Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.mft
File: MPkNJSCtYZrDBgs5-9LCBOKaKhQ.mft (raw, json)
Hash identifier: Q1tjgliAsFY1UUc2k3mbtFNQCkJoedISpsuqaE+V6WI=
Subject key identifier: 7C:2A:5D:11:21:51:00:AC:49:54:B6:2E:94:A5:CB:85:21:F1:7F:34
Authority key identifier: 30:F9:0D:25:20:AD:61:9A:C3:06:0B:39:FB:D2:C2:04:E2:9A:2A:14
Certificate issuer: /CN=30f90d2520ad619ac3060b39fbd2c204e29a2a14
Certificate serial: 01936AB479D4D6987DA0327D569C19754AD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.mft
Manifest number: 137B
Signing time: Tue 26 Nov 2024 23:00:32 +0000
Manifest this update: Tue 26 Nov 2024 23:00:32 +0000
Manifest next update: Wed 27 Nov 2024 23:00:32 +0000
Files and hashes: 1: AJCUA3AyBL-DBJuMirtlKLpBu1o.roa (hash: HEZXxGyj4RvHznPF5CmuRPhvWPJeLZ5mLAJQNpndrr0=)
2: MPkNJSCtYZrDBgs5-9LCBOKaKhQ.crl (hash: mbPOlgE3ukX/RFiynsQZaIy3p1LfTvX8DgeFOtU2b3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:b4:79:d4:d6:98:7d:a0:32:7d:56:9c:19:75:4a:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30f90d2520ad619ac3060b39fbd2c204e29a2a14
Validity
Not Before: Nov 26 23:00:32 2024 GMT
Not After : Nov 27 23:00:32 2024 GMT
Subject: CN=7c2a5d11215100ac4954b62e94a5cb8521f17f34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b3:2e:f4:79:11:e2:2d:f0:ae:8b:8d:cb:32:
7b:f7:32:01:87:46:b5:92:e9:67:b2:ca:c5:67:c5:
6f:4f:5d:94:e5:42:d2:a2:5c:cd:94:09:c0:cd:35:
3e:de:78:c7:04:2f:73:9e:d4:a8:6a:1f:70:a9:ee:
9d:2b:6d:b4:fa:1e:ad:ad:33:e4:66:48:17:eb:80:
bc:4c:02:ad:9f:aa:e7:a6:52:2e:ad:20:d0:b0:ba:
b4:4a:1f:e0:cc:7c:55:9a:bb:8a:ce:96:10:f6:33:
61:56:d2:8e:33:19:15:d6:9a:c3:b4:a9:d7:2f:4a:
4d:31:b2:1c:4d:4e:50:53:b4:24:ff:af:15:d4:80:
bf:71:35:8f:8f:b2:a9:b5:82:ba:d3:81:16:3c:14:
cb:06:7d:9a:b0:e2:74:58:d1:c4:41:bc:b0:27:8f:
64:43:82:a7:7b:b3:c8:30:6b:28:05:75:ec:ed:fc:
29:8e:b2:87:45:a2:9a:3a:77:64:78:24:87:62:ca:
0c:99:78:b3:a3:31:84:61:2c:3e:4f:75:64:28:05:
77:85:71:b2:1a:76:9f:9f:a4:5b:ea:d4:71:62:a9:
2a:3f:7b:c5:d6:c0:44:22:56:27:aa:3c:c0:61:eb:
6d:09:62:3e:94:0f:be:ac:e3:85:8b:db:67:2b:5d:
39:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:2A:5D:11:21:51:00:AC:49:54:B6:2E:94:A5:CB:85:21:F1:7F:34
X509v3 Authority Key Identifier:
keyid:30:F9:0D:25:20:AD:61:9A:C3:06:0B:39:FB:D2:C2:04:E2:9A:2A:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:64:fc:31:8d:10:d0:4b:7d:f5:cd:39:75:a5:1c:89:39:9a:
56:86:ff:1b:f2:4e:ec:ae:93:8f:1e:f7:bf:59:ce:61:86:71:
a8:5e:69:6d:e4:aa:61:99:bc:b8:a4:d7:33:be:f8:17:76:06:
a7:7f:f1:0d:d4:f9:95:17:8b:f8:d6:6a:87:7a:a6:87:a1:bd:
2f:fe:76:e9:cd:a2:78:af:8d:f5:3f:c1:76:47:ad:b4:e5:fe:
38:72:0a:d6:eb:34:31:9e:17:10:50:95:4f:34:73:14:f2:64:
e4:69:45:47:5b:5f:a9:60:25:32:01:16:84:e9:7b:8a:78:d4:
c6:93:34:7b:02:07:ed:3e:f0:6b:22:1f:e3:ad:c6:0e:99:d2:
a8:b9:17:44:a5:36:10:9f:c1:09:17:04:b9:07:7c:5f:f9:ac:
cb:d8:0e:66:b2:28:b8:f5:ea:6d:ec:93:cd:74:b0:82:e2:52:
84:31:3d:65:86:02:e6:fa:d0:ac:96:d8:cb:75:d1:03:22:1c:
6b:c2:70:65:dd:60:5c:1b:08:12:ac:ba:45:26:ba:3e:78:35:
10:12:9e:98:16:3e:83:0f:8f:8b:f2:cb:8f:2f:01:58:35:25:
8a:48:05:7d:52:9b:72:1e:2c:96:64:31:fb:26:7f:f4:77:5c:
e9:bd:90:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNqtHnU1ph9oDJ9VpwZdUrYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwZjkwZDI1MjBhZDYxOWFjMzA2MGIzOWZiZDJjMjA0ZTI5
YTJhMTQwHhcNMjQxMTI2MjMwMDMyWhcNMjQxMTI3MjMwMDMyWjAzMTEwLwYDVQQD
Eyg3YzJhNWQxMTIxNTEwMGFjNDk1NGI2MmU5NGE1Y2I4NTIxZjE3ZjM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvLMu9HkR4i3wrouNyzJ79zIBh0a1
kulnssrFZ8VvT12U5ULSolzNlAnAzTU+3njHBC9zntSoah9wqe6dK220+h6trTPk
ZkgX64C8TAKtn6rnplIurSDQsLq0Sh/gzHxVmruKzpYQ9jNhVtKOMxkV1prDtKnX
L0pNMbIcTU5QU7Qk/68V1IC/cTWPj7KptYK604EWPBTLBn2asOJ0WNHEQbywJ49k
Q4Kne7PIMGsoBXXs7fwpjrKHRaKaOndkeCSHYsoMmXizozGEYSw+T3VkKAV3hXGy
Gnafn6Rb6tRxYqkqP3vF1sBEIlYnqjzAYettCWI+lA++rOOFi9tnK105xQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHwqXREhUQCsSVS2LpSly4Uh8X80MB8GA1UdIwQY
MBaAFDD5DSUgrWGawwYLOfvSwgTimioUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVBrTkpTQ3RZWnJEQmdzNS05TENCT0thS2hRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9kYjUxMDEtMDE1Yy00MGM1LTkwNWIt
NjU3YjNhN2Q5Njc2LzEvTVBrTkpTQ3RZWnJEQmdzNS05TENCT0thS2hRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC9kYjUxMDEtMDE1Yy00MGM1LTkwNWItNjU3YjNhN2Q5Njc2
LzEvTVBrTkpTQ3RZWnJEQmdzNS05TENCT0thS2hRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqGT8MY0Q
0Et99c05daUciTmaVob/G/JO7K6Tjx73v1nOYYZxqF5pbeSqYZm8uKTXM774F3YG
p3/xDdT5lReL+NZqh3qmh6G9L/526c2ieK+N9T/BdkettOX+OHIK1us0MZ4XEFCV
TzRzFPJk5GlFR1tfqWAlMgEWhOl7injUxpM0ewIH7T7wayIf463GDpnSqLkXRKU2
EJ/BCRcEuQd8X/msy9gOZrIouPXqbeyTzXSwguJShDE9ZYYC5vrQrJbYy3XRAyIc
a8JwZd1gXBsIEqy6RSa6Png1EBKemBY+gw+Pi/LLjy8BWDUlikgFfVKbch4slmQx
+yZ/9Hdc6b2QsQ==
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:36:48 2024 by rpki-client on console-fra.rpki-client.org