Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
File: ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft (raw, json)
Hash identifier: LR6EGmxuaXElUO/JSNm9tHBbHYCAPUV7knmwdV3J7+s=
Subject key identifier: 83:72:85:A1:A7:D8:B8:5D:86:32:B1:91:FA:7F:67:2A:08:07:D2:9F
Authority key identifier: 66:BA:8D:64:E9:01:B3:9B:50:1E:D3:69:3E:C2:74:30:71:38:86:E3
Certificate issuer: /CN=66ba8d64e901b39b501ed3693ec27430713886e3
Certificate serial: 0194BAF21921A3442EDF16D6C1780E43BFBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
Manifest number: 0D97
Signing time: Fri 31 Jan 2025 06:00:15 +0000
Manifest this update: Fri 31 Jan 2025 06:00:15 +0000
Manifest next update: Sat 01 Feb 2025 06:00:15 +0000
Files and hashes: 1: Fg0QsDS_oIn0AHFloFbOWLXLPYw.roa (hash: PCZ0sNE5BS8dEXbU+ksvDG3w1iOi7xIBrn9yDW7TZ/U=)
2: ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl (hash: /44Fu2S+7bg6QhvstF755ZrnR7L7imAE1dWs+SKSK8M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 06:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:f2:19:21:a3:44:2e:df:16:d6:c1:78:0e:43:bf:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ba8d64e901b39b501ed3693ec27430713886e3
Validity
Not Before: Jan 31 06:00:15 2025 GMT
Not After : Feb 1 06:00:15 2025 GMT
Subject: CN=837285a1a7d8b85d8632b191fa7f672a0807d29f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:16:de:00:68:9a:4e:25:43:19:a6:6d:dc:93:
3d:8a:55:0f:f0:38:f7:41:81:30:88:b0:f0:fb:41:
5e:7c:a8:43:ab:55:21:aa:b4:be:d5:d6:0e:04:9c:
a4:f4:b7:40:6e:da:67:b8:54:09:9d:be:9f:67:e6:
26:8d:d4:58:45:50:d9:4c:f2:43:f3:ad:98:3d:53:
c0:3e:10:30:34:85:b1:04:f0:42:8b:16:da:65:92:
c6:5f:8a:be:25:98:c6:17:ae:c9:aa:81:aa:3a:a5:
47:9c:8c:55:6e:10:40:91:f9:1b:b6:62:58:5b:8e:
5a:17:6f:fa:8a:ce:55:f5:31:a6:cd:19:f8:c6:6b:
7f:0a:8a:79:f9:46:a7:20:65:df:1d:a6:69:13:18:
d5:df:ef:88:0e:5d:e2:49:03:ef:a7:fa:68:4c:e9:
87:04:2e:53:b6:4e:90:c3:65:6a:d5:7b:82:24:4b:
ec:53:9a:da:f8:4b:8b:2f:b9:37:a8:a0:c8:e9:05:
d9:47:f5:4d:87:e6:32:52:36:dd:10:1c:1f:7a:aa:
4e:d3:11:36:d8:8c:8f:77:e6:8a:97:6c:42:e8:57:
84:13:96:77:9e:6d:0d:70:ff:97:7a:61:93:06:6b:
2e:02:d9:6c:13:43:ee:d6:1b:52:e1:3c:80:9d:ba:
d2:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:72:85:A1:A7:D8:B8:5D:86:32:B1:91:FA:7F:67:2A:08:07:D2:9F
X509v3 Authority Key Identifier:
keyid:66:BA:8D:64:E9:01:B3:9B:50:1E:D3:69:3E:C2:74:30:71:38:86:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:cb:ff:4d:2e:b2:aa:48:14:4a:3e:3f:2b:12:b9:c5:a0:69:
c3:09:10:64:d6:ac:74:df:52:28:ec:55:59:02:7c:fa:cd:ed:
86:fd:30:a9:12:86:73:5b:ab:f9:67:73:b2:a6:25:a0:92:95:
ab:15:d7:4d:8c:8e:0f:3e:7f:32:c2:53:67:2e:a0:84:f6:29:
21:33:24:2c:0d:ef:9b:13:9a:0f:3e:c1:83:33:10:9c:a0:b7:
eb:d5:6e:83:07:31:33:e5:9a:1d:54:1b:e0:05:0d:f0:b9:b6:
71:a1:59:eb:0b:dd:62:f9:11:59:5a:32:c9:56:31:9c:b2:85:
37:7d:58:74:9b:2e:1f:df:dd:ed:f2:27:e5:13:01:f6:a1:9e:
82:2f:e8:d9:82:d9:70:7a:37:04:9b:5a:9a:74:27:48:3b:b4:
14:5b:98:aa:94:8a:d3:17:0b:62:93:cd:5a:2b:2e:7b:db:c0:
4b:7d:45:67:fe:26:5d:18:e4:77:36:48:e1:9c:68:b8:a2:f8:
79:03:09:7c:37:06:88:41:34:12:92:04:d5:5a:10:6c:1f:fe:
d3:ba:7a:b9:6c:ce:89:c0:c4:6b:73:73:7d:82:bd:7b:b3:74:
7b:0f:ac:1d:14:fe:77:93:52:c1:23:8a:34:c4:4b:97:ab:e6:
6b:5f:ca:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS68hkho0Qu3xbWwXgOQ7+8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2YmE4ZDY0ZTkwMWIzOWI1MDFlZDM2OTNlYzI3NDMwNzEz
ODg2ZTMwHhcNMjUwMTMxMDYwMDE1WhcNMjUwMjAxMDYwMDE1WjAzMTEwLwYDVQQD
Eyg4MzcyODVhMWE3ZDhiODVkODYzMmIxOTFmYTdmNjcyYTA4MDdkMjlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxBbeAGiaTiVDGaZt3JM9ilUP8Dj3
QYEwiLDw+0FefKhDq1UhqrS+1dYOBJyk9LdAbtpnuFQJnb6fZ+YmjdRYRVDZTPJD
862YPVPAPhAwNIWxBPBCixbaZZLGX4q+JZjGF67JqoGqOqVHnIxVbhBAkfkbtmJY
W45aF2/6is5V9TGmzRn4xmt/Cop5+UanIGXfHaZpExjV3++IDl3iSQPvp/poTOmH
BC5Ttk6Qw2Vq1XuCJEvsU5ra+EuLL7k3qKDI6QXZR/VNh+YyUjbdEBwfeqpO0xE2
2IyPd+aKl2xC6FeEE5Z3nm0NcP+XemGTBmsuAtlsE0Pu1htS4TyAnbrSuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFINyhaGn2LhdhjKxkfp/ZyoIB9KfMB8GA1UdIwQY
MBaAFGa6jWTpAbObUB7TaT7CdDBxOIbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWnJxTlpPa0JzNXRRSHROcFBzSjBNSEU0aHVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS9hYTdlNTMtNDkwZi00MTc3LThiMTEt
MGIzZTdlYmU0YWMyLzEvWnJxTlpPa0JzNXRRSHROcFBzSjBNSEU0aHVNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS9hYTdlNTMtNDkwZi00MTc3LThiMTEtMGIzZTdlYmU0YWMy
LzEvWnJxTlpPa0JzNXRRSHROcFBzSjBNSEU0aHVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARsv/TS6y
qkgUSj4/KxK5xaBpwwkQZNasdN9SKOxVWQJ8+s3thv0wqRKGc1ur+WdzsqYloJKV
qxXXTYyODz5/MsJTZy6ghPYpITMkLA3vmxOaDz7BgzMQnKC369VugwcxM+WaHVQb
4AUN8Lm2caFZ6wvdYvkRWVoyyVYxnLKFN31YdJsuH9/d7fIn5RMB9qGegi/o2YLZ
cHo3BJtamnQnSDu0FFuYqpSK0xcLYpPNWisue9vAS31FZ/4mXRjkdzZI4ZxouKL4
eQMJfDcGiEE0EpIE1VoQbB/+07p6uWzOicDEa3NzfYK9e7N0ew+sHRT+d5NSwSOK
NMRLl6vma1/Ktg==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:39:56 2025 by rpki-client on console-fra.rpki-client.org