Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
File: jHFLbLK61OdjmoqicQKPWqG8asI.mft (raw, json)
Hash identifier: gY3o9Ams7uQRq3hESRvsci28eImb0JIqNT/jXAZdvaE=
Subject key identifier: 22:C3:9D:C2:88:AC:29:CE:82:93:2F:8C:58:B2:54:23:6E:8A:5D:6C
Authority key identifier: 8C:71:4B:6C:B2:BA:D4:E7:63:9A:8A:A2:71:02:8F:5A:A1:BC:6A:C2
Certificate issuer: /CN=8c714b6cb2bad4e7639a8aa271028f5aa1bc6ac2
Certificate serial: 0194BB28F59B64A70027DF6629BFDDBF8BA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
Manifest number: 03D9
Signing time: Fri 31 Jan 2025 07:00:11 +0000
Manifest this update: Fri 31 Jan 2025 07:00:11 +0000
Manifest next update: Sat 01 Feb 2025 07:00:11 +0000
Files and hashes: 1: jHFLbLK61OdjmoqicQKPWqG8asI.crl (hash: zM8zBEFejl7SCzAVvwd6vuCdZBB0xnBNjtUmJiFJDTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:28:f5:9b:64:a7:00:27:df:66:29:bf:dd:bf:8b:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c714b6cb2bad4e7639a8aa271028f5aa1bc6ac2
Validity
Not Before: Jan 31 07:00:11 2025 GMT
Not After : Feb 1 07:00:11 2025 GMT
Subject: CN=22c39dc288ac29ce82932f8c58b254236e8a5d6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1f:66:1b:f1:19:62:f8:71:c7:18:71:e5:41:
60:39:1e:c8:d5:43:26:9e:e5:d5:b0:b1:82:f2:70:
4b:be:01:86:c2:8f:0b:39:80:c5:14:19:bd:19:c1:
91:e8:14:73:2b:69:74:b9:e3:82:15:8f:b9:75:41:
94:55:12:47:e3:5e:94:19:88:e5:c0:2c:24:b9:cf:
a7:c9:1f:43:26:de:aa:15:83:1e:ce:a7:26:74:31:
f8:40:fd:97:4c:21:9f:48:02:ea:98:19:f2:09:82:
c7:90:2f:1d:05:9f:3e:4a:58:2c:ef:13:a1:b4:1b:
bd:51:ff:10:0c:c0:22:9d:30:14:bd:89:94:96:47:
32:2b:47:5b:90:9f:33:32:5a:01:45:50:00:2e:27:
54:eb:e4:23:b5:e0:aa:9c:ad:46:16:3b:3b:26:da:
e0:33:4f:b5:a9:22:ff:13:28:8f:02:cf:06:75:6c:
90:0f:c5:7b:c5:ad:47:8d:87:19:5f:fb:43:aa:2e:
44:2a:b5:2a:4a:54:ba:3d:c4:81:54:c8:d1:0a:99:
a2:d9:ce:e6:3a:1b:02:6e:f9:00:09:de:2a:7d:6e:
6e:2f:6a:4e:b6:4b:bd:3a:9c:57:8b:9b:6e:24:c0:
cf:32:89:92:7e:73:4f:44:8f:22:20:e3:58:62:3d:
d3:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:C3:9D:C2:88:AC:29:CE:82:93:2F:8C:58:B2:54:23:6E:8A:5D:6C
X509v3 Authority Key Identifier:
keyid:8C:71:4B:6C:B2:BA:D4:E7:63:9A:8A:A2:71:02:8F:5A:A1:BC:6A:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:be:f8:08:dd:fe:4f:bd:ee:40:13:d2:cf:d0:54:ca:d4:81:
10:db:b0:59:92:bd:68:b4:14:6b:9f:ff:2e:13:36:a1:0c:16:
56:18:d8:7e:26:6b:65:39:81:d3:12:f9:a6:c6:cc:1b:4c:34:
48:0f:7b:30:60:80:8f:34:6e:08:06:4f:ce:dc:a6:28:38:88:
9b:3e:1a:d0:8d:e5:da:7a:4a:92:8d:14:ac:ac:cd:20:ad:50:
19:09:96:dc:34:72:5a:b9:e6:a7:b0:c6:9f:37:34:fe:b8:5d:
c4:85:b7:a1:21:d7:cb:71:e0:10:eb:ac:50:3d:0f:e1:a7:89:
54:99:fd:89:1a:91:99:46:9a:4d:6c:d7:da:e9:83:3a:d7:d2:
cd:87:1c:84:26:6e:b1:0f:02:64:e0:4d:a0:66:f0:af:e1:ec:
c6:de:31:f7:f1:6c:fc:87:0d:a9:99:72:ec:43:d1:f7:05:ff:
15:a9:5b:3e:46:ae:d3:5b:48:b2:0a:60:06:68:5e:1c:8c:53:
e6:de:9b:51:a8:9c:be:b7:0a:1f:7e:d4:e5:a5:69:e7:d5:a1:
aa:89:e3:d4:1f:65:c3:f5:35:2f:c6:b9:e0:ff:5c:51:91:76:
30:3c:51:88:3f:e4:0a:05:39:40:61:a2:fc:e5:d3:bf:cd:f5:
94:a4:f1:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS7KPWbZKcAJ99mKb/dv4uhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhjNzE0YjZjYjJiYWQ0ZTc2MzlhOGFhMjcxMDI4ZjVhYTFi
YzZhYzIwHhcNMjUwMTMxMDcwMDExWhcNMjUwMjAxMDcwMDExWjAzMTEwLwYDVQQD
EygyMmMzOWRjMjg4YWMyOWNlODI5MzJmOGM1OGIyNTQyMzZlOGE1ZDZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqh9mG/EZYvhxxxhx5UFgOR7I1UMm
nuXVsLGC8nBLvgGGwo8LOYDFFBm9GcGR6BRzK2l0ueOCFY+5dUGUVRJH416UGYjl
wCwkuc+nyR9DJt6qFYMezqcmdDH4QP2XTCGfSALqmBnyCYLHkC8dBZ8+Slgs7xOh
tBu9Uf8QDMAinTAUvYmUlkcyK0dbkJ8zMloBRVAALidU6+QjteCqnK1GFjs7Jtrg
M0+1qSL/EyiPAs8GdWyQD8V7xa1HjYcZX/tDqi5EKrUqSlS6PcSBVMjRCpmi2c7m
OhsCbvkACd4qfW5uL2pOtku9OpxXi5tuJMDPMomSfnNPRI8iIONYYj3TXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCLDncKIrCnOgpMvjFiyVCNuil1sMB8GA1UdIwQY
MBaAFIxxS2yyutTnY5qKonECj1qhvGrCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvakhGTGJMSzYxT2RqbW9xaWNRS1BXcUc4YXNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS8wMmE4ZDYtOTE1OC00YWViLWE3NTAt
Nzg3NTNhMTA0MjI2LzEvakhGTGJMSzYxT2RqbW9xaWNRS1BXcUc4YXNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS8wMmE4ZDYtOTE1OC00YWViLWE3NTAtNzg3NTNhMTA0MjI2
LzEvakhGTGJMSzYxT2RqbW9xaWNRS1BXcUc4YXNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc774CN3+
T73uQBPSz9BUytSBENuwWZK9aLQUa5//LhM2oQwWVhjYfiZrZTmB0xL5psbMG0w0
SA97MGCAjzRuCAZPztymKDiImz4a0I3l2npKko0UrKzNIK1QGQmW3DRyWrnmp7DG
nzc0/rhdxIW3oSHXy3HgEOusUD0P4aeJVJn9iRqRmUaaTWzX2umDOtfSzYcchCZu
sQ8CZOBNoGbwr+Hsxt4x9/Fs/IcNqZly7EPR9wX/FalbPkau01tIsgpgBmheHIxT
5t6bUaicvrcKH37U5aVp59Whqonj1B9lw/U1L8a54P9cUZF2MDxRiD/kCgU5QGGi
/OXTv831lKTxEA==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:36:54 2025 by rpki-client on console-fra.rpki-client.org