Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
File: bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft (raw, json)
Hash identifier: Yj9aZuZWx2B2SaiDQEQiGbZnQBF2H/Xcm/4W8i1aQmg=
Subject key identifier: 83:77:AF:AA:2D:5B:57:E0:E1:2C:6F:43:23:7F:7B:07:D0:1D:0B:EB
Authority key identifier: 6C:B8:50:DE:B2:8B:DB:2F:65:5E:2F:1B:02:D3:7C:13:C6:D4:34:52
Certificate issuer: /CN=6cb850deb28bdb2f655e2f1b02d37c13c6d43452
Certificate serial: 019357D28C41ECB071DFE73A9D4129AC37E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
Manifest number: FE
Signing time: Sat 23 Nov 2024 07:00:36 +0000
Manifest this update: Sat 23 Nov 2024 07:00:36 +0000
Manifest next update: Sun 24 Nov 2024 07:00:36 +0000
Files and hashes: 1: 1XXMsonda8YlQ1eSTS87-WTDvjk.roa (hash: Rh3YuvPKJyfRbM+2zvyeUDzF+D8lxjHkBrOyJUfyQCM=)
2: bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl (hash: rlvXEONFkJ9cuKBXleGggXITUdf1i2AGpSPnM272j34=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:8c:41:ec:b0:71:df:e7:3a:9d:41:29:ac:37:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cb850deb28bdb2f655e2f1b02d37c13c6d43452
Validity
Not Before: Nov 23 07:00:36 2024 GMT
Not After : Nov 24 07:00:36 2024 GMT
Subject: CN=8377afaa2d5b57e0e12c6f43237f7b07d01d0beb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:5e:21:f5:fb:13:6f:7e:82:86:e9:62:b7:39:
ef:6e:d1:29:3a:c4:f9:e0:d5:72:a1:c0:3d:67:83:
7f:63:ed:f6:d8:f5:01:1b:84:99:4f:47:b4:2e:77:
82:08:ea:d7:b8:86:97:77:87:d2:3a:6e:88:09:d4:
84:96:f4:81:cf:b0:f1:41:09:c1:d6:a8:ff:cb:35:
24:ea:b0:94:bb:7c:ac:47:61:8e:f8:fd:76:e5:4c:
2f:b0:02:1a:4b:29:98:4b:8a:e0:6a:19:1d:9e:72:
9a:e7:ee:43:45:47:2e:14:20:46:7e:c8:77:7e:7b:
67:85:ab:b6:56:18:82:82:16:0c:aa:0c:7c:2a:cc:
1e:2b:10:a8:83:01:4a:aa:52:79:6a:cb:8e:e3:ef:
50:a9:4f:93:12:6c:e1:a1:40:45:bc:47:6e:d5:23:
ec:4f:d4:b4:0e:38:18:30:33:45:5a:03:b4:a8:87:
1b:e2:27:7f:d5:b2:ca:d1:56:a7:21:a2:83:81:c5:
fc:00:d6:38:c0:7e:a3:e3:fc:7e:33:52:2c:fd:94:
e4:07:1f:12:85:7d:6c:ea:9d:37:9e:0e:56:7d:d5:
26:3a:ec:40:cf:41:e0:4c:01:17:b3:a5:42:f1:10:
09:0d:b8:03:09:a1:fa:db:c4:b1:26:94:ec:c2:c8:
09:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:77:AF:AA:2D:5B:57:E0:E1:2C:6F:43:23:7F:7B:07:D0:1D:0B:EB
X509v3 Authority Key Identifier:
keyid:6C:B8:50:DE:B2:8B:DB:2F:65:5E:2F:1B:02:D3:7C:13:C6:D4:34:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:73:7e:73:fc:5c:00:57:cb:bf:4e:b9:a7:ba:04:86:f4:52:
