Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
File: 20IFnOKR1Jpmkgcxx2faVj7yESQ.mft (raw, json)
Hash identifier: pmhRNVi11JsuSspO2/mqdTrvTirXd2MSwvW2uN298vo=
Subject key identifier: 3E:BC:D3:1D:B5:CD:B7:45:F3:0D:2A:3C:22:BF:61:E7:9A:84:A7:6C
Authority key identifier: DB:42:05:9C:E2:91:D4:9A:66:92:07:31:C7:67:DA:56:3E:F2:11:24
Certificate issuer: /CN=db42059ce291d49a66920731c767da563ef21124
Certificate serial: 01923813739B444D4DBDC3423B1B1C8A3DDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
Manifest number: 05D8
Signing time: Sat 28 Sep 2024 10:00:51 +0000
Manifest this update: Sat 28 Sep 2024 10:00:51 +0000
Manifest next update: Sun 29 Sep 2024 10:00:51 +0000
Files and hashes: 1: 20IFnOKR1Jpmkgcxx2faVj7yESQ.crl (hash: sDcbuX+FCsu3Z5G9yLngs+ibbS2ZVsgGTSSqNKXDqEc=)
2: bqCVZpKVqbaM5FetsVkW7TIV3x8.roa (hash: P1R0wophtx74hRmtEyqxTrdXg8b4bk/BoOBOZgSKnS4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 06:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:38:13:73:9b:44:4d:4d:bd:c3:42:3b:1b:1c:8a:3d:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db42059ce291d49a66920731c767da563ef21124
Validity
Not Before: Sep 28 10:00:51 2024 GMT
Not After : Sep 29 10:00:51 2024 GMT
Subject: CN=3ebcd31db5cdb745f30d2a3c22bf61e79a84a76c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:da:3a:c0:2e:e9:09:22:2a:7b:6b:1e:8f:18:
e2:fc:50:8f:f0:be:06:c5:23:d2:3c:c9:32:a3:57:
51:e9:a6:e6:49:59:89:5d:b6:3c:51:1a:0d:7c:16:
1b:5a:14:71:ae:aa:c7:a4:04:be:c2:4d:89:09:5d:
c5:8a:61:f5:c5:59:61:0d:98:51:bb:dd:9f:26:c3:
54:03:70:dc:33:5d:ab:e1:73:6e:bc:52:24:d8:a3:
bd:af:b2:c5:d1:b7:4a:7a:de:82:ff:e4:28:72:5a:
ae:c0:cd:ab:33:e4:e5:dc:cb:bc:0e:fd:7c:eb:b2:
1d:33:b1:00:a2:a7:ef:f8:2d:12:4b:80:8f:b3:a1:
54:c6:1c:3d:2a:19:55:d3:55:c7:29:c5:70:d4:a1:
a1:ea:46:2c:e5:a5:d7:f7:5d:97:5d:d9:d3:87:b4:
1a:f4:2c:56:71:05:20:8e:12:43:0c:f1:92:40:35:
04:42:1b:ea:8b:56:c2:76:ef:8c:8e:40:16:5e:3c:
e9:7f:0a:3c:ac:06:ca:e4:a0:60:ef:21:94:a2:9d:
6b:d2:69:f5:ad:25:6c:08:e1:55:4e:5a:36:cd:a4:
51:ac:16:6a:c4:8d:b0:22:21:f2:d9:fe:18:db:07:
8f:f2:a7:f3:39:02:1c:90:cb:cd:b5:45:c1:ce:07:
ad:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:BC:D3:1D:B5:CD:B7:45:F3:0D:2A:3C:22:BF:61:E7:9A:84:A7:6C
X509v3 Authority Key Identifier:
keyid:DB:42:05:9C:E2:91:D4:9A:66:92:07:31:C7:67:DA:56:3E:F2:11:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:91:ce:8f:2f:65:8d:41:1c:d0:75:ec:94:57:15:03:95:33:
