Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
File: oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft (raw, json)
Hash identifier: SjnlKu5S5WPIultT7YvgpcnAB9lTqrP18INJUgXqcsw=
Subject key identifier: E3:53:D9:75:73:2B:59:9A:23:19:58:8D:61:7B:D2:9C:4D:CD:39:B0
Authority key identifier: A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59
Certificate issuer: /CN=a0a647dac729f47b06369c4c9741cf943953dc59
Certificate serial: 019353BED603AC3A19B89028C9D7AD8F9C3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
Manifest number: 08CB
Signing time: Fri 22 Nov 2024 12:00:35 +0000
Manifest this update: Fri 22 Nov 2024 12:00:35 +0000
Manifest next update: Sat 23 Nov 2024 12:00:35 +0000
Files and hashes: 1: E96Gx2HLnx0fMAKJAdRtm69Dct8.roa (hash: GyqnZkViv5cjj6e7DGwHPHj8/XhBu/byP3TuO68fmlQ=)
2: EoGw0VmmY21djDFWiZSjE-iO_Vs.roa (hash: SP014itUNohb4don7K/4cAdJKC6Lg4nNXP2nFLYeoQ8=)
3: oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl (hash: 4EuAs2cxTR2uvFUZSs6r+de4HeW6QxiKk5RyyXrm1+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:53:be:d6:03:ac:3a:19:b8:90:28:c9:d7:ad:8f:9c:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a647dac729f47b06369c4c9741cf943953dc59
Validity
Not Before: Nov 22 12:00:35 2024 GMT
Not After : Nov 23 12:00:35 2024 GMT
Subject: CN=e353d975732b599a2319588d617bd29c4dcd39b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:33:61:e0:55:09:66:f2:3a:e0:a2:5b:78:61:
b0:47:59:1c:6e:b6:96:1c:81:a5:66:b0:58:16:b3:
17:52:04:69:ce:d4:e0:52:85:ea:2f:3a:2c:ff:86:
97:7b:9a:cb:65:62:e6:1a:1e:5c:c7:82:f9:cd:37:
8e:aa:73:c9:ac:f2:a7:5c:09:53:68:71:8a:da:c4:
fd:e0:7f:38:c1:52:64:9a:a7:a4:5c:84:e2:06:df:
07:11:8b:b9:49:ab:4f:6c:0b:c0:08:21:42:97:4a:
26:90:d1:aa:9f:dd:89:80:47:fb:8f:29:3c:66:45:
b5:b9:6e:fa:89:9a:6a:df:07:2a:13:8a:01:89:53:
26:9c:5f:62:fe:f1:9e:76:7d:a3:64:bc:a7:8e:67:
16:c7:13:01:f3:94:38:86:72:33:f5:c4:7b:bb:40:
2f:b9:a6:e8:76:e8:e4:42:b9:20:27:2f:c2:27:20:
0d:6b:3c:21:b8:89:04:ad:07:ef:a6:8c:25:b5:58:
57:c9:0c:3d:c9:4f:ea:6c:c2:84:38:d5:9e:9b:b3:
a4:f7:c2:11:5a:ca:05:36:b2:57:c1:ee:a6:ce:d9:
8b:5e:b4:65:7d:1d:dc:68:13:5d:bf:38:49:9c:68:
db:f4:7d:16:16:f9:ca:a5:f3:fc:93:77:88:62:48:
05:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:53:D9:75:73:2B:59:9A:23:19:58:8D:61:7B:D2:9C:4D:CD:39:B0
X509v3 Authority Key Identifier:
keyid:A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:fc:4b:e2:db:f3:5b:b8:ee:2c:97:49:39:3f:39:c0:b9:d3:
