Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
File: sG9AQEkaZW_3Um0vF2EbDWisvQw.mft (raw, json)
Hash identifier: bAQnMPptO3rndsWw0OFBLBlnBc+XqXhxXe0D2pfjMQM=
Subject key identifier: 8A:83:DC:22:2B:31:56:8C:97:D1:C3:11:AF:4F:1B:04:5F:91:A0:0B
Authority key identifier: B0:6F:40:40:49:1A:65:6F:F7:52:6D:2F:17:61:1B:0D:68:AC:BD:0C
Certificate issuer: /CN=b06f4040491a656ff7526d2f17611b0d68acbd0c
Certificate serial: 01935953686F04F59B322DE7DDB61290F8D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
Manifest number: 1372
Signing time: Sat 23 Nov 2024 14:00:58 +0000
Manifest this update: Sat 23 Nov 2024 14:00:58 +0000
Manifest next update: Sun 24 Nov 2024 14:00:58 +0000
Files and hashes: 1: cCaLf_GxdOgv_OJ6rlMA9CsHYDg.roa (hash: uSDaK4rc8Iyy5njnF32XfjzST2e6Uh8B3xHFZqyjstc=)
2: sG9AQEkaZW_3Um0vF2EbDWisvQw.crl (hash: Ng+20BwqGiBUkMjNbR/KCC1lzdL9ntXDBlVYVQbJKWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:59:53:68:6f:04:f5:9b:32:2d:e7:dd:b6:12:90:f8:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b06f4040491a656ff7526d2f17611b0d68acbd0c
Validity
Not Before: Nov 23 14:00:58 2024 GMT
Not After : Nov 24 14:00:58 2024 GMT
Subject: CN=8a83dc222b31568c97d1c311af4f1b045f91a00b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:26:20:e9:1e:6a:4e:4a:af:0a:6c:7f:77:da:
fd:ca:d7:c6:5d:fb:3b:94:4d:70:76:08:c4:df:4d:
71:92:64:c6:c1:4e:33:fe:05:fd:db:4d:18:36:e7:
a3:e0:49:2e:c4:1e:61:ec:d9:08:cb:a0:e0:2f:14:
b8:d3:93:38:97:85:fa:96:7a:4f:e4:3c:bd:38:f5:
93:f4:4c:47:7b:02:48:c0:9d:99:02:77:13:db:24:
0e:2e:97:5d:61:db:11:89:45:9b:39:71:82:ed:68:
6b:5d:6f:28:10:02:59:c7:ff:d6:24:b7:3a:d9:d6:
61:b9:2f:70:e4:68:c2:84:fe:ae:47:1e:2f:ba:e7:
67:32:92:13:41:18:74:25:d1:57:a8:24:6d:00:6d:
aa:d0:e7:b2:a7:1c:0b:4e:b9:3c:69:fe:59:f3:40:
4c:c5:64:75:9e:3b:52:86:4b:3d:80:3f:86:35:0d:
a7:7a:4b:72:5d:eb:27:d2:2c:f0:b2:97:d9:58:c9:
56:e2:50:c0:51:a9:6d:34:e0:7b:10:e8:9b:59:bd:
ef:a3:f8:39:3b:57:f4:f8:3e:24:b1:d9:bb:a4:19:
56:d0:f6:64:8d:92:41:ce:5c:56:25:14:44:46:55:
d0:a6:4f:0c:b6:81:de:7d:d3:34:f1:72:86:ed:18:
ea:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:83:DC:22:2B:31:56:8C:97:D1:C3:11:AF:4F:1B:04:5F:91:A0:0B
X509v3 Authority Key Identifier:
keyid:B0:6F:40:40:49:1A:65:6F:F7:52:6D:2F:17:61:1B:0D:68:AC:BD:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:11:05:b7:b2:ec:4a:80:4f:2e:f7:ad:8e:de:83:4c:14:3d:
6a:a5:f9:3a:60:d7:fe:52:6a:73:dc:b0:bf:bc:66:b4:6a:97:
66:84:45:50:02:cd:a8:ed:c9:91:20:85:70:a9:41:91:b2:02:
1c:6b:6c:c1:1d:33:e5:37:36:63:56:1f:2a:bb:65:6a:47:b2:
9d:57:3b:53:7e:31:e4:39:25:b9:dc:bf:c4:dc:1e:0b:a2:61:
91:6a:9e:1f:0a:63:f6:a3:61:b9:9d:4e:ea:d0:76:f8:9a:ca:
8a:d7:98:3d:76:a3:c4:18:13:df:df:17:7c:75:35:5c:56:b7:
68:c8:48:95:90:93:e9:08:e6:a1:6c:c6:2f:4a:58:7c:03:80:
14:33:10:54:3a:98:2d:97:ac:26:f7:54:85:a5:8a:ef:03:d2:
3e:2e:d3:5a:c0:95:ef:d5:57:aa:f3:fb:33:ae:93:e5:cb:eb:
27:1a:b8:a8:24:35:1b:6f:6d:1f:8a:b8:59:c5:8f:4b:d5:ea:
37:06:73:e3:ed:76:f8:23:a6:7a:cc:79:fe:df:fe:cc:53:69:
96:10:d6:9c:b6:d1:42:20:53:85:49:14:c7:4b:6d:b7:14:09:
e1:b4:5d:a2:68:69:67:21:2b:77:05:d5:ad:c8:06:8b:88:97:
86:a6:9f:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNZU2hvBPWbMi3n3bYSkPjWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwNmY0MDQwNDkxYTY1NmZmNzUyNmQyZjE3NjExYjBkNjhh
Y2JkMGMwHhcNMjQxMTIzMTQwMDU4WhcNMjQxMTI0MTQwMDU4WjAzMTEwLwYDVQQD
Eyg4YTgzZGMyMjJiMzE1NjhjOTdkMWMzMTFhZjRmMWIwNDVmOTFhMDBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2yYg6R5qTkqvCmx/d9r9ytfGXfs7
lE1wdgjE301xkmTGwU4z/gX9200YNuej4EkuxB5h7NkIy6DgLxS405M4l4X6lnpP
5Dy9OPWT9ExHewJIwJ2ZAncT2yQOLpddYdsRiUWbOXGC7WhrXW8oEAJZx//WJLc6
2dZhuS9w5GjChP6uRx4vuudnMpITQRh0JdFXqCRtAG2q0OeypxwLTrk8af5Z80BM
xWR1njtShks9gD+GNQ2nektyXesn0izwspfZWMlW4lDAUaltNOB7EOibWb3vo/g5
O1f0+D4ksdm7pBlW0PZkjZJBzlxWJRRERlXQpk8MtoHefdM08XKG7RjqvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIqD3CIrMVaMl9HDEa9PGwRfkaALMB8GA1UdIwQY
MBaAFLBvQEBJGmVv91JtLxdhGw1orL0MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0c5QVFFa2FaV18zVW0wdkYyRWJEV2lzdlF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9jZTBiMjEtZDY1Yy00MmU2LTg3NGIt
ZjRjYjg2N2Y5MGQ4LzEvc0c5QVFFa2FaV18zVW0wdkYyRWJEV2lzdlF3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC9jZTBiMjEtZDY1Yy00MmU2LTg3NGItZjRjYjg2N2Y5MGQ4
LzEvc0c5QVFFa2FaV18zVW0wdkYyRWJEV2lzdlF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnBEFt7Ls
SoBPLvetjt6DTBQ9aqX5OmDX/lJqc9ywv7xmtGqXZoRFUALNqO3JkSCFcKlBkbIC
HGtswR0z5Tc2Y1YfKrtlakeynVc7U34x5Dkludy/xNweC6JhkWqeHwpj9qNhuZ1O
6tB2+JrKiteYPXajxBgT398XfHU1XFa3aMhIlZCT6QjmoWzGL0pYfAOAFDMQVDqY
LZesJvdUhaWK7wPSPi7TWsCV79VXqvP7M66T5cvrJxq4qCQ1G29tH4q4WcWPS9Xq
NwZz4+12+COmesx5/t/+zFNplhDWnLbRQiBThUkUx0tttxQJ4bRdomhpZyErdwXV
rcgGi4iXhqaf6w==
-----END CERTIFICATE-----
Generated at Sat Nov 23 16:18:28 2024 by rpki-client on console-fra.rpki-client.org