b5:8f:a9:c5:9b:91:d2:11:ce:eb:f0:26:0b:79:6c:c8:d4:2c:
69:00:1b:ba:97:a4:3c:d4:e4:06:19:81:36:15:6c:64:e3:2a:
58:a8:a7:1a:a1:8f:7b:34:05:d6:f7:10:b4:f1:03:12:73:f7:
34:d6:0c:cb:e2:92:47:45:96:e7:c4:4f:f4:a9:9a:4f:e7:39:
1f:2a:0c:6a:51:c5:d0:13:f7:b1:2f:98:85:74:45:90:76:53:
2b:c4:43:26:c4:66:ee:25:6a:7a:b3:7b:9c:4c:e1:80:00:a9:
f2:25:df:3f:b3:d2:a2:e3:83:71:f4:e7:e5:d2:d2:ac:6d:5c:
37:8d:2b:a3:38:d1:62:7c:33:80:e6:ae:29:ae:bb:6b:24:f9:
ce:fc:a7:86:00:fd:96:0e:5c:79:36:5e:04:33:54:c0:c8:0c:
ef:d1:56:6f:37:db:d0:a0:ab:3c:bf:98:8b:39:3f:25:7a:d9:
28:89:9e:46:48:8a:e7:3e:07:87:e1:91:be:e5:76:69:17:f7:
9d:d8:c7:89:b0:d4:20:16:e9:70:71:6f:c2:0b:3e:3f:81:af:
97:0d:cc:8e:49:fb:50:24:a2:41:f3:a9:01:36:90:fa:87:0c:
c6:28:99:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZI4E3ObRE1NvcNCOxscij3fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiNDIwNTljZTI5MWQ0OWE2NjkyMDczMWM3NjdkYTU2M2Vm
MjExMjQwHhcNMjQwOTI4MTAwMDUxWhcNMjQwOTI5MTAwMDUxWjAzMTEwLwYDVQQD
EygzZWJjZDMxZGI1Y2RiNzQ1ZjMwZDJhM2MyMmJmNjFlNzlhODRhNzZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvto6wC7pCSIqe2sejxji/FCP8L4G
xSPSPMkyo1dR6abmSVmJXbY8URoNfBYbWhRxrqrHpAS+wk2JCV3FimH1xVlhDZhR
u92fJsNUA3DcM12r4XNuvFIk2KO9r7LF0bdKet6C/+QoclquwM2rM+Tl3Mu8Dv18
67IdM7EAoqfv+C0SS4CPs6FUxhw9KhlV01XHKcVw1KGh6kYs5aXX912XXdnTh7Qa
9CxWcQUgjhJDDPGSQDUEQhvqi1bCdu+MjkAWXjzpfwo8rAbK5KBg7yGUop1r0mn1
rSVsCOFVTlo2zaRRrBZqxI2wIiHy2f4Y2weP8qfzOQIckMvNtUXBzget3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD680x21zbdF8w0qPCK/YeeahKdsMB8GA1UdIwQY
MBaAFNtCBZzikdSaZpIHMcdn2lY+8hEkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjBJRm5PS1IxSnBta2djeHgyZmFWajd5RVNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni85ZTNmMmEtMTQ0MC00MDg0LTg0YzIt
OTMxMmQwODdkZmNhLzEvMjBJRm5PS1IxSnBta2djeHgyZmFWajd5RVNRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni85ZTNmMmEtMTQ0MC00MDg0LTg0YzItOTMxMmQwODdkZmNh
LzEvMjBJRm5PS1IxSnBta2djeHgyZmFWajd5RVNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASpHOjy9l
jUEc0HXslFcVA5UztY+pxZuR0hHO6/AmC3lsyNQsaQAbupekPNTkBhmBNhVsZOMq
WKinGqGPezQF1vcQtPEDEnP3NNYMy+KSR0WW58RP9KmaT+c5HyoMalHF0BP3sS+Y
hXRFkHZTK8RDJsRm7iVqerN7nEzhgACp8iXfP7PSouODcfTn5dLSrG1cN40rozjR
YnwzgOauKa67ayT5zvynhgD9lg5ceTZeBDNUwMgM79FWbzfb0KCrPL+Yizk/JXrZ
KImeRkiK5z4Hh+GRvuV2aRf3ndjHibDUIBbpcHFvwgs+P4Gvlw3Mjkn7UCSiQfOp
ATaQ+ocMxiiZMw==
-----END CERTIFICATE-----
Generated at Sat Sep 28 12:41:02 2024 by rpki-client on console-ams.rpki-client.org