eb:dd:a5:eb:13:ec:2c:a9:f8:c9:d2:3c:92:78:cd:72:e8:81:
33:a2:ab:87:1a:25:22:dc:49:f3:a4:67:26:7b:d1:ee:1c:23:
0c:11:8b:be:cd:2e:30:30:5c:1d:39:c3:fd:57:8e:4b:84:94:
92:3f:73:ba:7a:11:79:49:86:6b:78:38:e4:8b:e6:57:b0:21:
f4:cb:ee:b2:31:c2:e9:da:b8:e5:e1:f8:76:6c:76:12:a0:dd:
01:e9:5b:2c:f7:e9:d3:7e:7d:78:36:1b:e9:fd:4f:9a:55:62:
5f:19:10:f7:cd:74:77:4d:19:4e:39:fb:86:4c:e9:7f:99:6a:
52:31:df:4d:2b:40:cf:10:32:bc:e6:1f:1b:51:1e:5a:98:e0:
82:75:e5:bf:45:e0:00:ae:13:78:39:c6:0a:95:e5:17:4f:6f:
f9:90:87:07:22:f5:78:44:0e:a1:4c:77:2b:9f:8d:ae:85:25:
03:fc:e7:60:32:d1:31:f9:b5:b8:d5:33:ee:5d:06:25:27:9c:
2e:34:7a:01:fc:c7:55:4c:38:3b:eb:65:47:44:0a:99:1e:3f:
04:de:4e:73:dc:e8:77:d5:db:40:d5:7a:05:60:fb:86:20:be:
61:a7:f2:31
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNTvtYDrDoZuJAoydetj5w7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwYTY0N2RhYzcyOWY0N2IwNjM2OWM0Yzk3NDFjZjk0Mzk1
M2RjNTkwHhcNMjQxMTIyMTIwMDM1WhcNMjQxMTIzMTIwMDM1WjAzMTEwLwYDVQQD
EyhlMzUzZDk3NTczMmI1OTlhMjMxOTU4OGQ2MTdiZDI5YzRkY2QzOWIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojNh4FUJZvI64KJbeGGwR1kcbraW
HIGlZrBYFrMXUgRpztTgUoXqLzos/4aXe5rLZWLmGh5cx4L5zTeOqnPJrPKnXAlT
aHGK2sT94H84wVJkmqekXITiBt8HEYu5SatPbAvACCFCl0omkNGqn92JgEf7jyk8
ZkW1uW76iZpq3wcqE4oBiVMmnF9i/vGedn2jZLynjmcWxxMB85Q4hnIz9cR7u0Av
uabodujkQrkgJy/CJyANazwhuIkErQfvpowltVhXyQw9yU/qbMKEONWem7Ok98IR
WsoFNrJXwe6mztmLXrRlfR3caBNdvzhJnGjb9H0WFvnKpfP8k3eIYkgFkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFONT2XVzK1maIxlYjWF70pxNzTmwMB8GA1UdIwQY
MBaAFKCmR9rHKfR7BjacTJdBz5Q5U9xZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0taSDJzY3A5SHNHTnB4TWwwSFBsRGxUM0ZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9iYTFmODgtNzA3Zi00MWJkLWI5YmQt
ZmI2OTgzY2U5ZGZmLzEvb0taSDJzY3A5SHNHTnB4TWwwSFBsRGxUM0ZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9iYTFmODgtNzA3Zi00MWJkLWI5YmQtZmI2OTgzY2U5ZGZm
LzEvb0taSDJzY3A5SHNHTnB4TWwwSFBsRGxUM0ZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAufxL4tvz
W7juLJdJOT85wLnT692l6xPsLKn4ydI8knjNcuiBM6KrhxolItxJ86RnJnvR7hwj
DBGLvs0uMDBcHTnD/VeOS4SUkj9zunoReUmGa3g45IvmV7Ah9MvusjHC6dq45eH4
dmx2EqDdAelbLPfp0359eDYb6f1PmlViXxkQ9810d00ZTjn7hkzpf5lqUjHfTStA
zxAyvOYfG1EeWpjggnXlv0XgAK4TeDnGCpXlF09v+ZCHByL1eEQOoUx3K5+NroUl
A/znYDLRMfm1uNUz7l0GJSecLjR6AfzHVUw4O+tlR0QKmR4/BN5Oc9zod9XbQNV6
BWD7hiC+YafyMQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 19:58:13 2024 by rpki-client on console-ams.rpki-client.org