Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
File: Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft (raw, json)
Hash identifier: Rqyi+olcjQO3NtSvCeDEzN47FatFAyMdQcZl2c66rVU=
Subject key identifier: DF:36:76:F2:97:8D:92:EF:AD:23:09:33:46:51:88:65:77:5A:12:FE
Authority key identifier: 4E:BF:6B:37:B9:4F:95:B4:90:5C:F8:C6:A2:1D:88:03:EA:BF:A7:7E
Certificate issuer: /CN=4ebf6b37b94f95b4905cf8c6a21d8803eabfa77e
Certificate serial: 0194BB28FF47CA01204D14D3FE602DAAA42E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
Manifest number: 14
Signing time: Fri 31 Jan 2025 07:00:13 +0000
Manifest this update: Fri 31 Jan 2025 07:00:13 +0000
Manifest next update: Sat 01 Feb 2025 07:00:13 +0000
Files and hashes: 1: 2YHBxyZ_z4Fcrt68TQqMf0wkwmM.roa (hash: KMD/ALL2N2LqU8y7+1f9YpFqy5OsmhRXi+hfcZ2aIxY=)
2: Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl (hash: C4O1RaHOhWAxh+9MFRHHqLEHnONKZY3L4K72NGuGgtU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:28:ff:47:ca:01:20:4d:14:d3:fe:60:2d:aa:a4:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ebf6b37b94f95b4905cf8c6a21d8803eabfa77e
Validity
Not Before: Jan 31 07:00:13 2025 GMT
Not After : Feb 1 07:00:13 2025 GMT
Subject: CN=df3676f2978d92efad23093346518865775a12fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:fb:32:ed:f5:07:0b:b6:45:24:3f:eb:27:cd:
0d:d4:18:19:1b:2d:81:9a:f6:21:f1:de:b4:1e:7e:
46:d1:e8:23:2f:60:a4:56:25:2d:73:b3:b4:d5:5f:
02:f5:71:52:02:05:73:de:58:36:d5:87:6f:c6:bd:
af:4d:7e:05:4c:26:75:6d:92:f0:75:b4:6e:e1:69:
b7:6a:f3:2e:0b:d4:2e:db:d5:92:99:b8:00:8f:30:
fb:fd:2f:2d:c8:59:be:03:17:6c:a2:f8:c2:bf:81:
30:9d:f3:00:4f:43:8d:49:3d:3e:1f:ce:bd:65:f6:
dc:23:5d:db:fe:15:3b:63:b4:b3:00:22:c7:93:fd:
da:0f:a6:5c:95:7b:e9:84:c8:de:88:ee:d7:a7:65:
6e:26:52:38:57:32:94:16:5a:23:9c:a6:f5:71:b8:
fb:ab:2d:a3:ba:9d:5e:3f:e1:b6:c9:6c:2e:f3:92:
a9:d8:f8:d1:b1:c2:2f:90:02:d7:05:56:41:dd:2c:
76:96:de:66:da:c6:c7:8e:3b:fc:09:77:f2:aa:bc:
40:b1:e4:51:b3:7e:2b:ef:d0:32:11:f9:cd:22:1f:
c9:a3:70:ac:79:8c:65:88:a9:c2:fb:9c:ff:1a:16:
98:63:8b:08:43:3f:3b:3c:f3:89:a9:03:9d:b1:c6:
c1:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:36:76:F2:97:8D:92:EF:AD:23:09:33:46:51:88:65:77:5A:12:FE
X509v3 Authority Key Identifier:
keyid:4E:BF:6B:37:B9:4F:95:B4:90:5C:F8:C6:A2:1D:88:03:EA:BF:A7:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:27:ca:9c:27:c3:7c:a0:77:c8:3e:cd:de:d3:b1:dd:a4:d2:
4a:c2:f5:1b:54:f5:ee:c5:7a:19:d1:51:a0:b2:36:5c:1c:29:
f1:1c:35:48:fe:2e:93:d9:38:bd:90:1f:e9:34:81:02:5b:29:
b5:1b:6e:3f:e7:25:61:19:e7:35:e4:cd:6a:e4:c9:c2:90:a4:
5b:01:b3:cf:19:40:cb:fa:cd:a9:e9:93:a1:88:c3:dc:89:19:
b1:27:3e:51:96:66:9c:c1:46:b0:e9:a9:1f:19:85:7e:7a:d2:
02:28:5e:33:c1:a9:25:a6:dc:92:ec:95:09:61:0c:ca:46:a3:
cb:63:8f:dd:47:dd:84:85:79:e4:fb:fd:32:cd:a7:74:e0:2c:
9c:dc:a8:6f:6c:c7:35:a9:8d:52:3f:1c:6b:5a:d7:74:60:04:
9c:d0:01:6e:61:54:cf:69:a7:ba:54:b1:7d:7c:63:97:f6:a2:
e3:ca:32:23:1e:21:23:e8:98:57:eb:eb:f8:7b:c1:e0:b1:56:
5c:0b:7b:40:b2:d3:fc:88:41:17:60:69:73:cb:29:b8:c8:15:
fa:7a:7e:80:8c:43:00:73:b3:5c:d9:2e:37:bd:66:1a:00:8b:
92:f0:50:2b:c1:c4:81:e2:da:7a:28:0b:36:2a:89:22:2b:76:
b8:c9:64:5d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS7KP9HygEgTRTT/mAtqqQuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlYmY2YjM3Yjk0Zjk1YjQ5MDVjZjhjNmEyMWQ4ODAzZWFi
ZmE3N2UwHhcNMjUwMTMxMDcwMDEzWhcNMjUwMjAxMDcwMDEzWjAzMTEwLwYDVQQD
EyhkZjM2NzZmMjk3OGQ5MmVmYWQyMzA5MzM0NjUxODg2NTc3NWExMmZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxvsy7fUHC7ZFJD/rJ80N1BgZGy2B
mvYh8d60Hn5G0egjL2CkViUtc7O01V8C9XFSAgVz3lg21Ydvxr2vTX4FTCZ1bZLw
dbRu4Wm3avMuC9Qu29WSmbgAjzD7/S8tyFm+AxdsovjCv4EwnfMAT0ONST0+H869
ZfbcI13b/hU7Y7SzACLHk/3aD6ZclXvphMjeiO7Xp2VuJlI4VzKUFlojnKb1cbj7
qy2jup1eP+G2yWwu85Kp2PjRscIvkALXBVZB3Sx2lt5m2sbHjjv8CXfyqrxAseRR
s34r79AyEfnNIh/Jo3CseYxliKnC+5z/GhaYY4sIQz87PPOJqQOdscbBfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN82dvKXjZLvrSMJM0ZRiGV3WhL+MB8GA1UdIwQY
MBaAFE6/aze5T5W0kFz4xqIdiAPqv6d+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHI5ck43bFBsYlNRWFBqR29oMklBLXFfcDM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9hMjE3MmQtYjY1MS00M2RhLThhY2Yt
ZTdlNzRkYjcyMWQyLzEvVHI5ck43bFBsYlNRWFBqR29oMklBLXFfcDM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS9hMjE3MmQtYjY1MS00M2RhLThhY2YtZTdlNzRkYjcyMWQy
LzEvVHI5ck43bFBsYlNRWFBqR29oMklBLXFfcDM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASifKnCfD
fKB3yD7N3tOx3aTSSsL1G1T17sV6GdFRoLI2XBwp8Rw1SP4uk9k4vZAf6TSBAlsp
tRtuP+clYRnnNeTNauTJwpCkWwGzzxlAy/rNqemToYjD3IkZsSc+UZZmnMFGsOmp
HxmFfnrSAiheM8GpJabckuyVCWEMykajy2OP3UfdhIV55Pv9Ms2ndOAsnNyob2zH
NamNUj8ca1rXdGAEnNABbmFUz2mnulSxfXxjl/ai48oyIx4hI+iYV+vr+HvB4LFW
XAt7QLLT/IhBF2Bpc8spuMgV+np+gIxDAHOzXNkuN71mGgCLkvBQK8HEgeLaeigL
NiqJIit2uMlkXQ==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:28:18 2025 by rpki-client on console-fra.rpki-client.org