Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/b2ace7-48db-4f7d-917f-306189d5c049/1/oso33tG3DIG3SkMPm016zGKAXtg.mft
File: oso33tG3DIG3SkMPm016zGKAXtg.mft (raw, json)
Hash identifier: Hsm+FYFPdIOFV/mQ4vRiEuPdbBf9Md2f/QwP1Cu/QiI=
Subject key identifier: B8:C5:13:63:C8:13:CC:FB:F7:62:DA:CD:83:5D:06:F7:36:57:C4:98
Authority key identifier: A2:CA:37:DE:D1:B7:0C:81:B7:4A:43:0F:9B:4D:7A:CC:62:80:5E:D8
Certificate issuer: /CN=a2ca37ded1b70c81b74a430f9b4d7acc62805ed8
Certificate serial: 01907207C9AF2336AA7DFC26EAFA6FD0FDF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oso33tG3DIG3SkMPm016zGKAXtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/b2ace7-48db-4f7d-917f-306189d5c049/1/oso33tG3DIG3SkMPm016zGKAXtg.mft
Manifest number: 2A
Signing time: Tue 02 Jul 2024 06:00:31 +0000
Manifest this update: Tue 02 Jul 2024 06:00:31 +0000
Manifest next update: Wed 03 Jul 2024 06:00:31 +0000
Files and hashes: 1: 0dE_a7A5N3kVd-fj11roSczrjKs.roa (hash: WDufLPu0hy7TnYq5s35d8xwudq3CFAiDrc0KxvbLxos=)
2: 8pRtCyCXJt6d4HwpOVM7F0UDshw.roa (hash: i4y/SB2wcYCqvjUo/ETBzIc6v+1rOKiEMkG+US385ys=)
3: ShWT_KulWadt0mQwvcR7AMy-HEc.roa (hash: 8IOhWJ319ZWm5MmDKe4ZfA85BDyWLDHoFubMZwcKh5U=)
4: oso33tG3DIG3SkMPm016zGKAXtg.crl (hash: fSERM9bhp6in91EUkr5XcOBiJ/98tZZ4dUlV0Os3Dec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/b2ace7-48db-4f7d-917f-306189d5c049/1/oso33tG3DIG3SkMPm016zGKAXtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/b2ace7-48db-4f7d-917f-306189d5c049/1/oso33tG3DIG3SkMPm016zGKAXtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oso33tG3DIG3SkMPm016zGKAXtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jul 2024 06:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:72:07:c9:af:23:36:aa:7d:fc:26:ea:fa:6f:d0:fd:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2ca37ded1b70c81b74a430f9b4d7acc62805ed8
Validity
Not Before: Jul 2 06:00:31 2024 GMT
Not After : Jul 3 06:00:31 2024 GMT
Subject: CN=b8c51363c813ccfbf762dacd835d06f73657c498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1e:9a:44:c1:af:65:02:c9:44:1a:83:d3:34:
94:31:ae:12:ee:19:d3:d9:2d:36:b1:ef:8b:30:36:
cc:bd:44:22:ef:9f:df:df:44:a1:f1:95:28:d7:bb:
39:f9:c9:33:4e:1e:9e:01:35:b6:66:2c:80:e0:81:
29:4f:c2:fd:d2:90:72:8f:22:a7:26:61:ae:0e:97:
5c:95:72:84:20:1f:c3:9e:ca:87:0e:76:25:b7:51:
ee:26:98:0b:de:60:4f:e1:c0:42:70:a2:b6:eb:50:
5f:32:5e:29:3c:fc:6b:d2:2c:01:9a:74:aa:c4:eb:
fc:ad:e8:e8:ee:44:e7:10:22:bd:63:91:36:b4:1e:
39:01:e1:08:35:c6:76:80:f8:2b:cb:d9:2f:f0:a8:
3a:1d:d5:75:5b:81:d4:67:e2:00:db:d2:57:a0:19:
76:bd:1e:e5:bd:2f:34:ae:f3:6a:11:bd:f6:30:10:
60:02:0a:94:46:0a:59:02:ad:22:6f:8d:e2:ab:6f:
59:e7:4b:95:05:92:69:97:5e:5b:37:bb:dc:b2:28:
17:0f:d2:a1:5b:93:4f:5f:58:14:26:3a:39:b8:52:
e4:32:c5:e5:61:07:b7:8d:ab:a3:3a:2a:13:b5:32:
2d:d2:f7:e8:5d:c7:55:56:13:9c:6d:19:8e:be:5a:
8c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:C5:13:63:C8:13:CC:FB:F7:62:DA:CD:83:5D:06:F7:36:57:C4:98
