Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/YGVg4D7ogzLu-_ppROvRA4rg6rg.mft
File: YGVg4D7ogzLu-_ppROvRA4rg6rg.mft (raw, json)
Hash identifier: tL8eTjKCMNFiHHa0lEHodyNaKuRTjgoj6tYifPigrWo=
Subject key identifier: 60:2D:1D:2C:FF:6B:4A:72:00:B7:67:B7:87:64:E8:0E:27:97:66:5A
Authority key identifier: 60:65:60:E0:3E:E8:83:32:EE:FB:FA:69:44:EB:D1:03:8A:E0:EA:B8
Certificate issuer: /CN=606560e03ee88332eefbfa6944ebd1038ae0eab8
Certificate serial: 0194BB97419D9AAA719B794573FB3AFC3DFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGVg4D7ogzLu-_ppROvRA4rg6rg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/YGVg4D7ogzLu-_ppROvRA4rg6rg.mft
Manifest number: 0C03
Signing time: Fri 31 Jan 2025 09:00:39 +0000
Manifest this update: Fri 31 Jan 2025 09:00:39 +0000
Manifest next update: Sat 01 Feb 2025 09:00:39 +0000
Files and hashes: 1: 6He2HCHOgYmFWCnJx-CHnw1DNw4.roa (hash: R/op20lcuNNKjtAV2ZxOf6+gcTn27jdjTjhCIstJEzU=)
2: YGVg4D7ogzLu-_ppROvRA4rg6rg.crl (hash: bFL7+0xTHoDXG5yqwDPFArZbPyZGuwmBN0Hxwj/DM5c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/YGVg4D7ogzLu-_ppROvRA4rg6rg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/YGVg4D7ogzLu-_ppROvRA4rg6rg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YGVg4D7ogzLu-_ppROvRA4rg6rg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 09:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:97:41:9d:9a:aa:71:9b:79:45:73:fb:3a:fc:3d:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606560e03ee88332eefbfa6944ebd1038ae0eab8
Validity
Not Before: Jan 31 09:00:39 2025 GMT
Not After : Feb 1 09:00:39 2025 GMT
Subject: CN=602d1d2cff6b4a7200b767b78764e80e2797665a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ac:84:61:4b:d0:d1:aa:85:2b:86:d2:ab:55:
e8:dc:a8:31:03:42:a0:8a:1a:73:80:7c:5a:02:14:
cf:12:85:b7:fb:70:f0:cc:3f:df:f2:db:08:90:ef:
55:2d:fc:0a:1b:30:c5:db:06:9a:57:26:fa:97:72:
aa:60:73:36:f3:75:a7:99:ff:5a:37:92:11:12:dd:
16:a8:08:c2:cd:e8:07:88:a4:94:d7:ee:b9:26:47:
ad:48:6c:fe:9a:d9:a5:1e:ed:78:45:73:eb:1d:83:
9d:59:44:e2:ca:de:31:f3:f6:42:45:ef:ed:c6:77:
96:57:e2:84:c5:2d:4a:4d:ca:39:e9:39:35:ec:cf:
6e:aa:40:5e:d0:16:50:1c:79:b5:93:38:a8:88:3f:
f1:14:7c:5a:c5:76:d7:b7:d0:48:a3:0e:ea:f5:55:
02:25:cb:5f:ab:bc:66:4f:ac:a4:8f:e2:59:e8:a1:
73:97:7b:9c:5b:57:7c:70:e0:2d:20:37:99:7e:98:
73:7c:61:aa:a5:c7:a4:5b:de:18:67:8c:1a:8e:06:
ca:ea:a7:cb:65:f0:cc:88:dc:9d:cb:17:e1:50:80:
7e:03:80:20:56:88:ee:9b:29:f9:3d:98:61:91:cb:
19:bf:d9:2e:2f:17:ba:af:44:1b:0e:d1:90:12:29:
a6:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:2D:1D:2C:FF:6B:4A:72:00:B7:67:B7:87:64:E8:0E:27:97:66:5A
X509v3 Authority Key Identifier:
keyid:60:65:60:E0:3E:E8:83:32:EE:FB:FA:69:44:EB:D1:03:8A:E0:EA:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGVg4D7ogzLu-_ppROvRA4rg6rg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/YGVg4D7ogzLu-_ppROvRA4rg6rg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/YGVg4D7ogzLu-_ppROvRA4rg6rg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:5b:6b:5c:f5:3a:ff:d9:2d:06:6a:62:29:3a:28:00:cd:83:
a1:19:d4:ed:1c:20:13:40:a8:ee:a3:5d:3a:23:a0:7f:2a:a4:
2e:50:24:f3:4c:2a:0b:85:03:11:02:02:44:e4:cf:b1:03:6d:
0b:20:7b:94:05:62:62:d4:35:7c:de:7d:d8:4d:db:9e:c2:21:
b4:58:82:c1:8d:cc:9b:b5:bd:02:55:ee:aa:34:43:58:40:20:
dc:0c:fa:69:15:14:29:bf:40:0a:2b:4f:8a:2f:2d:bd:05:05:
46:c4:6e:85:36:17:3c:62:ef:90:83:aa:d6:17:89:96:9e:66:
92:72:f2:1b:6e:bc:41:2c:0f:97:fb:0c:32:3d:43:c6:12:cd:
91:e1:ef:71:bb:a8:33:b4:d6:6e:f0:21:24:d4:c7:e3:db:8b:
53:71:a1:44:60:26:19:90:72:0d:bf:48:1b:e1:24:33:46:d4:
f4:9a:9b:c1:d3:39:09:0c:15:16:d5:0c:43:76:40:b5:94:75:
20:47:95:39:49:0b:e8:88:03:40:fb:ca:8c:8e:cf:cb:95:b8:
9b:5c:bf:5b:73:18:72:e0:da:58:de:0f:78:e8:8e:ce:9a:a9:
45:96:de:ad:06:33:fb:08:d6:f2:af:a8:bf:bc:04:c6:67:19:
7b:be:21:cf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS7l0Gdmqpxm3lFc/s6/D37MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjU2MGUwM2VlODgzMzJlZWZiZmE2OTQ0ZWJkMTAzOGFl
MGVhYjgwHhcNMjUwMTMxMDkwMDM5WhcNMjUwMjAxMDkwMDM5WjAzMTEwLwYDVQQD
Eyg2MDJkMWQyY2ZmNmI0YTcyMDBiNzY3Yjc4NzY0ZTgwZTI3OTc2NjVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6KyEYUvQ0aqFK4bSq1Xo3KgxA0Kg
ihpzgHxaAhTPEoW3+3DwzD/f8tsIkO9VLfwKGzDF2waaVyb6l3KqYHM283Wnmf9a
N5IREt0WqAjCzegHiKSU1+65JketSGz+mtmlHu14RXPrHYOdWUTiyt4x8/ZCRe/t
xneWV+KExS1KTco56Tk17M9uqkBe0BZQHHm1kzioiD/xFHxaxXbXt9BIow7q9VUC
Jctfq7xmT6ykj+JZ6KFzl3ucW1d8cOAtIDeZfphzfGGqpcekW94YZ4wajgbK6qfL
ZfDMiNydyxfhUIB+A4AgVojumyn5PZhhkcsZv9kuLxe6r0QbDtGQEimmCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGAtHSz/a0pyALdnt4dk6A4nl2ZaMB8GA1UdIwQY
MBaAFGBlYOA+6IMy7vv6aUTr0QOK4Oq4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdWZzREN29nekx1LV9wcFJPdlJBNHJnNnJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9kNGI3OGYtOGNiYi00ODQ2LTg2NmUt
Y2Y5ZTcxNjRjMDdmLzEvWUdWZzREN29nekx1LV9wcFJPdlJBNHJnNnJnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC9kNGI3OGYtOGNiYi00ODQ2LTg2NmUtY2Y5ZTcxNjRjMDdm
LzEvWUdWZzREN29nekx1LV9wcFJPdlJBNHJnNnJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJFtrXPU6
/9ktBmpiKTooAM2DoRnU7RwgE0Co7qNdOiOgfyqkLlAk80wqC4UDEQICROTPsQNt
CyB7lAViYtQ1fN592E3bnsIhtFiCwY3Mm7W9AlXuqjRDWEAg3Az6aRUUKb9ACitP
ii8tvQUFRsRuhTYXPGLvkIOq1heJlp5mknLyG268QSwPl/sMMj1DxhLNkeHvcbuo
M7TWbvAhJNTH49uLU3GhRGAmGZByDb9IG+EkM0bU9JqbwdM5CQwVFtUMQ3ZAtZR1
IEeVOUkL6IgDQPvKjI7Py5W4m1y/W3MYcuDaWN4PeOiOzpqpRZberQYz+wjW8q+o
v7wExmcZe74hzw==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:38:15 2025 by rpki-client on console-fra.rpki-client.org