Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/654504-54e1-4502-ab22-40459d6934ae/1/V9wqO2671XpOSCmt0_KgKnbld4k.mft
File: V9wqO2671XpOSCmt0_KgKnbld4k.mft (raw, json)
Hash identifier: CaSDW4N4YlU2xbxyH8Wm+x5e1/XLuIwlIFh7NUsx/qg=
Subject key identifier: 80:FA:C5:DE:70:3D:FA:73:E2:4F:3B:65:5F:1C:74:F9:70:B5:62:D0
Authority key identifier: 57:DC:2A:3B:6E:BB:D5:7A:4E:48:29:AD:D3:F2:A0:2A:76:E5:77:89
Certificate issuer: /CN=57dc2a3b6ebbd57a4e4829add3f2a02a76e57789
Certificate serial: 0194BAF2423D043D469BF2466DC903CC9105
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V9wqO2671XpOSCmt0_KgKnbld4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/654504-54e1-4502-ab22-40459d6934ae/1/V9wqO2671XpOSCmt0_KgKnbld4k.mft
Manifest number: 0120
Signing time: Fri 31 Jan 2025 06:00:26 +0000
Manifest this update: Fri 31 Jan 2025 06:00:26 +0000
Manifest next update: Sat 01 Feb 2025 06:00:26 +0000
Files and hashes: 1: V9wqO2671XpOSCmt0_KgKnbld4k.crl (hash: D5kZ+ro0bpTO4sx7GtzijuYWp4kt33CQ/xU8396EGXQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/654504-54e1-4502-ab22-40459d6934ae/1/V9wqO2671XpOSCmt0_KgKnbld4k.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/654504-54e1-4502-ab22-40459d6934ae/1/V9wqO2671XpOSCmt0_KgKnbld4k.mft
rsync://rpki.ripe.net/repository/DEFAULT/V9wqO2671XpOSCmt0_KgKnbld4k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:f2:42:3d:04:3d:46:9b:f2:46:6d:c9:03:cc:91:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57dc2a3b6ebbd57a4e4829add3f2a02a76e57789
Validity
Not Before: Jan 31 06:00:26 2025 GMT
Not After : Feb 1 06:00:26 2025 GMT
Subject: CN=80fac5de703dfa73e24f3b655f1c74f970b562d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d0:42:04:a2:a5:39:3d:8c:49:78:2b:f6:55:
86:72:ce:5b:f7:25:3d:13:99:f3:ec:58:8f:44:73:
8f:fb:a7:c1:d7:7d:f7:81:24:f7:3e:10:09:5b:b6:
b3:05:6f:77:61:15:9b:19:84:fc:72:88:9f:69:f6:
cb:e1:d6:d6:8f:7c:28:1b:d3:cd:18:2c:c5:57:cd:
d4:92:24:1a:c4:9c:07:03:60:5c:06:8a:61:ba:a5:
a7:42:31:66:92:4e:72:b7:ce:fe:ca:93:1d:16:01:
71:fc:2a:11:4a:09:c2:2f:83:a8:fe:38:7a:8a:7a:
ab:3b:40:db:ec:ae:e0:1a:9d:92:d6:99:a4:86:33:
fe:89:7b:be:c6:0d:dd:6a:e0:6c:96:64:b9:89:38:
5c:4f:98:d0:36:ed:49:0b:05:2f:7b:f2:52:41:88:
17:1d:17:16:eb:ee:aa:56:30:f6:ad:ee:99:fb:27:
03:85:a7:2b:f1:aa:81:2d:f2:e8:45:01:06:c6:53:
34:29:e1:8a:db:bf:65:94:31:a5:45:b8:4b:5d:ef:
89:83:72:85:2c:ff:1d:9e:ef:f7:c5:9b:8f:cd:f2:
1f:aa:ad:32:7c:e7:5e:2b:de:58:00:4a:28:97:b2:
9b:26:b0:32:ea:6d:41:df:b1:49:90:0c:d7:70:ff:
ae:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:FA:C5:DE:70:3D:FA:73:E2:4F:3B:65:5F:1C:74:F9:70:B5:62:D0
X509v3 Authority Key Identifier:
