Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft
File: aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft (raw, json)
Hash identifier: gMvOAtOg8MZX9qoEVwgi3Dp5xXrtIs1RcY+TSwG2w0I=
Subject key identifier: A9:32:64:5A:D7:F4:46:63:29:AD:74:0B:0B:97:CF:18:17:14:48:1D
Authority key identifier: 68:E0:78:B5:18:1B:E5:FB:E9:14:B4:12:A4:12:09:6B:C8:D7:15:49
Certificate issuer: /CN=68e078b5181be5fbe914b412a412096bc8d71549
Certificate serial: 0194BA84B5BEE1104D2AE01D69562BFD62D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOB4tRgb5fvpFLQSpBIJa8jXFUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft
Manifest number: 142B
Signing time: Fri 31 Jan 2025 04:00:46 +0000
Manifest this update: Fri 31 Jan 2025 04:00:46 +0000
Manifest next update: Sat 01 Feb 2025 04:00:46 +0000
Files and hashes: 1: IXwdyS86SbDEc5r6DTqF-yyMhKo.roa (hash: MHPw/G9JdYVbN864pG/b/kFkrvcqi5VhnKr+4T0l/48=)
2: aOB4tRgb5fvpFLQSpBIJa8jXFUk.crl (hash: j4utIy5I3kE70OV0SHHXsw/SLqztlS+9/336pEupTvI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOB4tRgb5fvpFLQSpBIJa8jXFUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:b5:be:e1:10:4d:2a:e0:1d:69:56:2b:fd:62:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e078b5181be5fbe914b412a412096bc8d71549
Validity
Not Before: Jan 31 04:00:46 2025 GMT
Not After : Feb 1 04:00:46 2025 GMT
Subject: CN=a932645ad7f4466329ad740b0b97cf181714481d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ef:fe:63:2b:0b:85:82:05:a2:98:6d:72:27:
f2:20:65:83:3c:67:e2:82:05:65:5a:30:1b:52:79:
49:fb:81:83:4a:3a:3c:e6:9c:33:df:f1:ac:b8:c5:
47:a6:68:e0:9b:e6:c5:7e:19:90:ec:53:fc:e0:0d:
75:f6:83:5f:0f:b2:8c:b6:b6:5a:12:42:f5:6b:ba:
03:2b:8b:0a:40:f9:2f:50:64:da:04:02:00:49:42:
82:f8:46:73:fc:41:6a:9e:f0:d0:5e:fb:44:9e:13:
23:ce:b7:b6:18:59:21:3c:09:39:28:5d:d5:35:11:
07:1f:d1:d2:5b:ab:a4:cc:2e:0d:3c:29:21:3a:ac:
c3:04:0d:3e:18:56:fd:d9:b2:d8:5d:f1:d5:5f:1a:
dd:83:2d:41:09:f6:db:c2:1a:44:e9:1d:15:e0:37:
61:bd:df:9f:88:91:b9:a9:c6:1d:a2:1b:fc:13:8e:
41:85:95:9a:79:3b:93:47:63:b5:82:f3:51:a1:1a:
f3:ca:36:ef:d6:05:43:4b:49:93:e4:06:83:06:33:
ec:9f:84:57:81:6d:6c:50:01:2c:62:8c:ce:88:cd:
6e:27:2b:2c:f8:41:da:6d:7a:0e:84:46:cf:d3:b1:
8a:c0:01:2c:1f:40:b9:d4:41:b8:d0:b8:ab:16:d4:
a4:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:32:64:5A:D7:F4:46:63:29:AD:74:0B:0B:97:CF:18:17:14:48:1D
X509v3 Authority Key Identifier:
keyid:68:E0:78:B5:18:1B:E5:FB:E9:14:B4:12:A4:12:09:6B:C8:D7:15:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOB4tRgb5fvpFLQSpBIJa8jXFUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:b6:b1:ce:d0:e2:61:f3:a7:da:73:4c:2e:a9:96:71:b6:43:
e1:af:09:4e:ae:7a:59:99:fb:65:32:dd:2a:42:e1:fe:89:ff:
15:f4:f4:27:49:42:41:db:9f:41:f8:b3:0f:38:ba:a7:39:62:
38:79:c7:6a:70:c2:9a:7f:5c:ab:44:63:08:5e:fc:c4:69:b7:
9b:88:87:87:6c:bc:ab:20:e0:1e:e1:e6:9f:dc:c7:d4:ff:b2:
aa:68:55:c9:14:57:83:d8:52:0e:c0:b3:65:77:52:a1:8e:4c:
fe:3c:95:1d:10:c1:c0:06:f2:fe:53:9a:61:5d:54:e3:57:ea:
a8:b9:a9:53:9d:e5:18:e7:b6:db:6d:84:f9:a3:7f:b9:60:c6:
14:94:ff:6b:f9:89:b0:17:60:19:3a:52:62:9d:0d:eb:2d:cd:
6b:c6:90:27:42:e8:8e:d8:e8:66:70:6f:5a:66:6f:7b:d3:46:
37:b5:4d:2b:a9:05:db:77:43:5c:f3:99:3a:a4:17:58:db:c7:
93:84:0a:03:21:82:24:4d:8d:2b:8d:9e:1d:c7:b5:16:0d:f2:
2e:ef:36:db:5b:87:18:37:62:4c:f8:3a:f8:da:c0:89:83:be:
96:b6:04:a4:fe:b6:be:2a:93:8f:c4:77:5e:e1:17:81:18:87:
19:83:66:79
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS6hLW+4RBNKuAdaVYr/WLRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZTA3OGI1MTgxYmU1ZmJlOTE0YjQxMmE0MTIwOTZiYzhk
NzE1NDkwHhcNMjUwMTMxMDQwMDQ2WhcNMjUwMjAxMDQwMDQ2WjAzMTEwLwYDVQQD
EyhhOTMyNjQ1YWQ3ZjQ0NjYzMjlhZDc0MGIwYjk3Y2YxODE3MTQ0ODFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+/+YysLhYIFophtcifyIGWDPGfi
ggVlWjAbUnlJ+4GDSjo85pwz3/GsuMVHpmjgm+bFfhmQ7FP84A119oNfD7KMtrZa
EkL1a7oDK4sKQPkvUGTaBAIASUKC+EZz/EFqnvDQXvtEnhMjzre2GFkhPAk5KF3V
NREHH9HSW6ukzC4NPCkhOqzDBA0+GFb92bLYXfHVXxrdgy1BCfbbwhpE6R0V4Ddh
vd+fiJG5qcYdohv8E45BhZWaeTuTR2O1gvNRoRrzyjbv1gVDS0mT5AaDBjPsn4RX
gW1sUAEsYozOiM1uJyss+EHabXoOhEbP07GKwAEsH0C51EG40LirFtSkJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKkyZFrX9EZjKa10CwuXzxgXFEgdMB8GA1UdIwQY
MBaAFGjgeLUYG+X76RS0EqQSCWvI1xVJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU9CNHRSZ2I1ZnZwRkxRU3BCSUphOGpYRlVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny8zMTM5ODgtNmYyMS00NTNlLThlZjQt
ZTY3MWQ5NGIwYTIwLzEvYU9CNHRSZ2I1ZnZwRkxRU3BCSUphOGpYRlVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny8zMTM5ODgtNmYyMS00NTNlLThlZjQtZTY3MWQ5NGIwYTIw
LzEvYU9CNHRSZ2I1ZnZwRkxRU3BCSUphOGpYRlVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdraxztDi
YfOn2nNMLqmWcbZD4a8JTq56WZn7ZTLdKkLh/on/FfT0J0lCQdufQfizDzi6pzli
OHnHanDCmn9cq0RjCF78xGm3m4iHh2y8qyDgHuHmn9zH1P+yqmhVyRRXg9hSDsCz
ZXdSoY5M/jyVHRDBwAby/lOaYV1U41fqqLmpU53lGOe2222E+aN/uWDGFJT/a/mJ
sBdgGTpSYp0N6y3Na8aQJ0LojtjoZnBvWmZve9NGN7VNK6kF23dDXPOZOqQXWNvH
k4QKAyGCJE2NK42eHce1Fg3yLu8221uHGDdiTPg6+NrAiYO+lrYEpP62viqTj8R3
XuEXgRiHGYNmeQ==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:35:42 2025 by rpki-client on console-fra.rpki-client.org