Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
File: 2ZaAKfEkCW6rlV35t6gciMszOgU.mft (raw, json)
Hash identifier: 42TxHmnptkJE4BlzFrBeGYBtaVFG8aeZYR2qZTw47bw=
Subject key identifier: 7E:A0:09:CE:93:4A:CD:DF:80:85:29:A8:55:12:8B:6A:D4:40:F7:34
Authority key identifier: D9:96:80:29:F1:24:09:6E:AB:95:5D:F9:B7:A8:1C:88:CB:33:3A:05
Certificate issuer: /CN=d9968029f124096eab955df9b7a81c88cb333a05
Certificate serial: 0195113495F5F98F7852B48DA8E8DD1661E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
Manifest number: 0C0A
Signing time: Mon 17 Feb 2025 00:00:13 +0000
Manifest this update: Mon 17 Feb 2025 00:00:13 +0000
Manifest next update: Tue 18 Feb 2025 00:00:13 +0000
Files and hashes: 1: 2ZaAKfEkCW6rlV35t6gciMszOgU.crl (hash: 29jnFiI5Shai+p/nZ0j155YrCTgecbZmqyl5LS8l5jE=)
2: anoG2QxpBajiR81r5Nnqj0baENo.roa (hash: KO9yPbtejqfpWJpsarLnmq3okmJ48dSkW7G2+vLUOFY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:95:f5:f9:8f:78:52:b4:8d:a8:e8:dd:16:61:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9968029f124096eab955df9b7a81c88cb333a05
Validity
Not Before: Feb 17 00:00:13 2025 GMT
Not After : Feb 18 00:00:13 2025 GMT
Subject: CN=7ea009ce934acddf808529a855128b6ad440f734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:63:7f:31:05:7c:bd:d2:44:3d:ae:fa:44:0c:
74:61:69:47:e6:bf:e9:bd:17:4c:63:64:de:9c:8f:
fb:b1:2d:98:0f:0e:0e:3f:c7:42:b0:66:ea:e8:e1:
3d:4a:cf:63:1a:a2:e9:48:93:f9:53:15:a9:ea:34:
44:49:fc:a7:7d:82:3c:72:31:f6:04:9d:a8:a2:7d:
15:62:8c:4d:ca:07:37:fb:92:8b:4c:40:dd:09:94:
bd:ba:83:32:82:0b:c1:43:e0:8c:9b:24:45:f7:1d:
72:f5:10:d3:e3:92:a3:73:52:e3:f1:b1:d7:a5:ad:
82:18:45:99:1c:cf:ba:6b:f9:59:0e:f4:f2:95:c9:
1e:9e:ec:57:40:b6:69:31:35:57:2f:af:6a:80:f4:
b9:02:da:7e:cd:64:3a:8d:34:ce:fe:f7:3a:30:89:
8c:77:68:87:8d:81:5e:52:af:a6:22:ff:41:2f:a4:
dd:cc:5c:41:6d:34:bf:14:35:b7:5b:3b:73:97:8e:
1c:a0:9b:88:f7:fa:4d:2f:fa:c2:f9:03:ca:53:4a:
0f:7e:5f:b4:a2:af:f2:83:8c:37:93:94:6f:04:89:
38:af:b0:5f:f0:87:4f:1c:3d:33:21:16:17:e8:8d:
80:af:ef:3e:fa:62:31:73:b6:de:d5:c6:77:f9:32:
f0:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:A0:09:CE:93:4A:CD:DF:80:85:29:A8:55:12:8B:6A:D4:40:F7:34
X509v3 Authority Key Identifier:
keyid:D9:96:80:29:F1:24:09:6E:AB:95:5D:F9:B7:A8:1C:88:CB:33:3A:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:1b:76:89:8e:29:cc:e9:2f:9b:20:9a:70:c4:e6:5e:2d:90:
