUwMjAyMDAwMTExWhcNMjUwMjAzMDAwMTExWjAzMTEwLwYDVQQD
EyhkZGI3YjdhN2U3NGI5YjVhZThjODQ1ZWYxMGI0OTYwMWNhYTA4M2E1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2y5R6/z3Wxv66dKck56PQOHJsLIe
nbdgkTCfZ6PWmeISr+hXZIuoGaqgYYni3WXIiU0d3IlPq+q8FT3E18Kja7lxxzva
HlfSd5fzqBjaJEKuSAjAfMH5RwYoZF/PQKOVGFBhVYXHV4f8bf9FcdQoxSWxdiM8
RvJBnKGLHur5QOP6gB+GnD4cYUKgBIpT//BWlk6QFpt3hgkZuJAexQSl1HRAqGM9
/4+A7bQtNx22eZczrroWNN7yURK69curbEI3xl0BnYYr0W8zAEup7wn999ySWIFl
jb/htlSjKYCBcyoRZwIVrzttYyz0beaNG37MVBeKRftwUCwDcdJdKDRc4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN23t6fnS5ta6MhF7xC0lgHKoIOlMB8GA1UdIwQY
MBaAFMVmL5gCDaTjfVDtO7MCAndPKS16MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveFdZdm1BSU5wT045VU8wN3N3SUNkMDhwTFhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi81ZDZjMTUtYTU4OC00MWRjLWE2YTIt
Zjg5OTc3YTQ1YjYwLzEveFdZdm1BSU5wT045VU8wN3N3SUNkMDhwTFhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi81ZDZjMTUtYTU4OC00MWRjLWE2YTItZjg5OTc3YTQ1YjYw
LzEveFdZdm1BSU5wT045VU8wN3N3SUNkMDhwTFhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKjTU4xlO
kVB6Q5+ngtLJ0zLxwO1MQpgSKrf/5eZYEL0fR/T+QuzmQMqHQIjrnmelT5QNJtKf
lR936BnOXc9K5DVa+3NYGbvKNhK0oWosEsFjyEbIzhgP/ALWlCLRn2a77P8DCDXz
5JhWKvvoVw4XiSV45acqRRGYZj0wMsQSoM5P7uU0ep0HYBDRyiu8DxyURa7mkFbC
cc4QtM+/tUGiod+M02oIobBjjz7Gfo0GC3qEwZLBGEJnbX6tVN+DGoAh8Hhi7Gc7
HVhjGL/l/baF371cHXed3oRQkA3Qw+ZUMUHd7i2Jz6IlXNGdMY507G3GUpUI0uYj
4+H3MWqLBnTgOA==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:57:17 2025 by rpki-client