Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
File: KfFNQRwg7PxJYhX82w9D2EchkJY.mft (raw, json)
Hash identifier: 3YQiqizbf64asLU4oStCGhgUe+CxC69uFucBI0vHeLg=
Subject key identifier: 14:35:C1:0A:EC:50:F8:18:90:56:5A:09:AB:09:4A:8A:BD:82:A2:B8
Authority key identifier: 29:F1:4D:41:1C:20:EC:FC:49:62:15:FC:DB:0F:43:D8:47:21:90:96
Certificate issuer: /CN=29f14d411c20ecfc496215fcdb0f43d847219096
Certificate serial: 0193587946A0DB4F951257711A8D8B1438EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
Manifest number: 1004
Signing time: Sat 23 Nov 2024 10:02:42 +0000
Manifest this update: Sat 23 Nov 2024 10:02:42 +0000
Manifest next update: Sun 24 Nov 2024 10:02:42 +0000
Files and hashes: 1: KfFNQRwg7PxJYhX82w9D2EchkJY.crl (hash: fiwNZMEs4tHmb8JVIBD32m+v2HdnL935p4XVxDQZRKo=)
2: WKgIv0kiUlC2f-1vajasCn09ED8.roa (hash: RtObs672FsWvVK/SGtx746wePKS+yCGVSQjyz/P2CJk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:79:46:a0:db:4f:95:12:57:71:1a:8d:8b:14:38:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29f14d411c20ecfc496215fcdb0f43d847219096
Validity
Not Before: Nov 23 10:02:42 2024 GMT
Not After : Nov 24 10:02:42 2024 GMT
Subject: CN=1435c10aec50f81890565a09ab094a8abd82a2b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:53:b6:0e:d6:b8:77:75:28:9b:47:15:85:d0:
aa:c3:b3:2c:bc:38:f5:b9:e6:02:76:a7:28:27:8c:
e8:1a:e1:51:d4:4a:34:d0:d8:06:fe:76:2b:3f:cb:
78:b7:57:3a:56:33:62:e9:63:92:4a:f0:fd:a5:f6:
65:7e:6c:29:14:9d:01:48:7b:eb:45:c1:f5:44:a5:
55:73:58:14:71:a1:00:3b:f9:90:6d:bf:93:a3:04:
c3:2c:a2:79:84:f6:a4:3d:15:85:91:10:10:57:2d:
d0:23:93:ef:d3:a4:a8:c3:7b:f0:5a:73:b3:1e:67:
b1:a3:87:4d:6c:09:dc:40:55:4c:fc:d1:27:2f:8d:
02:0e:3d:64:6a:20:01:6f:4f:a2:99:e1:a3:48:3d:
40:2c:47:d4:54:4e:81:ee:b7:fb:23:3c:cf:d1:41:
31:7e:20:cb:dd:d5:f0:1a:05:5c:54:78:9a:28:25:
c1:52:68:99:7d:c0:06:ba:c0:79:be:bc:64:97:26:
4c:8a:bb:f4:7c:de:29:1f:10:bf:df:1b:28:e0:3f:
20:65:b3:0c:ba:09:aa:76:6c:35:fb:4d:6f:0a:13:
fa:47:7b:ea:b4:87:c9:5b:be:ee:1b:3c:76:a4:16:
a3:37:4a:65:cd:71:18:57:a8:9c:d8:10:cd:d5:1d:
4c:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:35:C1:0A:EC:50:F8:18:90:56:5A:09:AB:09:4A:8A:BD:82:A2:B8
X509v3 Authority Key Identifier:
keyid:29:F1:4D:41:1C:20:EC:FC:49:62:15:FC:DB:0F:43:D8:47:21:90:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:17:8b:42:59:86:78:bd:77:27:1a:ea:9b:e8:3e:64:ae:f4:
18:e9:af:11:f0:9c:60:08:6b:b0:74:be:28:60:76:35:a1:c7:
1e:14:90:8e:a5:d2:b8:b6:07:ed:f0:1a:e0:f8:01:c7:76:21:
9c:b5:2a:92:42:ed:31:a2:3b:17:ab:cf:45:a1:4f:bb:6b:11:
b3:21:85:bd:91:25:c3:99:b9:73:c2:2c:ce:7d:5c:17:04:32:
6d:cc:39:03:6d:88:22:8a:4a:e5:5a:b2:c6:0f:2a:90:26:7a:
98:ae:2b:62:4e:6a:7a:f2:56:42:0b:98:44:e5:81:2c:85:69:
4e:ee:e3:c5:58:97:c0:3b:25:29:73:d0:20:7b:a9:f6:22:fa:
56:31:0a:8b:a9:2e:16:ed:2a:c0:ee:89:32:45:15:7e:2e:96:
33:80:de:4c:b7:41:db:ef:9d:3d:56:5d:86:4f:d2:c3:9f:be:
9d:80:8f:ca:95:fe:18:87:f8:82:0a:6d:5a:bf:90:44:55:25:
1f:ed:46:6a:8c:34:6f:cb:dc:92:e5:56:e6:37:94:aa:44:32:
cb:4e:b9:0b:d0:e6:ad:40:c2:fe:8d:87:04:2b:6d:51:0c:0b:
ca:0e:0f:d8:cc:8f:f0:93:76:b0:d2:c0:65:ea:f1:76:cf:2e:
9e:0a:f7:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNYeUag20+VEldxGo2LFDjsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5ZjE0ZDQxMWMyMGVjZmM0OTYyMTVmY2RiMGY0M2Q4NDcy
MTkwOTYwHhcNMjQxMTIzMTAwMjQyWhcNMjQxMTI0MTAwMjQyWjAzMTEwLwYDVQQD
EygxNDM1YzEwYWVjNTBmODE4OTA1NjVhMDlhYjA5NGE4YWJkODJhMmI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAylO2Dta4d3Uom0cVhdCqw7MsvDj1
ueYCdqcoJ4zoGuFR1Eo00NgG/nYrP8t4t1c6VjNi6WOSSvD9pfZlfmwpFJ0BSHvr
RcH1RKVVc1gUcaEAO/mQbb+TowTDLKJ5hPakPRWFkRAQVy3QI5Pv06Sow3vwWnOz
Hmexo4dNbAncQFVM/NEnL40CDj1kaiABb0+imeGjSD1ALEfUVE6B7rf7IzzP0UEx
fiDL3dXwGgVcVHiaKCXBUmiZfcAGusB5vrxklyZMirv0fN4pHxC/3xso4D8gZbMM
ugmqdmw1+01vChP6R3vqtIfJW77uGzx2pBajN0plzXEYV6ic2BDN1R1MWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBQ1wQrsUPgYkFZaCasJSoq9gqK4MB8GA1UdIwQY
MBaAFCnxTUEcIOz8SWIV/NsPQ9hHIZCWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2ZGTlFSd2c3UHhKWWhYODJ3OUQyRWNoa0pZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9iY2YyNzItZDc1MS00NWJlLTk4NTYt
MDE4YTM3NzBkYTc3LzEvS2ZGTlFSd2c3UHhKWWhYODJ3OUQyRWNoa0pZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9iY2YyNzItZDc1MS00NWJlLTk4NTYtMDE4YTM3NzBkYTc3
LzEvS2ZGTlFSd2c3UHhKWWhYODJ3OUQyRWNoa0pZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANxeLQlmG
eL13Jxrqm+g+ZK70GOmvEfCcYAhrsHS+KGB2NaHHHhSQjqXSuLYH7fAa4PgBx3Yh
nLUqkkLtMaI7F6vPRaFPu2sRsyGFvZElw5m5c8Iszn1cFwQybcw5A22IIopK5Vqy
xg8qkCZ6mK4rYk5qevJWQguYROWBLIVpTu7jxViXwDslKXPQIHup9iL6VjEKi6ku
Fu0qwO6JMkUVfi6WM4DeTLdB2++dPVZdhk/Sw5++nYCPypX+GIf4ggptWr+QRFUl
H+1Gaow0b8vckuVW5jeUqkQyy065C9DmrUDC/o2HBCttUQwLyg4P2MyP8JN2sNLA
Zerxds8ungr3Iw==
-----END CERTIFICATE-----
Generated at Sat Nov 23 11:58:46 2024 by rpki-client on console-fra.rpki-client.org