Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.mft
File: a8GtFnaioypFoM85L3-cXqaOLeo.mft (raw, json)
Hash identifier: AmfpRqv3bXNuvfZgNDD8ZOBPIWvwiPFlGpU1+7VQ/AE=
Subject key identifier: 7E:E1:C0:67:9F:5C:47:C6:D8:8A:11:8D:36:93:41:E2:65:7A:40:11
Authority key identifier: 6B:C1:AD:16:76:A2:A3:2A:45:A0:CF:39:2F:7F:9C:5E:A6:8E:2D:EA
Certificate issuer: /CN=6bc1ad1676a2a32a45a0cf392f7f9c5ea68e2dea
Certificate serial: 0194BB97025C531B318257192D01C115CEE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a8GtFnaioypFoM85L3-cXqaOLeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.mft
Manifest number: 1429
Signing time: Fri 31 Jan 2025 09:00:23 +0000
Manifest this update: Fri 31 Jan 2025 09:00:23 +0000
Manifest next update: Sat 01 Feb 2025 09:00:23 +0000
Files and hashes: 1: CkA5P7l5ePDJ8YtVI5RwljhHN3I.roa (hash: Rv4CNPYpNEer366FC8TAHEAISsXVQ6rJf8w+ppgPPgs=)
2: a8GtFnaioypFoM85L3-cXqaOLeo.crl (hash: guF3ptjPj5wvr+jXT9WUlmhGkBhZuufOvE4W1QTjlks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.mft
rsync://rpki.ripe.net/repository/DEFAULT/a8GtFnaioypFoM85L3-cXqaOLeo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 09:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:97:02:5c:53:1b:31:82:57:19:2d:01:c1:15:ce:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bc1ad1676a2a32a45a0cf392f7f9c5ea68e2dea
Validity
Not Before: Jan 31 09:00:23 2025 GMT
Not After : Feb 1 09:00:23 2025 GMT
Subject: CN=7ee1c0679f5c47c6d88a118d369341e2657a4011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:13:fb:87:a0:f8:c5:05:98:1d:d5:64:8c:40:
77:2d:31:06:dc:3a:ea:97:73:64:d2:ed:4d:60:27:
19:be:9b:34:7c:e9:8c:6f:16:4c:61:a8:57:63:f9:
4c:59:52:1b:2a:44:da:2a:52:b6:53:ad:c8:52:c2:
6f:09:3a:89:cc:7e:bd:30:d6:97:a8:e1:f0:06:44:
26:c8:27:88:67:09:c4:7d:b5:c9:2e:05:96:b4:0a:
0b:45:23:41:40:2f:2f:c0:f0:f9:fc:da:8a:c4:f5:
a3:79:d1:8b:1f:ed:66:49:96:93:af:a5:d2:dd:ed:
3d:5b:9e:22:fc:8f:d6:9d:b6:4e:99:bd:55:70:ba:
35:bc:f2:40:2a:03:88:b0:c3:34:e4:c9:63:e7:5f:
00:3f:c8:ba:fe:97:af:c7:bc:2a:87:b0:89:c8:08:
36:1e:f0:33:8a:b1:b2:c2:d7:ea:52:67:ee:ef:4c:
7c:85:76:12:fd:b5:0b:d7:18:a2:a5:12:31:10:fb:
3a:a1:94:17:04:db:62:9e:33:7c:b3:38:da:a6:fb:
1a:06:17:dc:76:c6:26:6a:b3:35:78:0e:d5:b8:ba:
9f:99:ac:cb:ef:be:0a:5d:6d:3d:7d:fc:54:a0:c4:
58:4a:6c:0f:80:b4:0e:61:0d:40:9c:91:e8:e3:ce:
7c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:E1:C0:67:9F:5C:47:C6:D8:8A:11:8D:36:93:41:E2:65:7A:40:11
X509v3 Authority Key Identifier:
keyid:6B:C1:AD:16:76:A2:A3:2A:45:A0:CF:39:2F:7F:9C:5E:A6:8E:2D:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8GtFnaioypFoM85L3-cXqaOLeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:cb:a3:37:d2:89:7c:bd:58:81:ae:ba:3b:23:09:c6:f3:59:
e5:a9:f4:c9:d5:c6:be:a5:60:c3:69:85:10:e5:5a:bb:58:b3:
b2:8f:34:35:de:0a:c0:8f:24:3c:90:82:1b:82:07:d9:0a:73:
59:30:6c:77:88:12:41:ef:9e:0d:0f:ea:2f:c9:32:b5:bd:ba:
29:a0:fc:8e:5c:78:19:14:33:f9:86:09:e4:c1:64:be:cc:34:
83:13:9d:d5:e1:f6:65:c8:b2:90:1a:c3:74:ba:6e:72:d1:c9:
bf:e2:53:4d:57:0f:4d:97:51:5a:ca:b7:c6:ca:79:f1:51:cb:
90:74:b7:12:e7:fe:a5:8b:a2:54:52:cf:7a:f6:1f:63:1a:b1:
38:88:3c:e0:01:14:a2:a3:e9:37:36:a9:ed:c7:22:cb:c5:e3:
56:89:58:71:38:ca:0f:29:3d:f8:38:ac:af:2c:f3:d1:9f:24:
dd:74:f8:69:3a:b2:c4:26:dc:fc:b2:fc:62:ff:4d:0b:51:0b:
4d:64:3e:67:13:d3:d7:2c:4f:91:28:a1:fe:a2:b7:52:f6:1a:
46:2c:8e:d8:21:64:db:af:2b:29:35:75:d4:93:da:12:a5:b2:
12:42:7d:fe:f1:b1:91:be:5b:3b:ec:c2:d9:1f:f6:b8:4e:1c:
2a:d6:15:27
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS7lwJcUxsxglcZLQHBFc7lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiYzFhZDE2NzZhMmEzMmE0NWEwY2YzOTJmN2Y5YzVlYTY4
ZTJkZWEwHhcNMjUwMTMxMDkwMDIzWhcNMjUwMjAxMDkwMDIzWjAzMTEwLwYDVQQD
Eyg3ZWUxYzA2NzlmNWM0N2M2ZDg4YTExOGQzNjkzNDFlMjY1N2E0MDExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlRP7h6D4xQWYHdVkjEB3LTEG3Drq
l3Nk0u1NYCcZvps0fOmMbxZMYahXY/lMWVIbKkTaKlK2U63IUsJvCTqJzH69MNaX
qOHwBkQmyCeIZwnEfbXJLgWWtAoLRSNBQC8vwPD5/NqKxPWjedGLH+1mSZaTr6XS
3e09W54i/I/WnbZOmb1VcLo1vPJAKgOIsMM05Mlj518AP8i6/pevx7wqh7CJyAg2
HvAzirGywtfqUmfu70x8hXYS/bUL1xiipRIxEPs6oZQXBNtinjN8szjapvsaBhfc
dsYmarM1eA7VuLqfmazL774KXW09ffxUoMRYSmwPgLQOYQ1AnJHo4858qQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH7hwGefXEfG2IoRjTaTQeJlekARMB8GA1UdIwQY
MBaAFGvBrRZ2oqMqRaDPOS9/nF6mji3qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYThHdEZuYWlveXBGb004NUwzLWNYcWFPTGVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8yMjM5MmUtYWE2Ny00NTg4LWI4MDkt
ZWYxYWFhYWJmZTJiLzEvYThHdEZuYWlveXBGb004NUwzLWNYcWFPTGVvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi8yMjM5MmUtYWE2Ny00NTg4LWI4MDktZWYxYWFhYWJmZTJi
LzEvYThHdEZuYWlveXBGb004NUwzLWNYcWFPTGVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnMujN9KJ
fL1Yga66OyMJxvNZ5an0ydXGvqVgw2mFEOVau1izso80Nd4KwI8kPJCCG4IH2Qpz
WTBsd4gSQe+eDQ/qL8kytb26KaD8jlx4GRQz+YYJ5MFkvsw0gxOd1eH2ZciykBrD
dLpuctHJv+JTTVcPTZdRWsq3xsp58VHLkHS3Euf+pYuiVFLPevYfYxqxOIg84AEU
oqPpNzap7cciy8XjVolYcTjKDyk9+Disryzz0Z8k3XT4aTqyxCbc/LL8Yv9NC1EL
TWQ+ZxPT1yxPkSih/qK3UvYaRiyO2CFk268rKTV11JPaEqWyEkJ9/vGxkb5bO+zC
2R/2uE4cKtYVJw==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:43:56 2025 by rpki-client on console-fra.rpki-client.org