Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
File: hEcK8NideFuhi6YX3Anj9yxZlvM.mft (raw, json)
Hash identifier: sGg1iOb78syLjnj5jKrStWSmJhOfieaByx4mYZUBj+0=
Subject key identifier: 3B:CE:95:52:C9:41:AF:F7:F5:25:BB:15:77:92:E4:E8:69:FA:28:48
Authority key identifier: 84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3
Certificate issuer: /CN=84470af0d89d785ba18ba617dc09e3f72c5996f3
Certificate serial: 01935688E43283A4F8D6FC555BD117602F33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
Manifest number: 04F6
Signing time: Sat 23 Nov 2024 01:00:32 +0000
Manifest this update: Sat 23 Nov 2024 01:00:32 +0000
Manifest next update: Sun 24 Nov 2024 01:00:32 +0000
Files and hashes: 1: 4cQ2bk9tyDj6eUhtsBf4eMs7a7g.roa (hash: xv+ZYRG4qC+JEK2SHW0yfkYILGavEsxwwWzU0uPNKcw=)
2: hEcK8NideFuhi6YX3Anj9yxZlvM.crl (hash: uXz+dwh1M/ez2yl+Kj5gVpn5Bg0/MZdPxziUJtEnDOI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:88:e4:32:83:a4:f8:d6:fc:55:5b:d1:17:60:2f:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84470af0d89d785ba18ba617dc09e3f72c5996f3
Validity
Not Before: Nov 23 01:00:32 2024 GMT
Not After : Nov 24 01:00:32 2024 GMT
Subject: CN=3bce9552c941aff7f525bb157792e4e869fa2848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9e:cd:93:6a:f0:b1:1c:8c:60:ec:68:c8:10:
8c:e2:44:df:bf:58:38:a8:13:24:fc:a8:b3:25:e1:
cd:3c:83:36:ab:0f:19:ef:4d:cb:87:5a:88:78:9f:
6a:52:02:93:a4:e0:4d:3b:a7:15:b9:bb:15:8b:20:
30:ad:bd:4f:cd:03:44:de:d6:ea:c5:0f:b2:54:4c:
91:ca:84:b0:05:e5:fe:c7:fb:f2:fe:c2:8c:bc:b7:
dc:1a:ba:f0:a6:ac:28:32:7e:05:e1:6e:32:29:91:
d6:15:a6:e3:da:0f:71:14:a1:81:00:8f:71:da:ad:
cf:09:fc:6a:94:a5:c7:03:cf:73:30:49:bc:dc:3c:
f9:47:af:5a:a3:c2:8a:91:27:cc:a6:c3:ac:d9:a2:
8f:93:b3:ff:b3:44:a0:98:82:de:18:fe:2c:bb:9f:
46:7d:5e:ab:14:05:78:1b:d9:e6:97:0f:1d:43:7a:
50:f6:ce:d1:c4:48:28:d3:85:99:19:65:2f:ab:60:
ef:bf:a4:1a:e5:1d:c4:21:ed:03:3a:43:0d:8c:b7:
ff:12:0b:8c:b8:5d:a4:e9:ee:28:55:49:ed:c4:be:
88:76:8b:f4:b2:2d:3c:3b:c3:98:1a:00:8f:96:ec:
42:7e:3c:ab:4f:51:4c:c3:b2:29:ea:8c:34:f6:f4:
36:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:CE:95:52:C9:41:AF:F7:F5:25:BB:15:77:92:E4:E8:69:FA:28:48
X509v3 Authority Key Identifier:
keyid:84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:a5:bf:e6:d6:32:6b:b9:85:62:25:da:64:66:5a:0c:63:6b:
45:a6:0a:52:a7:e5:19:0c:78:e7:37:65:78:e2:4f:5c:94:ee:
0c:b4:cf:98:8d:bc:f8:40:0d:bc:d4:f3:f7:2c:a8:ed:d9:11:
c9:a6:2a:3d:7c:46:77:ae:64:65:a0:ea:bb:c3:d2:22:c6:3d:
1f:0f:f0:c0:b9:d4:e4:5a:e6:a4:33:02:44:16:0a:84:d2:04:
2f:50:7a:8d:03:45:af:c2:db:a9:2a:0d:47:1f:68:0e:7a:b0:
78:5c:57:90:b1:1c:4a:47:c9:60:dc:4f:e4:66:88:8f:3b:0b:
8d:ae:11:35:15:86:c9:95:ae:67:7e:87:3e:d5:0e:ed:64:b6:
37:6d:82:17:62:3f:b3:3b:7e:6d:0d:e1:9a:6a:99:a0:d6:fa:
54:85:f0:85:6d:01:1f:a6:d6:e7:0b:e2:17:ce:54:9d:9c:d3:
29:9a:b6:09:14:d8:ae:07:b0:67:75:4a:c1:d3:c7:e3:cd:b8:
8b:cd:8e:eb:1c:b6:5b:81:87:fd:7b:d4:52:e9:fa:bf:ed:d4:
07:8c:49:d7:ee:15:17:db:31:30:85:9f:dd:31:41:44:6b:c9:
65:3f:ad:69:99:2a:7e:38:67:49:2e:bf:50:b9:db:26:a2:49:
5e:ca:6d:8a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNWiOQyg6T41vxVW9EXYC8zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0NDcwYWYwZDg5ZDc4NWJhMThiYTYxN2RjMDllM2Y3MmM1
OTk2ZjMwHhcNMjQxMTIzMDEwMDMyWhcNMjQxMTI0MDEwMDMyWjAzMTEwLwYDVQQD
EygzYmNlOTU1MmM5NDFhZmY3ZjUyNWJiMTU3NzkyZTRlODY5ZmEyODQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAup7Nk2rwsRyMYOxoyBCM4kTfv1g4
qBMk/KizJeHNPIM2qw8Z703Lh1qIeJ9qUgKTpOBNO6cVubsViyAwrb1PzQNE3tbq
xQ+yVEyRyoSwBeX+x/vy/sKMvLfcGrrwpqwoMn4F4W4yKZHWFabj2g9xFKGBAI9x
2q3PCfxqlKXHA89zMEm83Dz5R69ao8KKkSfMpsOs2aKPk7P/s0SgmILeGP4su59G
fV6rFAV4G9nmlw8dQ3pQ9s7RxEgo04WZGWUvq2Dvv6Qa5R3EIe0DOkMNjLf/EguM
uF2k6e4oVUntxL6Idov0si08O8OYGgCPluxCfjyrT1FMw7Ip6ow09vQ29wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDvOlVLJQa/39SW7FXeS5Ohp+ihIMB8GA1UdIwQY
MBaAFIRHCvDYnXhboYumF9wJ4/csWZbzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEVjSzhOaWRlRnVoaTZZWDNBbmo5eXhabHZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS82NjBmMWQtNTc1My00NTE2LTgwMDIt
ZTc2ZTNlMjkzZTAyLzEvaEVjSzhOaWRlRnVoaTZZWDNBbmo5eXhabHZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS82NjBmMWQtNTc1My00NTE2LTgwMDItZTc2ZTNlMjkzZTAy
LzEvaEVjSzhOaWRlRnVoaTZZWDNBbmo5eXhabHZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHqW/5tYy
a7mFYiXaZGZaDGNrRaYKUqflGQx45zdleOJPXJTuDLTPmI28+EANvNTz9yyo7dkR
yaYqPXxGd65kZaDqu8PSIsY9Hw/wwLnU5FrmpDMCRBYKhNIEL1B6jQNFr8LbqSoN
Rx9oDnqweFxXkLEcSkfJYNxP5GaIjzsLja4RNRWGyZWuZ36HPtUO7WS2N22CF2I/
szt+bQ3hmmqZoNb6VIXwhW0BH6bW5wviF85UnZzTKZq2CRTYrgewZ3VKwdPH4824
i82O6xy2W4GH/XvUUun6v+3UB4xJ1+4VF9sxMIWf3TFBRGvJZT+taZkqfjhnSS6/
ULnbJqJJXsptig==
-----END CERTIFICATE-----
Generated at Sat Nov 23 04:39:50 2024 by rpki-client on console-ams.rpki-client.org