Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
File: iaBBZwABZgo3ILd9dk2DaFIZATg.mft (raw, json)
Hash identifier: fsn2cFXeXsH6a3UpcVa/gMwAVDX2+Iumm0RwdIfkVds=
Subject key identifier: 5C:58:7B:F0:44:32:1B:EA:75:CF:7B:CF:D7:A8:52:49:8F:2B:48:72
Authority key identifier: 89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38
Certificate issuer: /CN=89a041670001660a3720b77d764d836852190138
Certificate serial: 0191F9349D3FB65B514A9547E9737FBFDCCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
Manifest number: C1
Signing time: Mon 16 Sep 2024 05:01:00 +0000
Manifest this update: Mon 16 Sep 2024 05:01:00 +0000
Manifest next update: Tue 17 Sep 2024 05:01:00 +0000
Files and hashes: 1: WFlDfDZRhOzLZVY7Dy6Bb4po6WQ.roa (hash: OIvuaI8Sl9ejGKJepuJjP2n+VtNwdCnsMsdmJ+0i1ZM=)
2: iaBBZwABZgo3ILd9dk2DaFIZATg.crl (hash: E65Nlh8b4QLhztYZSC/xmc4fbquPhJxVGiEpp4bTARs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 05:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:f9:34:9d:3f:b6:5b:51:4a:95:47:e9:73:7f:bf:dc:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89a041670001660a3720b77d764d836852190138
Validity
Not Before: Sep 16 05:01:00 2024 GMT
Not After : Sep 17 05:01:00 2024 GMT
Subject: CN=5c587bf044321bea75cf7bcfd7a852498f2b4872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ae:a5:26:14:ff:03:f5:ba:b6:de:d5:b4:fb:
33:34:d9:b7:bc:26:98:a2:ac:12:2b:d3:d3:be:3a:
48:c5:0d:9c:54:98:71:88:3f:5a:8d:14:78:d2:ae:
b9:6d:68:b1:c3:ae:6d:40:86:6c:b6:a3:8b:09:a2:
9f:f0:2d:df:39:df:48:3c:21:c4:e6:59:16:0b:e2:
f6:24:9f:b0:b8:a8:ae:75:2a:29:83:d0:2f:3b:d6:
7b:08:50:e9:26:24:ae:7e:63:ee:26:34:88:bc:66:
7c:56:65:c0:8f:fb:34:88:f3:62:80:63:05:a7:80:
bd:dd:ef:fd:9f:41:2e:f3:d8:2d:98:db:64:b0:5c:
16:6c:47:d6:bc:22:f0:8e:65:83:b4:88:b9:25:f0:
ac:1d:94:10:d6:7a:3c:94:c6:06:3d:1e:b7:e6:1d:
5f:e7:91:0d:86:6c:56:c7:d6:f3:51:17:21:3b:df:
19:30:c5:3a:56:a6:4e:b6:11:b6:07:85:66:98:ab:
cc:a6:b5:c4:65:9b:b6:50:7a:03:46:87:2d:45:68:
50:20:77:8b:ff:01:38:00:62:ec:02:30:d9:ab:92:
66:dc:7e:ad:0a:fb:87:2a:77:18:00:5c:9e:2e:57:
ef:a7:11:7e:d3:f2:02:d1:fc:bd:2b:d7:a3:bd:de:
e7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:58:7B:F0:44:32:1B:EA:75:CF:7B:CF:D7:A8:52:49:8F:2B:48:72
X509v3 Authority Key Identifier:
keyid:89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:10:29:04:5b:7f:75:f7:3b:7c:66:1a:e2:6a:c1:e5:64:74:
69:3a:f7:b5:a3:50:67:0b:cb:79:9a:a4:5e:f5:aa:09:58:65:
c8:d4:73:d0:c7:7c:c7:33:55:97:84:8d:6b:d9:0f:2a:2e:89:
bf:88:1d:5e:f7:5b:5f:1f:b2:b5:70:9f:b0:e8:24:66:d5:c2:
10:69:b8:48:6c:7d:b4:bf:df:80:de:99:50:c5:1d:78:dd:dc:
09:17:93:58:cb:a7:df:ef:e7:76:f1:32:92:55:77:66:67:43:
88:a4:4e:78:37:43:1c:c8:0f:08:b8:d8:32:22:cb:9b:88:be:
52:88:b8:d1:b1:9c:e5:e0:e9:5f:dd:ca:ee:72:09:56:b7:90:
23:67:2a:02:56:d6:d3:52:7b:0a:0f:72:88:35:a5:20:e9:c3:
32:3b:7a:e0:11:01:84:6f:b0:a5:62:6b:85:78:33:cb:10:c4:
4d:47:db:15:e8:63:bc:e9:a0:6c:23:81:7a:21:4c:e9:f0:cc:
90:0f:54:cf:a3:60:9c:29:cd:1b:9e:7f:ef:89:0d:e1:d0:cf:
3b:fc:25:d0:4b:ce:c7:7c:d7:be:64:13:45:33:2a:a6:ff:82:
d9:c5:d7:98:99:83:87:60:44:29:57:39:a9:a4:f3:9e:be:a5:
46:80:b3:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZH5NJ0/tltRSpVH6XN/v9zOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5YTA0MTY3MDAwMTY2MGEzNzIwYjc3ZDc2NGQ4MzY4NTIx
OTAxMzgwHhcNMjQwOTE2MDUwMTAwWhcNMjQwOTE3MDUwMTAwWjAzMTEwLwYDVQQD
Eyg1YzU4N2JmMDQ0MzIxYmVhNzVjZjdiY2ZkN2E4NTI0OThmMmI0ODcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3q6lJhT/A/W6tt7VtPszNNm3vCaY
oqwSK9PTvjpIxQ2cVJhxiD9ajRR40q65bWixw65tQIZstqOLCaKf8C3fOd9IPCHE
5lkWC+L2JJ+wuKiudSopg9AvO9Z7CFDpJiSufmPuJjSIvGZ8VmXAj/s0iPNigGMF
p4C93e/9n0Eu89gtmNtksFwWbEfWvCLwjmWDtIi5JfCsHZQQ1no8lMYGPR635h1f
55ENhmxWx9bzURchO98ZMMU6VqZOthG2B4VmmKvMprXEZZu2UHoDRoctRWhQIHeL
/wE4AGLsAjDZq5Jm3H6tCvuHKncYAFyeLlfvpxF+0/IC0fy9K9ejvd7nCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFxYe/BEMhvqdc97z9eoUkmPK0hyMB8GA1UdIwQY
MBaAFImgQWcAAWYKNyC3fXZNg2hSGQE4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWFCQlp3QUJaZ28zSUxkOWRrMkRhRklaQVRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9kNDQ2OWEtMTNhOC00NzJjLWI0NmYt
NGJiNDE0NjIzYTE0LzEvaWFCQlp3QUJaZ28zSUxkOWRrMkRhRklaQVRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9kNDQ2OWEtMTNhOC00NzJjLWI0NmYtNGJiNDE0NjIzYTE0
LzEvaWFCQlp3QUJaZ28zSUxkOWRrMkRhRklaQVRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXhApBFt/
dfc7fGYa4mrB5WR0aTr3taNQZwvLeZqkXvWqCVhlyNRz0Md8xzNVl4SNa9kPKi6J
v4gdXvdbXx+ytXCfsOgkZtXCEGm4SGx9tL/fgN6ZUMUdeN3cCReTWMun3+/ndvEy
klV3ZmdDiKROeDdDHMgPCLjYMiLLm4i+Uoi40bGc5eDpX93K7nIJVreQI2cqAlbW
01J7Cg9yiDWlIOnDMjt64BEBhG+wpWJrhXgzyxDETUfbFehjvOmgbCOBeiFM6fDM
kA9Uz6NgnCnNG55/74kN4dDPO/wl0EvOx3zXvmQTRTMqpv+C2cXXmJmDh2BEKVc5
qaTznr6lRoCzwg==
-----END CERTIFICATE-----
Generated at Mon Sep 16 16:10:34 2024 by rpki-client on console-fra.rpki-client.org