Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/iKYs-BAOjBtHVEP9lM1Y2O8qM64.mft
File: iKYs-BAOjBtHVEP9lM1Y2O8qM64.mft (raw, json)
Hash identifier: Jg0SBOHUg2WbPhT4vwEQSU3dPzQcVGOek1/YlkaxZLo=
Subject key identifier: 27:E6:DC:AF:FE:01:3C:C7:3C:7D:DB:FA:30:3F:E6:92:B2:4E:C1:A7
Authority key identifier: 88:A6:2C:F8:10:0E:8C:1B:47:54:43:FD:94:CD:58:D8:EF:2A:33:AE
Certificate issuer: /CN=88a62cf8100e8c1b475443fd94cd58d8ef2a33ae
Certificate serial: 0194BB974019BF0BB8383C8EB0DF3CBE34BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKYs-BAOjBtHVEP9lM1Y2O8qM64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/iKYs-BAOjBtHVEP9lM1Y2O8qM64.mft
Manifest number: 1429
Signing time: Fri 31 Jan 2025 09:00:39 +0000
Manifest this update: Fri 31 Jan 2025 09:00:39 +0000
Manifest next update: Sat 01 Feb 2025 09:00:39 +0000
Files and hashes: 1: iKYs-BAOjBtHVEP9lM1Y2O8qM64.crl (hash: h1B3cjtc+J0NXMfuCOcuwp3rmi0KADOkHntqmsLUvj8=)
2: qvYpsZQGhS3eiJYFcpoDInx2DkE.roa (hash: AzKXVpJ7rQhInqcKxYMIE20bjXuo9eJ0x8CLUXTV+A0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/iKYs-BAOjBtHVEP9lM1Y2O8qM64.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/iKYs-BAOjBtHVEP9lM1Y2O8qM64.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKYs-BAOjBtHVEP9lM1Y2O8qM64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 09:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:97:40:19:bf:0b:b8:38:3c:8e:b0:df:3c:be:34:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a62cf8100e8c1b475443fd94cd58d8ef2a33ae
Validity
Not Before: Jan 31 09:00:39 2025 GMT
Not After : Feb 1 09:00:39 2025 GMT
Subject: CN=27e6dcaffe013cc73c7ddbfa303fe692b24ec1a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:28:f9:bc:a0:80:8c:e5:41:db:d1:04:d7:16:
f9:ec:b7:04:18:26:6e:12:88:4b:20:ec:60:5b:a6:
70:83:4c:36:e3:1b:ad:44:b5:e3:36:b0:3f:41:e1:
c8:f4:07:da:48:82:09:2d:c9:d0:5e:90:f6:a8:a8:
d7:de:1a:22:d2:99:39:fe:96:6e:7d:da:f0:ec:f8:
9b:d6:1b:4d:06:79:40:c6:18:aa:9d:b2:f3:ee:c6:
58:7f:63:87:eb:05:83:05:36:58:a9:13:04:47:ba:
a3:dc:30:bc:19:95:a0:55:0a:7f:07:fd:77:7d:f0:
42:74:4b:8e:f2:b7:39:63:bb:6b:6b:6b:70:2c:0f:
ef:66:05:59:00:74:5d:7e:e4:bb:9a:2c:7f:b0:b9:
ac:aa:04:f6:ac:90:4b:27:1b:81:56:04:b0:22:3a:
1a:03:75:37:da:02:1d:32:03:a2:07:ca:9d:4c:8f:
5e:87:93:34:e3:aa:31:13:a9:ee:a7:06:14:f6:89:
e3:d2:ee:68:6c:e0:22:2b:3e:81:f7:dd:ab:42:f2:
c4:eb:26:ad:c5:48:05:67:a6:e0:6b:4d:dd:77:86:
d5:01:04:28:a4:de:2d:1d:61:7e:d2:c5:01:56:fe:
05:9e:eb:4a:79:67:ca:3a:e3:73:07:87:c0:94:07:
64:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:E6:DC:AF:FE:01:3C:C7:3C:7D:DB:FA:30:3F:E6:92:B2:4E:C1:A7
X509v3 Authority Key Identifier:
keyid:88:A6:2C:F8:10:0E:8C:1B:47:54:43:FD:94:CD:58:D8:EF:2A:33:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKYs-BAOjBtHVEP9lM1Y2O8qM64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/iKYs-BAOjBtHVEP9lM1Y2O8qM64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/iKYs-BAOjBtHVEP9lM1Y2O8qM64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:38:8b:25:fe:c2:25:09:5a:56:de:df:8e:39:42:98:07:89:
19:75:3f:69:5a:be:8d:1a:db:16:21:d9:05:f6:d8:a0:8c:d9:
07:bc:8c:14:7a:b6:13:de:82:13:8c:29:f2:b7:7b:e1:58:f4:
03:41:ca:49:7c:ba:d3:82:34:03:eb:c2:aa:83:78:80:2a:9c:
11:dc:a6:d8:dd:d8:df:db:05:d5:f9:bb:58:4b:4c:84:c1:52:
e1:38:72:f7:4a:07:48:60:9e:c0:da:5d:3f:aa:74:ef:0a:ea:
3e:90:22:c1:b2:84:ac:f7:62:81:7b:86:01:7a:fd:ed:78:0b:
74:35:d9:9f:55:52:96:b0:42:2d:de:c0:a5:ef:71:4a:76:03:
ae:22:c3:bf:32:3e:2a:e3:52:9c:7e:60:1a:48:35:96:7f:23:
37:5d:9b:80:02:87:9d:c4:22:6e:ef:f8:df:5c:d7:20:40:0f:
69:82:db:df:40:c3:ac:3b:2d:98:56:47:dc:cb:aa:47:79:68:
d3:c7:4d:49:22:40:68:c7:25:1e:f6:86:bc:11:3e:69:0d:e5:
c0:66:ac:23:a0:1a:d4:f2:68:8f:9a:4b:45:a0:80:db:91:0e:
59:c4:0a:7a:85:18:8f:6d:1f:9c:9f:44:aa:60:93:7b:8c:31:
bd:01:1a:d7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS7l0AZvwu4ODyOsN88vjS9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4YTYyY2Y4MTAwZThjMWI0NzU0NDNmZDk0Y2Q1OGQ4ZWYy
YTMzYWUwHhcNMjUwMTMxMDkwMDM5WhcNMjUwMjAxMDkwMDM5WjAzMTEwLwYDVQQD
EygyN2U2ZGNhZmZlMDEzY2M3M2M3ZGRiZmEzMDNmZTY5MmIyNGVjMWE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqSj5vKCAjOVB29EE1xb57LcEGCZu
EohLIOxgW6Zwg0w24xutRLXjNrA/QeHI9AfaSIIJLcnQXpD2qKjX3hoi0pk5/pZu
fdrw7Pib1htNBnlAxhiqnbLz7sZYf2OH6wWDBTZYqRMER7qj3DC8GZWgVQp/B/13
ffBCdEuO8rc5Y7tra2twLA/vZgVZAHRdfuS7mix/sLmsqgT2rJBLJxuBVgSwIjoa
A3U32gIdMgOiB8qdTI9eh5M046oxE6nupwYU9onj0u5obOAiKz6B992rQvLE6yat
xUgFZ6bga03dd4bVAQQopN4tHWF+0sUBVv4FnutKeWfKOuNzB4fAlAdkXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCfm3K/+ATzHPH3b+jA/5pKyTsGnMB8GA1UdIwQY
MBaAFIimLPgQDowbR1RD/ZTNWNjvKjOuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUtZcy1CQU9qQnRIVkVQOWxNMVkyTzhxTTY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9lZWYwMzUtMjYyOS00ZTNlLWJlYmMt
MTVhMGRkZGQ3NDljLzEvaUtZcy1CQU9qQnRIVkVQOWxNMVkyTzhxTTY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy9lZWYwMzUtMjYyOS00ZTNlLWJlYmMtMTVhMGRkZGQ3NDlj
LzEvaUtZcy1CQU9qQnRIVkVQOWxNMVkyTzhxTTY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADTiLJf7C
JQlaVt7fjjlCmAeJGXU/aVq+jRrbFiHZBfbYoIzZB7yMFHq2E96CE4wp8rd74Vj0
A0HKSXy604I0A+vCqoN4gCqcEdym2N3Y39sF1fm7WEtMhMFS4Thy90oHSGCewNpd
P6p07wrqPpAiwbKErPdigXuGAXr97XgLdDXZn1VSlrBCLd7Ape9xSnYDriLDvzI+
KuNSnH5gGkg1ln8jN12bgAKHncQibu/431zXIEAPaYLb30DDrDstmFZH3MuqR3lo
08dNSSJAaMclHvaGvBE+aQ3lwGasI6Aa1PJoj5pLRaCA25EOWcQKeoUYj20fnJ9E
qmCTe4wxvQEa1w==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:31:57 2025 by rpki-client on console-fra.rpki-client.org