c1:a0:3d:1e:c7:e7:bd:0e:20:54:af:76:09:54:1d:ab:7c:26:
d4:fe:c4:76:04:e1:81:c5:e4:fc:d8:ef:3e:d0:88:31:5c:64:
ab:ea:8c:40:92:63:3a:01:ba:2a:05:9d:38:11:d1:7e:45:67:
e0:95:9b:85:ee:e2:06:03:ad:62:93:c9:9e:67:86:8f:d9:7f:
f6:f9:ba:2b:40:0a:49:c5:5c:a3:66:97:b9:07:ca:55:71:d0:
c4:16:98:30:18:8e:26:3c:3f:ce:a4:b9:db:8d:c2:8b:10:09:
82:f6:de:7d:80:73:5e:fd:f0:90:7f:2f:20:5a:ed:4f:e0:eb:
7c:b7:3f:34:d3:79:e2:e2:d2:d2:7e:5d:d1:e3:8c:bb:fc:21:
1e:94:1f:88:ef:0e:52:36:29:a6:8d:f8:ad:44:51:9e:9d:a7:
61:ff:be:53:88:7a:89:62:f3:d0:bc:ca:41:9b:b6:9c:01:f3:
a4:32:7b:47:d5:c6:28:de:2c:d3:a6:6e:e2:ca:5b:50:bb:d8:
3f:68:3e:0a:61:46:81:da:05:6a:93:81:01:90:ba:b4:bd:32:
0e:7a:51:92:75:ba:49:24:2a:e3:6b:23:9c:50:e5:32:56:45:
22:48:76:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNX0oxB7LBx3+c6nUEprDfoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjYjg1MGRlYjI4YmRiMmY2NTVlMmYxYjAyZDM3YzEzYzZk
NDM0NTIwHhcNMjQxMTIzMDcwMDM2WhcNMjQxMTI0MDcwMDM2WjAzMTEwLwYDVQQD
Eyg4Mzc3YWZhYTJkNWI1N2UwZTEyYzZmNDMyMzdmN2IwN2QwMWQwYmViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnV4h9fsTb36ChulitznvbtEpOsT5
4NVyocA9Z4N/Y+322PUBG4SZT0e0LneCCOrXuIaXd4fSOm6ICdSElvSBz7DxQQnB
1qj/yzUk6rCUu3ysR2GO+P125UwvsAIaSymYS4rgahkdnnKa5+5DRUcuFCBGfsh3
fntnhau2VhiCghYMqgx8KsweKxCogwFKqlJ5asuO4+9QqU+TEmzhoUBFvEdu1SPs
T9S0DjgYMDNFWgO0qIcb4id/1bLK0VanIaKDgcX8ANY4wH6j4/x+M1Is/ZTkBx8S
hX1s6p03ng5WfdUmOuxAz0HgTAEXs6VC8RAJDbgDCaH628SxJpTswsgJnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIN3r6otW1fg4SxvQyN/ewfQHQvrMB8GA1UdIwQY
MBaAFGy4UN6yi9svZV4vGwLTfBPG1DRSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYkxoUTNyS0wyeTlsWGk4YkF0TjhFOGJVTkZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC9iMmQ3MGQtNDk1My00ZDYxLWI4Yzkt
ODhiMmQyY2Y3YzMxLzEvYkxoUTNyS0wyeTlsWGk4YkF0TjhFOGJVTkZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC9iMmQ3MGQtNDk1My00ZDYxLWI4YzktODhiMmQyY2Y3YzMx
LzEvYkxoUTNyS0wyeTlsWGk4YkF0TjhFOGJVTkZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa3N+c/xc
AFfLv065p7oEhvRSwaA9HsfnvQ4gVK92CVQdq3wm1P7EdgThgcXk/NjvPtCIMVxk
q+qMQJJjOgG6KgWdOBHRfkVn4JWbhe7iBgOtYpPJnmeGj9l/9vm6K0AKScVco2aX
uQfKVXHQxBaYMBiOJjw/zqS5243CixAJgvbefYBzXv3wkH8vIFrtT+DrfLc/NNN5
4uLS0n5d0eOMu/whHpQfiO8OUjYppo34rURRnp2nYf++U4h6iWLz0LzKQZu2nAHz
pDJ7R9XGKN4s06Zu4spbULvYP2g+CmFGgdoFapOBAZC6tL0yDnpRknW6SSQq42sj
nFDlMlZFIkh2KA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:36:13 2024 by rpki-client on console-ams.rpki-client.org