Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.mft
File: xhMz0OgQeIbQMFx72BvdNUiVJ64.mft (raw, json)
Hash identifier: BtvCfcDYotO43LhD/30zivQrqjhXmafpr+V5O+Y/Vns=
Subject key identifier: 92:0D:82:9E:DB:53:2D:AB:F6:4F:3C:EE:03:A5:EC:DA:D2:BE:E8:AE
Authority key identifier: C6:13:33:D0:E8:10:78:86:D0:30:5C:7B:D8:1B:DD:35:48:95:27:AE
Certificate issuer: /CN=c61333d0e8107886d0305c7bd81bdd35489527ae
Certificate serial: 0194BB297DE3BD52AA054DA5129A19204918
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhMz0OgQeIbQMFx72BvdNUiVJ64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.mft
Manifest number: 142A
Signing time: Fri 31 Jan 2025 07:00:46 +0000
Manifest this update: Fri 31 Jan 2025 07:00:46 +0000
Manifest next update: Sat 01 Feb 2025 07:00:46 +0000
Files and hashes: 1: vl15h6bSawu987-Q_9jiY_8d_bU.roa (hash: Ky1qbRFkXL3xxI3+FV1tNHYzBN6SggIg4pNwGCFKnF8=)
2: xhMz0OgQeIbQMFx72BvdNUiVJ64.crl (hash: 8q2GmKQfZIMYsSXs55r2oeT3nUDoiXO8jLGn82W26qg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.mft
rsync://rpki.ripe.net/repository/DEFAULT/xhMz0OgQeIbQMFx72BvdNUiVJ64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:29:7d:e3:bd:52:aa:05:4d:a5:12:9a:19:20:49:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c61333d0e8107886d0305c7bd81bdd35489527ae
Validity
Not Before: Jan 31 07:00:46 2025 GMT
Not After : Feb 1 07:00:46 2025 GMT
Subject: CN=920d829edb532dabf64f3cee03a5ecdad2bee8ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d7:25:bd:a2:28:f7:f6:03:40:5d:b3:3a:a0:
4a:7a:ba:97:11:84:a0:ea:45:c0:20:bf:5d:80:5d:
97:6e:cb:2e:b6:a4:99:44:fd:ce:91:f7:32:21:fe:
7c:46:26:87:42:e8:65:10:fb:35:c3:9c:ce:eb:fc:
2f:73:3c:e9:13:0a:41:47:53:a3:ec:fa:69:42:07:
09:36:28:6b:20:00:85:da:1f:3e:64:22:00:47:ae:
2c:d8:12:28:35:70:29:92:45:61:33:d8:51:04:b5:
87:3f:26:c0:b5:aa:dc:8b:65:30:73:d3:71:99:0e:
70:ae:31:24:81:5a:ba:aa:bc:91:2d:bd:05:0d:7e:
90:92:85:88:2e:78:7f:1d:84:1f:43:c7:3d:e4:5b:
66:97:53:ad:8d:a2:a8:3d:3a:fe:18:98:2c:3e:a9:
68:a5:af:be:27:a8:19:84:bd:b8:6b:8e:8a:9c:15:
7c:0f:32:41:ae:bd:ee:43:22:0f:e9:de:68:cf:46:
34:c0:c1:70:f3:2d:6b:1f:b3:e4:f0:a6:39:a6:1d:
b0:56:74:8f:a7:99:26:9e:a8:68:44:4f:f7:d8:9a:
8b:d2:ad:0c:5c:af:7f:67:b9:0b:dc:95:96:64:ed:
30:46:74:24:2f:68:22:11:3c:ae:1f:a5:61:f5:63:
d0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:0D:82:9E:DB:53:2D:AB:F6:4F:3C:EE:03:A5:EC:DA:D2:BE:E8:AE
X509v3 Authority Key Identifier:
keyid:C6:13:33:D0:E8:10:78:86:D0:30:5C:7B:D8:1B:DD:35:48:95:27:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhMz0OgQeIbQMFx72BvdNUiVJ64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:f7:41:9c:b3:08:3f:33:b6:ab:e0:4d:f6:d0:05:f3:93:fb:
72:d2:7e:31:bd:ab:a8:97:da:d8:05:e2:2c:92:e8:2d:82:8b:
50:a8:1e:09:de:82:82:eb:69:6b:ad:30:ca:0f:27:60:d8:e6:
b4:45:45:2d:ae:24:4d:00:11:79:4c:2d:30:a2:25:cc:ab:8c:
42:3f:07:30:97:20:b5:f8:cd:b9:fa:81:49:b3:6b:53:0c:7d:
af:da:e9:8b:2d:27:7d:77:3d:e8:90:7a:81:95:e6:61:7e:bb:
14:bb:da:ac:1f:5f:02:f8:dd:4a:8c:49:54:74:41:55:14:a0:
2d:d4:dd:3b:d5:24:d2:8b:8c:ca:52:5f:1c:73:29:5f:be:1b:
04:d6:e7:1f:de:6e:d1:48:74:00:61:69:89:09:41:05:e9:56:
10:e0:22:df:28:13:23:f0:9c:d7:20:a0:c0:b4:97:9e:2e:5e:
63:ee:76:ab:1f:12:77:ad:ae:2c:bd:7b:c9:ec:2d:27:c2:d5:
c3:77:1b:13:94:b0:50:40:cb:17:45:72:db:3e:1f:55:be:b5:
8e:b0:42:02:d8:18:62:60:df:92:00:9c:18:27:00:a9:df:d0:
04:f2:5e:6d:e1:aa:e6:b6:a7:bc:c1:4f:72:0d:35:34:fd:b5:
24:6a:a2:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS7KX3jvVKqBU2lEpoZIEkYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2MTMzM2QwZTgxMDc4ODZkMDMwNWM3YmQ4MWJkZDM1NDg5
NTI3YWUwHhcNMjUwMTMxMDcwMDQ2WhcNMjUwMjAxMDcwMDQ2WjAzMTEwLwYDVQQD
Eyg5MjBkODI5ZWRiNTMyZGFiZjY0ZjNjZWUwM2E1ZWNkYWQyYmVlOGFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiNclvaIo9/YDQF2zOqBKerqXEYSg
6kXAIL9dgF2XbssutqSZRP3OkfcyIf58RiaHQuhlEPs1w5zO6/wvczzpEwpBR1Oj
7PppQgcJNihrIACF2h8+ZCIAR64s2BIoNXApkkVhM9hRBLWHPybAtarci2Uwc9Nx
mQ5wrjEkgVq6qryRLb0FDX6QkoWILnh/HYQfQ8c95Ftml1OtjaKoPTr+GJgsPqlo
pa++J6gZhL24a46KnBV8DzJBrr3uQyIP6d5oz0Y0wMFw8y1rH7Pk8KY5ph2wVnSP
p5kmnqhoRE/32JqL0q0MXK9/Z7kL3JWWZO0wRnQkL2giETyuH6Vh9WPQhQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJINgp7bUy2r9k887gOl7NrSvuiuMB8GA1UdIwQY
MBaAFMYTM9DoEHiG0DBce9gb3TVIlSeuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGhNejBPZ1FlSWJRTUZ4NzJCdmROVWlWSjY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9kZDMyYzMtZmU4Zi00MDQ3LWI2OGEt
OGVjNWYwZWVhMDQ1LzEveGhNejBPZ1FlSWJRTUZ4NzJCdmROVWlWSjY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My9kZDMyYzMtZmU4Zi00MDQ3LWI2OGEtOGVjNWYwZWVhMDQ1
LzEveGhNejBPZ1FlSWJRTUZ4NzJCdmROVWlWSjY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY/dBnLMI
PzO2q+BN9tAF85P7ctJ+Mb2rqJfa2AXiLJLoLYKLUKgeCd6Cgutpa60wyg8nYNjm
tEVFLa4kTQAReUwtMKIlzKuMQj8HMJcgtfjNufqBSbNrUwx9r9rpiy0nfXc96JB6
gZXmYX67FLvarB9fAvjdSoxJVHRBVRSgLdTdO9Uk0ouMylJfHHMpX74bBNbnH95u
0Uh0AGFpiQlBBelWEOAi3ygTI/Cc1yCgwLSXni5eY+52qx8Sd62uLL17yewtJ8LV
w3cbE5SwUEDLF0Vy2z4fVb61jrBCAtgYYmDfkgCcGCcAqd/QBPJebeGq5ranvMFP
cg01NP21JGqiIw==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:28:52 2025 by rpki-client on console-fra.rpki-client.org