e3:69:5d:07:9b:8d:eb:02:14:6d:1f:90:0e:2e:7b:5c:62:bd:
d5:19:01:ed:6b:fd:8e:71:71:4f:54:59:d4:c6:9d:f9:fa:6f:
b4:26:53:cf:f9:a8:88:2b:81:d2:e3:8b:1f:59:04:06:ad:3b:
e8:da:97:70:c0:f6:8b:fc:c5:5d:70:2f:57:c3:fe:e6:71:78:
42:49:89:ce:fd:14:91:0c:06:68:85:d8:29:12:8c:d1:e6:34:
a8:84:7b:ea:57:44:56:6d:e3:0b:02:4e:aa:3c:53:c6:48:8d:
74:d8:13:5a:94:5c:29:c3:81:53:7c:0b:b4:bf:88:8b:e3:d0:
9e:11:3b:e8:60:fc:69:a6:59:40:41:f1:5a:74:ff:f2:58:e1:
5d:f2:2c:43:a0:6e:59:b6:92:75:cf:b6:f1:9a:98:9e:e0:a4:
86:9d:98:25:68:8a:0a:a6:b2:67:0d:30:8e:88:44:a9:13:ca:
74:c1:1e:53:c3:4d:ed:6d:83:75:bc:f5:ec:3f:40:52:81:00:
a4:1b:35:2a:dc:53:da:54:c6:c8:cb:de:5e:66:01:78:74:3d:
87:d4:65:17:c3:9b:63:b8:48:7e:eb:01:96:25:9a:08:78:41:
53:5a:f0:12
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURNJX1+Y94UrSNqOjdFmHpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5OTY4MDI5ZjEyNDA5NmVhYjk1NWRmOWI3YTgxYzg4Y2Iz
MzNhMDUwHhcNMjUwMjE3MDAwMDEzWhcNMjUwMjE4MDAwMDEzWjAzMTEwLwYDVQQD
Eyg3ZWEwMDljZTkzNGFjZGRmODA4NTI5YTg1NTEyOGI2YWQ0NDBmNzM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwmN/MQV8vdJEPa76RAx0YWlH5r/p
vRdMY2TenI/7sS2YDw4OP8dCsGbq6OE9Ss9jGqLpSJP5UxWp6jRESfynfYI8cjH2
BJ2oon0VYoxNygc3+5KLTEDdCZS9uoMyggvBQ+CMmyRF9x1y9RDT45Kjc1Lj8bHX
pa2CGEWZHM+6a/lZDvTylckenuxXQLZpMTVXL69qgPS5Atp+zWQ6jTTO/vc6MImM
d2iHjYFeUq+mIv9BL6TdzFxBbTS/FDW3Wztzl44coJuI9/pNL/rC+QPKU0oPfl+0
oq/yg4w3k5RvBIk4r7Bf8IdPHD0zIRYX6I2Ar+8++mIxc7be1cZ3+TLwWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH6gCc6TSs3fgIUpqFUSi2rUQPc0MB8GA1UdIwQY
MBaAFNmWgCnxJAluq5Vd+beoHIjLMzoFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlphQUtmRWtDVzZybFYzNXQ2Z2NpTXN6T2dVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8yN2ExYmMtYjI1OC00MDVmLTlmOTMt
NmVlYTEyMjA1NzIwLzEvMlphQUtmRWtDVzZybFYzNXQ2Z2NpTXN6T2dVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS8yN2ExYmMtYjI1OC00MDVmLTlmOTMtNmVlYTEyMjA1NzIw
LzEvMlphQUtmRWtDVzZybFYzNXQ2Z2NpTXN6T2dVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuRt2iY4p
zOkvmyCacMTmXi2Q42ldB5uN6wIUbR+QDi57XGK91RkB7Wv9jnFxT1RZ1Mad+fpv
tCZTz/moiCuB0uOLH1kEBq076NqXcMD2i/zFXXAvV8P+5nF4QkmJzv0UkQwGaIXY
KRKM0eY0qIR76ldEVm3jCwJOqjxTxkiNdNgTWpRcKcOBU3wLtL+Ii+PQnhE76GD8
aaZZQEHxWnT/8ljhXfIsQ6BuWbaSdc+28ZqYnuCkhp2YJWiKCqayZw0wjohEqRPK
dMEeU8NN7W2Ddbz17D9AUoEApBs1KtxT2lTGyMveXmYBeHQ9h9RlF8ObY7hIfusB
liWaCHhBU1rwEg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:38 2025 by rpki-client