Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
File: sgTq-NsT70M8-YIp0jLTMKX14lY.mft (raw, json)
Hash identifier: OqM8jqarWPdOyM1uzHLdiesyyvGylug7gdwxuQz31WU=
Subject key identifier: D8:B0:14:FE:FF:8D:F4:0B:61:CF:62:A2:F9:59:73:2D:9A:0B:33:EE
Authority key identifier: B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
Certificate issuer: /CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Certificate serial: 0193549BABB087A6ADD904611798B94B76FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
Manifest number: 136F
Signing time: Fri 22 Nov 2024 16:01:48 +0000
Manifest this update: Fri 22 Nov 2024 16:01:48 +0000
Manifest next update: Sat 23 Nov 2024 16:01:48 +0000
Files and hashes: 1: Q8-FkkdURaTz5trQDgHu45K9Xro.roa (hash: Dvd26bujUcBv5l5ndhMzmqo67pehmunAkcK7WGhDruY=)
2: sgTq-NsT70M8-YIp0jLTMKX14lY.crl (hash: 6F2JJZiCpkr2H+pEMT4uT6dOdedmCHd/6fB2GHWURUk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 16:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9b:ab:b0:87:a6:ad:d9:04:61:17:98:b9:4b:76:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Validity
Not Before: Nov 22 16:01:48 2024 GMT
Not After : Nov 23 16:01:48 2024 GMT
Subject: CN=d8b014feff8df40b61cf62a2f959732d9a0b33ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:14:09:e3:05:f0:f6:86:ff:ae:37:9c:5a:00:
2c:43:fe:bd:70:34:f0:ff:8d:71:8e:3f:c6:da:5b:
6a:cf:47:32:4f:ca:ac:c4:93:f8:16:d3:80:fb:28:
ff:bd:9d:ae:bf:c7:1f:ab:6a:c2:11:3a:d9:a6:69:
b8:34:20:d5:ed:1e:b6:27:78:fe:93:fc:78:dc:13:
fa:5d:9a:d2:db:06:6a:44:1c:05:33:62:7c:09:ad:
f2:f1:b8:f7:a3:31:18:f0:99:51:e9:08:4f:d6:47:
c7:4f:3e:12:de:43:ab:e5:23:0d:1a:a8:cd:ed:6e:
59:1c:c5:15:db:e9:2e:8b:10:31:05:f8:37:a5:58:
89:cb:8c:50:1d:50:a2:d6:fc:af:f3:f6:c5:d3:b4:
6b:52:11:dd:5a:4a:09:f3:86:4c:6d:94:f8:69:1b:
85:ac:15:da:ff:5b:68:38:56:c3:25:aa:03:06:08:
34:4b:24:79:01:dd:49:af:3d:07:49:cc:a0:0a:10:
49:fa:e8:8a:48:2c:7f:b5:2d:03:e5:f6:ea:3c:3e:
1a:88:5b:21:77:6d:3c:81:7f:16:bb:6a:b0:bf:91:
c9:98:c1:25:32:ff:a5:10:38:4c:05:c9:c6:0b:a3:
ab:71:b0:bc:05:1b:47:7b:2e:71:e4:c2:ce:34:0f:
94:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:B0:14:FE:FF:8D:F4:0B:61:CF:62:A2:F9:59:73:2D:9A:0B:33:EE
X509v3 Authority Key Identifier:
keyid:B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:da:d8:0a:1f:ec:44:b1:6c:4e:ee:87:69:0a:8e:50:9a:89:
65:9b:9f:83:0c:c5:82:96:67:8c:fa:62:84:8e:6f:e2:d8:3c:
50:5a:63:30:67:40:93:a8:41:0c:29:de:f9:04:b2:fa:88:be:
cf:25:29:55:08:6e:80:38:8f:01:56:57:ff:76:eb:c3:af:11:
27:13:b0:d9:8d:b9:38:3e:25:23:64:6b:c7:62:d7:e1:ac:96:
de:e6:e3:e0:4f:3e:40:50:30:56:fe:3e:a5:72:f9:80:ce:81:
4a:86:6f:14:a7:b0:4c:e9:61:af:a8:8a:59:17:41:34:b7:4d:
02:5f:37:04:f6:f9:67:7d:64:f9:d9:f5:2f:03:aa:7b:76:1c:
81:12:bd:26:a3:81:38:ec:09:88:46:a0:5b:a2:95:6a:30:af:
e0:0f:f0:e5:a3:d8:37:9b:2f:cb:dd:53:3e:b0:e7:95:f5:ab:
e3:9c:9a:7e:3b:cf:8b:53:4c:80:11:b5:9f:dd:ab:11:fd:5a:
20:21:93:41:c0:06:60:9c:bb:de:79:f7:cb:45:45:5c:04:c2:
07:6f:9a:cd:eb:e8:73:83:b4:d2:8f:28:f0:67:0a:ee:30:12:
d3:60:f3:a4:d5:f1:c6:09:7d:69:8d:13:e2:5a:eb:ca:6a:f3:
ae:e9:24:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNUm6uwh6at2QRhF5i5S3b7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyMDRlYWY4ZGIxM2VmNDMzY2Y5ODIyOWQyMzJkMzMwYTVm
NWUyNTYwHhcNMjQxMTIyMTYwMTQ4WhcNMjQxMTIzMTYwMTQ4WjAzMTEwLwYDVQQD
EyhkOGIwMTRmZWZmOGRmNDBiNjFjZjYyYTJmOTU5NzMyZDlhMGIzM2VlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvBQJ4wXw9ob/rjecWgAsQ/69cDTw
/41xjj/G2ltqz0cyT8qsxJP4FtOA+yj/vZ2uv8cfq2rCETrZpmm4NCDV7R62J3j+
k/x43BP6XZrS2wZqRBwFM2J8Ca3y8bj3ozEY8JlR6QhP1kfHTz4S3kOr5SMNGqjN
7W5ZHMUV2+kuixAxBfg3pViJy4xQHVCi1vyv8/bF07RrUhHdWkoJ84ZMbZT4aRuF
rBXa/1toOFbDJaoDBgg0SyR5Ad1Jrz0HScygChBJ+uiKSCx/tS0D5fbqPD4aiFsh
d208gX8Wu2qwv5HJmMElMv+lEDhMBcnGC6OrcbC8BRtHey5x5MLONA+UlQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNiwFP7/jfQLYc9iovlZcy2aCzPuMB8GA1UdIwQY
MBaAFLIE6vjbE+9DPPmCKdIy0zCl9eJWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC81OTc2MzgtNzEzYy00NGI3LTliNzAt
MjUwMTdlYzk0MDk1LzEvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC81OTc2MzgtNzEzYy00NGI3LTliNzAtMjUwMTdlYzk0MDk1
LzEvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmdrYCh/s
RLFsTu6HaQqOUJqJZZufgwzFgpZnjPpihI5v4tg8UFpjMGdAk6hBDCne+QSy+oi+
zyUpVQhugDiPAVZX/3brw68RJxOw2Y25OD4lI2Rrx2LX4ayW3ubj4E8+QFAwVv4+
pXL5gM6BSoZvFKewTOlhr6iKWRdBNLdNAl83BPb5Z31k+dn1LwOqe3YcgRK9JqOB
OOwJiEagW6KVajCv4A/w5aPYN5svy91TPrDnlfWr45yafjvPi1NMgBG1n92rEf1a
ICGTQcAGYJy73nn3y0VFXATCB2+azevoc4O00o8o8GcK7jAS02DzpNXxxgl9aY0T
4lrrymrzrukkqA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 01:58:48 2024 by rpki-client on console-ams.rpki-client.org