Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json)
Hash identifier: GlUxf4aXxGx9BpWKHIn7Yxg8namifq0aBdGe5RkILIk=
Subject key identifier: 45:86:31:97:66:7D:E6:B2:95:65:6A:3A:16:46:CB:4F:1D:20:08:0C
Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Certificate serial: 019352AE13F25F420B67175A1FCD535EDAD1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
Manifest number: 6D
Signing time: Fri 22 Nov 2024 07:02:40 +0000
Manifest this update: Fri 22 Nov 2024 07:02:40 +0000
Manifest next update: Sat 23 Nov 2024 07:02:40 +0000
Files and hashes: 1: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: lLqG/tgGGqdBPh4Nx9cW6lF6nrv7x88978FNJGsXtsg=)
2: kB-E8xzmSjKzcyzEqs7joXHBCtA.roa (hash: +1VJL/m7xXjxk8fCwsathTUCsZW7PEzA/sB18O4wkX0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:ae:13:f2:5f:42:0b:67:17:5a:1f:cd:53:5e:da:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Validity
Not Before: Nov 22 07:02:40 2024 GMT
Not After : Nov 23 07:02:40 2024 GMT
Subject: CN=45863197667de6b295656a3a1646cb4f1d20080c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b5:cc:61:44:28:f9:d4:f0:d0:06:2b:37:dd:
46:9c:83:6e:e8:04:a9:4e:2c:5f:71:be:72:8d:99:
7f:4f:14:15:02:2d:22:8d:fa:8c:0c:6d:62:9d:27:
4a:39:76:a5:00:da:16:c2:93:ec:f6:1d:94:b6:c4:
5f:23:69:5a:d8:8d:fa:d6:d9:66:7e:33:aa:d9:04:
2a:e3:02:82:53:09:07:b0:a4:0d:6a:6f:de:2b:c4:
89:87:23:48:5c:8f:46:a1:92:bf:0f:c8:8c:d2:dc:
52:c8:02:fa:94:6a:1e:ea:8a:57:ee:ec:7f:94:13:
75:9a:de:a0:17:0d:a1:db:bb:4c:8e:e9:2c:55:5c:
37:81:ac:88:d6:3a:6b:d4:5c:b3:cd:94:10:a3:f0:
9b:73:d9:ce:12:be:67:4a:c5:6b:1c:ea:39:35:dd:
3f:bb:87:ac:ff:e9:08:36:bf:e7:10:63:41:76:58:
84:11:e9:c1:16:01:5e:04:84:ae:27:60:92:86:8f:
ca:68:e5:d1:ac:16:94:03:95:48:3b:06:ea:1e:0d:
d4:42:10:ec:88:82:f4:e9:82:13:57:f6:5f:cb:ba:
45:e9:00:23:f5:53:db:97:11:88:5e:4b:56:7a:35:
e7:59:66:96:e9:47:53:7b:50:e0:28:89:cd:6f:f6:
8e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:86:31:97:66:7D:E6:B2:95:65:6A:3A:16:46:CB:4F:1D:20:08:0C
X509v3 Authority Key Identifier:
keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:7e:d1:e9:00:5b:9d:4e:7e:79:71:a8:e1:99:69:c2:fc:a2:
7f:a5:0f:d6:60:56:4d:3e:ab:4a:4e:b2:e5:00:93:aa:60:1d:
93:b8:ab:a5:ae:94:c4:cc:90:c1:bc:4d:04:b4:d4:7d:34:95:
17:99:65:9f:4d:3c:35:5c:27:d8:03:e9:74:73:c0:c8:41:ce:
33:55:74:c5:1d:cc:19:24:e4:e1:a6:41:d5:c9:80:a1:9c:e1:
b2:e2:77:f7:d2:77:78:a1:be:85:ea:3a:77:20:24:fb:da:ae:
80:6b:a3:a8:75:64:78:89:7b:5a:86:f4:29:db:fd:ad:49:98:
68:b9:f1:87:fa:76:88:34:68:60:f5:c2:99:a7:9d:57:26:ee:
c2:01:12:aa:bd:6c:6b:fe:22:3f:f2:87:ea:65:8e:8f:32:17:
0a:98:c1:a1:16:45:59:07:6c:d0:01:93:a6:3f:cb:d7:91:a9:
b8:2a:9d:48:82:17:49:40:8a:ae:3d:11:41:d8:94:0a:26:47:
54:95:ea:ba:42:7a:7a:78:a0:6f:7d:a2:fe:60:e2:97:48:7b:
55:ed:f9:d4:ac:3c:b4:2c:ef:c1:77:59:4f:60:46:b6:03:1a:
51:23:da:b6:45:ee:22:66:05:de:ad:e7:6c:fc:ff:95:4b:a7:
28:58:43:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNSrhPyX0ILZxdaH81TXtrRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzN2ZlNjRkNjg0OGY4MDEyMGFiZTY5NWUzMWZhYzQ5Y2E1
ZDA3ZjMwHhcNMjQxMTIyMDcwMjQwWhcNMjQxMTIzMDcwMjQwWjAzMTEwLwYDVQQD
Eyg0NTg2MzE5NzY2N2RlNmIyOTU2NTZhM2ExNjQ2Y2I0ZjFkMjAwODBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnLXMYUQo+dTw0AYrN91GnINu6ASp
Tixfcb5yjZl/TxQVAi0ijfqMDG1inSdKOXalANoWwpPs9h2UtsRfI2la2I361tlm
fjOq2QQq4wKCUwkHsKQNam/eK8SJhyNIXI9GoZK/D8iM0txSyAL6lGoe6opX7ux/
lBN1mt6gFw2h27tMjuksVVw3gayI1jpr1FyzzZQQo/Cbc9nOEr5nSsVrHOo5Nd0/
u4es/+kINr/nEGNBdliEEenBFgFeBISuJ2CSho/KaOXRrBaUA5VIOwbqHg3UQhDs
iIL06YITV/Zfy7pF6QAj9VPblxGIXktWejXnWWaW6UdTe1DgKInNb/aOJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEWGMZdmfeaylWVqOhZGy08dIAgMMB8GA1UdIwQY
MBaAFCN/5k1oSPgBIKvmleMfrEnKXQfzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS83MGMzOWYtNTEzMS00MDAyLWIxZmMt
ZmQyMTM3MjJiZmY5LzEvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS83MGMzOWYtNTEzMS00MDAyLWIxZmMtZmQyMTM3MjJiZmY5
LzEvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhX7R6QBb
nU5+eXGo4Zlpwvyif6UP1mBWTT6rSk6y5QCTqmAdk7irpa6UxMyQwbxNBLTUfTSV
F5lln008NVwn2APpdHPAyEHOM1V0xR3MGSTk4aZB1cmAoZzhsuJ399J3eKG+heo6
dyAk+9qugGujqHVkeIl7Wob0Kdv9rUmYaLnxh/p2iDRoYPXCmaedVybuwgESqr1s
a/4iP/KH6mWOjzIXCpjBoRZFWQds0AGTpj/L15GpuCqdSIIXSUCKrj0RQdiUCiZH
VJXqukJ6enigb32i/mDil0h7Ve351Kw8tCzvwXdZT2BGtgMaUSPatkXuImYF3q3n
bPz/lUunKFhD2g==
-----END CERTIFICATE-----
Generated at Fri Nov 22 09:43:20 2024 by rpki-client on console-ams.rpki-client.org