Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
File: NIMjF9JURDS2WeVpIHHY5MSTiwY.mft (raw, json)
Hash identifier: tX5TSfB5bd5k3JeMme8DhMmBCP7zhCy1WYkxPX/O5hA=
Subject key identifier: 64:A5:94:36:98:C0:80:58:C3:4C:37:F5:6D:77:74:3B:7E:CD:06:23
Authority key identifier: 34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
Certificate issuer: /CN=34832317d2544434b659e5692071d8e4c4938b06
Certificate serial: 019354D15B18D9392C0019DEC33212919BC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
Manifest number: E1
Signing time: Fri 22 Nov 2024 17:00:26 +0000
Manifest this update: Fri 22 Nov 2024 17:00:26 +0000
Manifest next update: Sat 23 Nov 2024 17:00:26 +0000
Files and hashes: 1: NIMjF9JURDS2WeVpIHHY5MSTiwY.crl (hash: M3xx9sodG4MADnOhZH3XmVfTIQykn0JrCZpH6AIJTvw=)
2: kyIVTHmogsruMXwf4uq8SpBbWFg.roa (hash: VzbeMxnhIYZT9DOE8v/1XPTQt4t80MoDua2GzPrnWcg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:d1:5b:18:d9:39:2c:00:19:de:c3:32:12:91:9b:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34832317d2544434b659e5692071d8e4c4938b06
Validity
Not Before: Nov 22 17:00:26 2024 GMT
Not After : Nov 23 17:00:26 2024 GMT
Subject: CN=64a5943698c08058c34c37f56d77743b7ecd0623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b8:e1:3f:dc:92:af:1f:25:16:87:54:17:d9:
2a:90:49:a1:c7:79:4a:11:b7:4e:4f:2b:b8:2c:32:
b0:ce:28:88:ec:11:0a:ba:67:ca:1c:4c:f0:5b:d0:
aa:00:e4:f4:0a:ce:fc:54:42:26:e0:63:0b:ec:78:
ee:aa:09:40:4d:4a:9d:e2:04:c0:94:45:60:b2:1a:
c9:5d:47:65:77:b8:28:83:1e:e9:e2:ce:c6:39:8c:
14:4b:05:d7:6b:4e:d7:2e:f0:5b:43:61:3a:d2:d7:
6b:91:10:a9:c4:a8:49:33:3a:98:ce:16:5f:38:f6:
26:98:c7:e6:3c:0c:6d:cc:78:61:a9:d2:fd:18:0c:
02:ad:6e:9b:07:35:3e:a4:36:f5:49:34:21:25:b7:
d4:14:86:4a:f9:87:6d:e5:06:85:ac:2a:64:b3:e6:
f9:a6:a1:59:57:60:5d:9d:2b:7b:55:59:91:84:ef:
71:00:83:43:6d:dd:95:8a:ed:d9:ab:4a:e1:aa:14:
69:cd:ca:97:a1:da:78:a3:b9:0a:1d:7f:d3:3d:02:
79:45:55:12:a9:6a:e6:a6:08:7f:a9:54:13:1a:d3:
ee:c9:53:6b:1d:52:90:81:c2:94:99:d8:ea:ba:38:
87:9b:c0:e5:0d:64:ca:5c:26:5a:c6:13:d3:75:6b:
c2:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:A5:94:36:98:C0:80:58:C3:4C:37:F5:6D:77:74:3B:7E:CD:06:23
X509v3 Authority Key Identifier:
keyid:34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:91:c0:4c:06:28:e2:40:e1:43:0a:f4:d6:43:47:6a:84:44:
16:40:d4:ce:2e:44:84:fa:81:d4:4b:3f:cb:46:1c:f9:4d:01:
7e:61:c3:60:1f:d9:4b:27:1d:98:3f:a5:00:10:5c:9c:80:51:
65:56:49:99:d8:13:03:3f:40:87:30:92:3b:8c:6e:dc:71:c3:
5a:88:a3:fa:29:12:42:33:92:f3:75:55:7f:2b:6e:8c:52:74:
ee:14:d4:97:1a:18:ce:df:46:bf:f8:f0:95:a4:c6:bf:73:e7:
06:c8:4d:a7:ad:44:c9:e6:c6:b7:a5:f7:36:15:30:75:c8:02:
4b:e6:37:bb:13:51:fc:de:99:38:a1:13:e1:53:d8:3f:84:6e:
b2:ac:9d:47:d9:f3:2f:fe:ba:62:57:34:a4:9c:09:48:2e:0f:
d2:16:52:e9:d7:14:15:30:fe:31:4c:b6:37:d8:4b:d9:55:57:
45:bb:51:3c:46:68:94:66:d5:b1:06:b6:de:db:91:e5:b1:c4:
d3:46:23:64:58:c2:eb:8a:4e:4f:69:83:c4:53:af:12:14:8c:
29:65:e8:bd:84:d7:22:ce:11:f6:f6:02:02:2e:c5:0b:a0:28:
c7:61:df:c6:35:9b:c2:54:59:19:ae:9a:f3:42:9f:ae:a3:fe:
b7:c7:5e:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNU0VsY2TksABnewzISkZvDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0ODMyMzE3ZDI1NDQ0MzRiNjU5ZTU2OTIwNzFkOGU0YzQ5
MzhiMDYwHhcNMjQxMTIyMTcwMDI2WhcNMjQxMTIzMTcwMDI2WjAzMTEwLwYDVQQD
Eyg2NGE1OTQzNjk4YzA4MDU4YzM0YzM3ZjU2ZDc3NzQzYjdlY2QwNjIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAorjhP9ySrx8lFodUF9kqkEmhx3lK
EbdOTyu4LDKwziiI7BEKumfKHEzwW9CqAOT0Cs78VEIm4GML7HjuqglATUqd4gTA
lEVgshrJXUdld7gogx7p4s7GOYwUSwXXa07XLvBbQ2E60tdrkRCpxKhJMzqYzhZf
OPYmmMfmPAxtzHhhqdL9GAwCrW6bBzU+pDb1STQhJbfUFIZK+Ydt5QaFrCpks+b5
pqFZV2BdnSt7VVmRhO9xAINDbd2Viu3Zq0rhqhRpzcqXodp4o7kKHX/TPQJ5RVUS
qWrmpgh/qVQTGtPuyVNrHVKQgcKUmdjqujiHm8DlDWTKXCZaxhPTdWvCNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGSllDaYwIBYw0w39W13dDt+zQYjMB8GA1UdIwQY
MBaAFDSDIxfSVEQ0tlnlaSBx2OTEk4sGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTklNakY5SlVSRFMyV2VWcElISFk1TVNUaXdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS81YTJlZDktOGY4ZS00YzFkLWFhZjMt
MzBjNjVhZDgzMjkxLzEvTklNakY5SlVSRFMyV2VWcElISFk1TVNUaXdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS81YTJlZDktOGY4ZS00YzFkLWFhZjMtMzBjNjVhZDgzMjkx
LzEvTklNakY5SlVSRFMyV2VWcElISFk1TVNUaXdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM5HATAYo
4kDhQwr01kNHaoREFkDUzi5EhPqB1Es/y0Yc+U0BfmHDYB/ZSycdmD+lABBcnIBR
ZVZJmdgTAz9AhzCSO4xu3HHDWoij+ikSQjOS83VVfytujFJ07hTUlxoYzt9Gv/jw
laTGv3PnBshNp61EyebGt6X3NhUwdcgCS+Y3uxNR/N6ZOKET4VPYP4RusqydR9nz
L/66Ylc0pJwJSC4P0hZS6dcUFTD+MUy2N9hL2VVXRbtRPEZolGbVsQa23tuR5bHE
00YjZFjC64pOT2mDxFOvEhSMKWXovYTXIs4R9vYCAi7FC6Aox2HfxjWbwlRZGa6a
80KfrqP+t8dejg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 18:03:49 2024 by rpki-client on console-fra.rpki-client.org