X509v3 Authority Key Identifier:
keyid:A2:CA:37:DE:D1:B7:0C:81:B7:4A:43:0F:9B:4D:7A:CC:62:80:5E:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oso33tG3DIG3SkMPm016zGKAXtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b2ace7-48db-4f7d-917f-306189d5c049/1/oso33tG3DIG3SkMPm016zGKAXtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b2ace7-48db-4f7d-917f-306189d5c049/1/oso33tG3DIG3SkMPm016zGKAXtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:13:08:4b:62:8f:ed:64:27:78:e1:7a:db:7f:44:44:71:17:
42:d2:57:14:8c:10:1c:17:4b:2e:24:75:90:7c:e8:51:0b:d7:
6f:c9:4f:8f:a4:83:e6:5f:36:64:62:4c:2d:66:4f:eb:39:5c:
44:cc:8f:2d:c7:3c:3c:11:3c:29:41:8a:de:a1:f8:ba:2e:8f:
92:9d:52:a9:b7:25:a6:74:35:74:c3:9d:46:f0:85:87:86:5f:
64:a3:ac:d8:d1:02:0b:f4:f0:1d:4c:96:e3:4f:65:ae:fc:cf:
8c:56:52:36:19:82:86:87:38:0a:58:2c:6a:9f:b3:04:3f:37:
fc:09:a2:51:62:6d:94:57:b6:a5:36:ce:81:0b:8f:e3:bc:12:
a6:a7:77:61:6a:31:e4:47:d5:32:6e:bf:0d:5b:b9:14:0e:6d:
5a:da:0c:cb:49:9d:e1:14:4a:cb:65:e1:dd:59:b8:a1:08:1e:
d9:40:7e:d7:e3:77:c1:b3:60:71:2d:b8:51:a8:15:a4:d1:16:
f2:a8:da:e3:7c:f1:53:46:fe:c9:15:07:a7:c6:4b:8a:b8:04:
a1:53:3f:ea:11:32:19:34:53:20:19:c6:3c:0a:dc:3d:1f:6f:
15:e8:f0:42:c6:43:41:2f:43:bf:43:95:5c:9b:4e:5f:f9:b9:
af:96:e8:55
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZByB8mvIzaqffwm6vpv0P3wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyY2EzN2RlZDFiNzBjODFiNzRhNDMwZjliNGQ3YWNjNjI4
MDVlZDgwHhcNMjQwNzAyMDYwMDMxWhcNMjQwNzAzMDYwMDMxWjAzMTEwLwYDVQQD
EyhiOGM1MTM2M2M4MTNjY2ZiZjc2MmRhY2Q4MzVkMDZmNzM2NTdjNDk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoh6aRMGvZQLJRBqD0zSUMa4S7hnT
2S02se+LMDbMvUQi75/f30Sh8ZUo17s5+ckzTh6eATW2ZiyA4IEpT8L90pByjyKn
JmGuDpdclXKEIB/DnsqHDnYlt1HuJpgL3mBP4cBCcKK261BfMl4pPPxr0iwBmnSq
xOv8rejo7kTnECK9Y5E2tB45AeEINcZ2gPgry9kv8Kg6HdV1W4HUZ+IA29JXoBl2
vR7lvS80rvNqEb32MBBgAgqURgpZAq0ib43iq29Z50uVBZJpl15bN7vcsigXD9Kh
W5NPX1gUJjo5uFLkMsXlYQe3jaujOioTtTIt0vfoXcdVVhOcbRmOvlqMnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLjFE2PIE8z792LazYNdBvc2V8SYMB8GA1UdIwQY
MBaAFKLKN97RtwyBt0pDD5tNesxigF7YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3NvMzN0RzNESUczU2tNUG0wMTZ6R0tBWHRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9iMmFjZTctNDhkYi00ZjdkLTkxN2Yt
MzA2MTg5ZDVjMDQ5LzEvb3NvMzN0RzNESUczU2tNUG0wMTZ6R0tBWHRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9iMmFjZTctNDhkYi00ZjdkLTkxN2YtMzA2MTg5ZDVjMDQ5
LzEvb3NvMzN0RzNESUczU2tNUG0wMTZ6R0tBWHRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAehMIS2KP
7WQneOF6239ERHEXQtJXFIwQHBdLLiR1kHzoUQvXb8lPj6SD5l82ZGJMLWZP6zlc
RMyPLcc8PBE8KUGK3qH4ui6Pkp1SqbclpnQ1dMOdRvCFh4ZfZKOs2NECC/TwHUyW
409lrvzPjFZSNhmChoc4Clgsap+zBD83/AmiUWJtlFe2pTbOgQuP47wSpqd3YWox
5EfVMm6/DVu5FA5tWtoMy0md4RRKy2Xh3Vm4oQge2UB+1+N3wbNgcS24UagVpNEW
8qja43zxU0b+yRUHp8ZLirgEoVM/6hEyGTRTIBnGPArcPR9vFejwQsZDQS9Dv0OV
XJtOX/m5r5boVQ==
-----END CERTIFICATE-----
Generated at Tue Jul 2 08:32:55 2024 by rpki-client on console-fra.rpki-client.org