keyid:57:DC:2A:3B:6E:BB:D5:7A:4E:48:29:AD:D3:F2:A0:2A:76:E5:77:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V9wqO2671XpOSCmt0_KgKnbld4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/654504-54e1-4502-ab22-40459d6934ae/1/V9wqO2671XpOSCmt0_KgKnbld4k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/654504-54e1-4502-ab22-40459d6934ae/1/V9wqO2671XpOSCmt0_KgKnbld4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:96:16:cf:b1:14:da:de:f3:28:e3:f5:6d:0e:a5:28:a5:e8:
1d:9f:91:62:2b:52:23:61:1f:6d:10:c7:d3:68:ab:7d:04:66:
15:ce:17:83:28:27:e5:4f:d0:32:34:93:9c:d4:cb:32:be:19:
1d:b9:a3:77:0c:e6:50:25:a1:4c:3d:40:df:18:c3:33:bc:be:
a0:42:e8:9e:db:00:71:4c:6c:08:18:45:e6:19:f8:2c:39:e1:
c9:66:77:b1:f0:17:7e:d4:bc:2d:30:ce:f5:57:e3:0f:b5:5c:
f4:a9:4c:5c:50:12:88:5c:06:5c:ca:0c:00:61:5e:15:7a:1b:
0f:45:97:76:f3:c4:6f:95:ac:62:0d:60:3a:d6:92:24:72:32:
5f:ac:ff:a0:9d:15:55:5d:b0:21:1a:b0:37:ff:be:89:ac:f7:
5b:9f:4c:55:83:29:5b:fc:e1:c4:96:20:61:ce:f2:0a:3e:9b:
50:61:ce:fa:64:45:57:7b:bc:18:81:b7:49:84:0d:8d:5b:5d:
4a:d9:be:bf:99:f0:88:8d:1e:59:b3:00:6b:d9:e7:7a:47:dc:
ae:80:4c:df:77:c7:70:95:ae:6b:15:ee:d9:fa:89:31:fd:92:
51:3c:09:5f:4d:e1:6a:aa:18:7b:e3:aa:10:81:39:b8:61:b3:
ce:55:b5:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS68kI9BD1Gm/JGbckDzJEFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3ZGMyYTNiNmViYmQ1N2E0ZTQ4MjlhZGQzZjJhMDJhNzZl
NTc3ODkwHhcNMjUwMTMxMDYwMDI2WhcNMjUwMjAxMDYwMDI2WjAzMTEwLwYDVQQD
Eyg4MGZhYzVkZTcwM2RmYTczZTI0ZjNiNjU1ZjFjNzRmOTcwYjU2MmQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNBCBKKlOT2MSXgr9lWGcs5b9yU9
E5nz7FiPRHOP+6fB1333gST3PhAJW7azBW93YRWbGYT8coifafbL4dbWj3woG9PN
GCzFV83UkiQaxJwHA2BcBophuqWnQjFmkk5yt87+ypMdFgFx/CoRSgnCL4Oo/jh6
inqrO0Db7K7gGp2S1pmkhjP+iXu+xg3dauBslmS5iThcT5jQNu1JCwUve/JSQYgX
HRcW6+6qVjD2re6Z+ycDhacr8aqBLfLoRQEGxlM0KeGK279llDGlRbhLXe+Jg3KF
LP8dnu/3xZuPzfIfqq0yfOdeK95YAEool7KbJrAy6m1B37FJkAzXcP+uowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFID6xd5wPfpz4k87ZV8cdPlwtWLQMB8GA1UdIwQY
MBaAFFfcKjtuu9V6TkgprdPyoCp25XeJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVjl3cU8yNjcxWHBPU0NtdDBfS2dLbmJsZDRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS82NTQ1MDQtNTRlMS00NTAyLWFiMjIt
NDA0NTlkNjkzNGFlLzEvVjl3cU8yNjcxWHBPU0NtdDBfS2dLbmJsZDRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS82NTQ1MDQtNTRlMS00NTAyLWFiMjItNDA0NTlkNjkzNGFl
LzEvVjl3cU8yNjcxWHBPU0NtdDBfS2dLbmJsZDRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU5YWz7EU
2t7zKOP1bQ6lKKXoHZ+RYitSI2EfbRDH02irfQRmFc4Xgygn5U/QMjSTnNTLMr4Z
HbmjdwzmUCWhTD1A3xjDM7y+oELontsAcUxsCBhF5hn4LDnhyWZ3sfAXftS8LTDO
9VfjD7Vc9KlMXFASiFwGXMoMAGFeFXobD0WXdvPEb5WsYg1gOtaSJHIyX6z/oJ0V
VV2wIRqwN/++iaz3W59MVYMpW/zhxJYgYc7yCj6bUGHO+mRFV3u8GIG3SYQNjVtd
Stm+v5nwiI0eWbMAa9nnekfcroBM33fHcJWuaxXu2fqJMf2SUTwJX03haqoYe+Oq
EIE5uGGzzlW1bQ==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:28:13 2025 by rpki-client on console-fra.rpki-client.org