Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/3ef96e-f8a6-4f9b-9bc7-fe26e899deb8/1/IPgSdPZr3onxLCQ9Cantw-Wx4ik.mft
File: IPgSdPZr3onxLCQ9Cantw-Wx4ik.mft (raw, json)
Hash identifier: NTA3PtVd1VnV8GQNxOa8uSZ66Tg2+qOHcuGxIw/sziw=
Subject key identifier: 04:D7:0F:66:6D:2F:EB:D4:43:06:AB:9B:37:26:C3:D9:BC:3A:1B:E3
Authority key identifier: 20:F8:12:74:F6:6B:DE:89:F1:2C:24:3D:09:A9:ED:C3:E5:B1:E2:29
Certificate issuer: /CN=20f81274f66bde89f12c243d09a9edc3e5b1e229
Certificate serial: 0194BABBC9D810845E1FD167777BF5585C37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPgSdPZr3onxLCQ9Cantw-Wx4ik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/3ef96e-f8a6-4f9b-9bc7-fe26e899deb8/1/IPgSdPZr3onxLCQ9Cantw-Wx4ik.mft
Manifest number: 0A8F
Signing time: Fri 31 Jan 2025 05:00:56 +0000
Manifest this update: Fri 31 Jan 2025 05:00:56 +0000
Manifest next update: Sat 01 Feb 2025 05:00:56 +0000
Files and hashes: 1: IPgSdPZr3onxLCQ9Cantw-Wx4ik.crl (hash: 7BTOYOuAJFhOr3GGwLF/xRFfHZ579z33eB8QjYv9w54=)
2: yvbz_UH1uJZVqDKchWjC2DbH2u0.roa (hash: A7u8f2W74RMi57K78M26+2R7Yi1xzIaztv6J4Ydr5ug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/3ef96e-f8a6-4f9b-9bc7-fe26e899deb8/1/IPgSdPZr3onxLCQ9Cantw-Wx4ik.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/3ef96e-f8a6-4f9b-9bc7-fe26e899deb8/1/IPgSdPZr3onxLCQ9Cantw-Wx4ik.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPgSdPZr3onxLCQ9Cantw-Wx4ik.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:c9:d8:10:84:5e:1f:d1:67:77:7b:f5:58:5c:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f81274f66bde89f12c243d09a9edc3e5b1e229
Validity
Not Before: Jan 31 05:00:56 2025 GMT
Not After : Feb 1 05:00:56 2025 GMT
Subject: CN=04d70f666d2febd44306ab9b3726c3d9bc3a1be3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c1:e6:b7:8d:1c:84:2e:44:fd:db:ea:91:75:
bf:cc:ff:30:fc:22:70:79:be:24:74:54:70:93:a4:
d7:9a:ff:f7:62:27:da:29:de:34:3a:29:21:1b:21:
7c:d0:86:d4:04:5c:da:7a:9d:e2:84:5f:92:49:e6:
a7:0b:2e:95:b4:45:9e:d2:d1:d8:d6:55:8b:2f:29:
22:6b:eb:eb:e3:22:a2:9a:a5:26:3b:63:41:45:6b:
6b:ef:37:22:cf:a0:79:e6:f3:1d:06:94:52:6c:0c:
be:79:6c:cb:47:94:12:a1:46:6a:f8:d8:de:db:7d:
aa:05:60:2a:03:b9:5e:c8:e1:8d:19:bc:8f:94:0f:
81:5a:86:37:e8:30:2e:60:9e:c2:6e:26:c0:3d:43:
01:9f:ba:ed:77:30:06:06:9b:d2:4c:ad:b9:e1:c5:
a5:3c:78:38:f9:f2:ba:f8:f6:57:58:0e:82:00:2b:
94:95:cc:87:9d:cb:03:4a:41:06:e0:2e:23:4c:04:
35:93:f2:fe:a7:f2:6f:ff:76:29:9b:31:a9:a5:82:
8d:1a:55:22:8f:8c:9d:b4:34:07:da:f0:cf:75:69:
f7:a0:8e:ed:ba:5d:2c:72:4d:fb:21:14:17:94:07:
eb:92:79:f9:e3:bf:b3:9e:49:6a:c1:b1:52:9b:0c:
60:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:D7:0F:66:6D:2F:EB:D4:43:06:AB:9B:37:26:C3:D9:BC:3A:1B:E3
X509v3 Authority Key Identifier:
keyid:20:F8:12:74:F6:6B:DE:89:F1:2C:24:3D:09:A9:ED:C3:E5:B1:E2:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPgSdPZr3onxLCQ9Cantw-Wx4ik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3ef96e-f8a6-4f9b-9bc7-fe26e899deb8/1/IPgSdPZr3onxLCQ9Cantw-Wx4ik.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3ef96e-f8a6-4f9b-9bc7-fe26e899deb8/1/IPgSdPZr3onxLCQ9Cantw-Wx4ik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:65:31:29:e7:7e:49:9f:c3:31:cd:19:3f:a7:f1:b4:9e:c2:
76:51:06:41:75:1f:90:c2:6b:82:9b:aa:82:63:58:63:b5:9f:
cd:ae:f6:a8:66:86:5b:21:16:fa:5c:d8:54:ed:4b:72:ca:ec:
ef:33:5f:36:df:63:56:aa:51:7a:e3:80:7b:df:0a:15:5b:7a:
c0:17:fb:dd:b5:3d:63:a8:c5:ad:8c:ea:95:8f:5d:2e:f4:85:
5e:0d:67:c0:f0:af:61:ac:98:7e:51:89:a7:ee:33:09:ca:29:
ab:9d:d4:e6:48:e7:16:a5:d0:ba:40:f3:47:97:91:73:f1:9f:
c6:f5:1b:c4:08:95:03:e6:95:ad:a0:30:3a:e9:78:bd:6a:a2:
0b:62:d9:e4:f0:00:a0:48:92:7a:d9:5b:2d:4d:37:46:cc:a7:
25:af:32:6a:ba:c6:bc:87:26:5c:f7:58:a3:b1:61:46:8f:ee:
4c:3d:87:4c:12:70:39:d1:50:21:26:05:6f:37:f7:47:5d:f0:
ce:b2:f5:15:21:f6:84:aa:11:d5:29:81:51:75:eb:cf:2d:75:
20:d7:25:b3:c3:4f:00:02:f6:a4:b4:ef:b7:46:c5:58:f4:f7:
cc:c2:f0:53:41:c6:da:e2:f0:e4:46:57:6d:8d:02:8c:21:4b:
19:64:6d:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS6u8nYEIReH9Fnd3v1WFw3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwZjgxMjc0ZjY2YmRlODlmMTJjMjQzZDA5YTllZGMzZTVi
MWUyMjkwHhcNMjUwMTMxMDUwMDU2WhcNMjUwMjAxMDUwMDU2WjAzMTEwLwYDVQQD
EygwNGQ3MGY2NjZkMmZlYmQ0NDMwNmFiOWIzNzI2YzNkOWJjM2ExYmUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnsHmt40chC5E/dvqkXW/zP8w/CJw
eb4kdFRwk6TXmv/3YifaKd40OikhGyF80IbUBFzaep3ihF+SSeanCy6VtEWe0tHY
1lWLLykia+vr4yKimqUmO2NBRWtr7zciz6B55vMdBpRSbAy+eWzLR5QSoUZq+Nje
232qBWAqA7leyOGNGbyPlA+BWoY36DAuYJ7CbibAPUMBn7rtdzAGBpvSTK254cWl
PHg4+fK6+PZXWA6CACuUlcyHncsDSkEG4C4jTAQ1k/L+p/Jv/3YpmzGppYKNGlUi
j4ydtDQH2vDPdWn3oI7tul0sck37IRQXlAfrknn547+znklqwbFSmwxgMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFATXD2ZtL+vUQwarmzcmw9m8OhvjMB8GA1UdIwQY
MBaAFCD4EnT2a96J8SwkPQmp7cPlseIpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVBnU2RQWnIzb254TENROUNhbnR3LVd4NGlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8zZWY5NmUtZjhhNi00ZjliLTliYzct
ZmUyNmU4OTlkZWI4LzEvSVBnU2RQWnIzb254TENROUNhbnR3LVd4NGlrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi8zZWY5NmUtZjhhNi00ZjliLTliYzctZmUyNmU4OTlkZWI4
LzEvSVBnU2RQWnIzb254TENROUNhbnR3LVd4NGlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgWUxKed+
SZ/DMc0ZP6fxtJ7CdlEGQXUfkMJrgpuqgmNYY7Wfza72qGaGWyEW+lzYVO1Lcsrs
7zNfNt9jVqpReuOAe98KFVt6wBf73bU9Y6jFrYzqlY9dLvSFXg1nwPCvYayYflGJ
p+4zCcopq53U5kjnFqXQukDzR5eRc/GfxvUbxAiVA+aVraAwOul4vWqiC2LZ5PAA
oEiSetlbLU03RsynJa8yarrGvIcmXPdYo7FhRo/uTD2HTBJwOdFQISYFbzf3R13w
zrL1FSH2hKoR1SmBUXXrzy11INcls8NPAAL2pLTvt0bFWPT3zMLwU0HG2uLw5EZX
bY0CjCFLGWRtwA==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:44:00 2025 by rpki-client on console-fra.rpki-client.org