Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
File: 8yvpggYKQ3NNCtEmrUbaLzlcne8.mft (raw, json)
Hash identifier: rnQ6hkDnkjd+KMGGYvLK1+9n4HjYEay0SbT7h89f2Kc=
Subject key identifier: 9B:ED:70:D7:CA:B2:1B:63:08:78:97:C4:C8:81:BC:94:26:34:D0:07
Authority key identifier: F3:2B:E9:82:06:0A:43:73:4D:0A:D1:26:AD:46:DA:2F:39:5C:9D:EF
Certificate issuer: /CN=f32be982060a43734d0ad126ad46da2f395c9def
Certificate serial: 01940647A8465659640F659C607952ACA9FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
Manifest number: 13CC
Signing time: Fri 27 Dec 2024 04:02:26 +0000
Manifest this update: Fri 27 Dec 2024 04:02:26 +0000
Manifest next update: Sat 28 Dec 2024 04:02:26 +0000
Files and hashes: 1: 52yNUwd1MPlR5dyvcdJ3i3QgqyE.roa (hash: UHX5ehwGgRGx2k5azGZPr7jzt62HUq6PwHor1v9cV5I=)
2: 8yvpggYKQ3NNCtEmrUbaLzlcne8.crl (hash: StiTGX8Kh/3F+HtkuV20RoLfk3pRxufDikihMmOkomg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 00:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:06:47:a8:46:56:59:64:0f:65:9c:60:79:52:ac:a9:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f32be982060a43734d0ad126ad46da2f395c9def
Validity
Not Before: Dec 27 04:02:26 2024 GMT
Not After : Dec 28 04:02:26 2024 GMT
Subject: CN=9bed70d7cab21b63087897c4c881bc942634d007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c1:01:a9:6c:82:df:5d:6a:7e:f2:ef:d0:6a:
eb:87:cf:09:ec:0e:58:28:31:83:cd:8c:94:f6:7e:
d0:9c:87:a6:5b:c3:52:8a:80:0b:a1:42:7a:12:43:
7a:90:04:13:8b:69:98:93:48:2c:bb:30:e7:eb:16:
ea:38:2f:7f:52:a1:3b:21:aa:1c:4b:0a:ba:fa:7a:
73:2e:04:0b:02:81:e8:7f:04:29:69:5f:1d:eb:cb:
54:34:3c:47:8c:bc:1e:b4:05:53:b6:1d:22:db:33:
be:8a:2e:18:f0:5d:7c:50:38:dc:67:d3:3a:3e:c4:
29:74:f6:f5:fe:0e:5e:f3:6b:5d:92:20:5b:dd:bd:
c3:89:77:b3:3c:0f:97:a7:33:3a:49:9a:ee:35:3c:
aa:51:48:34:c1:f8:23:a9:05:35:bc:00:5f:4f:5f:
bf:c3:fc:fb:72:46:d3:eb:c6:e7:d3:3e:df:dc:d4:
d7:61:bb:9e:07:43:88:fd:c6:4e:ca:e9:93:e9:16:
5e:77:df:5e:9f:d9:4a:36:5a:86:3a:c4:97:e7:33:
6e:9f:3a:c8:81:96:b7:0e:34:28:3e:56:26:82:76:
88:4b:8c:e2:1f:22:ea:a6:b7:9f:b2:8f:6f:68:58:
14:c7:5f:20:4f:2d:14:64:21:a9:ce:cc:9a:0b:86:
86:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:ED:70:D7:CA:B2:1B:63:08:78:97:C4:C8:81:BC:94:26:34:D0:07
X509v3 Authority Key Identifier:
keyid:F3:2B:E9:82:06:0A:43:73:4D:0A:D1:26:AD:46:DA:2F:39:5C:9D:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:8b:4e:fa:b6:45:b9:4f:39:d7:07:81:0e:00:fa:69:12:fd:
83:c3:56:ad:6c:bb:8e:69:4f:5b:4f:81:5d:53:81:4c:5d:68:
27:97:06:01:62:e7:a9:61:8c:2f:2f:17:8c:d8:f5:01:46:df:
39:a8:f7:db:c1:a3:25:58:a9:46:35:27:66:ba:71:48:3b:95:
b3:3d:b5:07:23:f8:bc:09:e1:49:74:0b:44:0b:98:ac:9b:f3:
7c:48:b8:49:b3:5c:dd:be:d9:0b:7b:81:fd:76:e0:ea:9c:8f:
4b:95:84:d8:1f:65:74:9a:86:63:bb:d7:66:7c:0a:ef:80:05:
c2:8c:ba:54:ca:e4:69:90:82:09:d0:cb:3a:4f:f7:ec:85:9c:
20:f3:d7:e5:92:ac:2f:91:c4:19:2b:3a:7e:2b:d0:94:5b:10:
19:7c:45:b0:37:7b:89:d5:ab:60:22:f7:aa:a2:97:bb:e4:40:
d1:2a:cf:69:e1:aa:53:41:a4:22:39:83:22:d5:ab:dc:f0:5b:
6e:14:b5:de:6c:03:54:94:df:fd:02:e4:b6:56:1a:60:37:31:
b2:46:8d:ec:77:63:af:d7:26:04:cd:e4:d9:5c:11:aa:8f:e0:
8e:dc:0f:40:0d:ef:97:ab:f7:34:12:d6:27:f7:84:1f:d7:2e:
29:1f:0c:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZQGR6hGVllkD2WcYHlSrKn/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYzMmJlOTgyMDYwYTQzNzM0ZDBhZDEyNmFkNDZkYTJmMzk1
YzlkZWYwHhcNMjQxMjI3MDQwMjI2WhcNMjQxMjI4MDQwMjI2WjAzMTEwLwYDVQQD
Eyg5YmVkNzBkN2NhYjIxYjYzMDg3ODk3YzRjODgxYmM5NDI2MzRkMDA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzMEBqWyC311qfvLv0Grrh88J7A5Y
KDGDzYyU9n7QnIemW8NSioALoUJ6EkN6kAQTi2mYk0gsuzDn6xbqOC9/UqE7Iaoc
Swq6+npzLgQLAoHofwQpaV8d68tUNDxHjLwetAVTth0i2zO+ii4Y8F18UDjcZ9M6
PsQpdPb1/g5e82tdkiBb3b3DiXezPA+XpzM6SZruNTyqUUg0wfgjqQU1vABfT1+/
w/z7ckbT68bn0z7f3NTXYbueB0OI/cZOyumT6RZed99en9lKNlqGOsSX5zNunzrI
gZa3DjQoPlYmgnaIS4ziHyLqprefso9vaFgUx18gTy0UZCGpzsyaC4aGHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJvtcNfKshtjCHiXxMiBvJQmNNAHMB8GA1UdIwQY
MBaAFPMr6YIGCkNzTQrRJq1G2i85XJ3vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOHl2cGdnWUtRM05OQ3RFbXJVYmFMemxjbmU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC9kYTNiMWQtN2FjZi00NTFmLWI2OGIt
OTliY2JlNmQ3ZjYzLzEvOHl2cGdnWUtRM05OQ3RFbXJVYmFMemxjbmU4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC9kYTNiMWQtN2FjZi00NTFmLWI2OGItOTliY2JlNmQ3ZjYz
LzEvOHl2cGdnWUtRM05OQ3RFbXJVYmFMemxjbmU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbItO+rZF
uU851weBDgD6aRL9g8NWrWy7jmlPW0+BXVOBTF1oJ5cGAWLnqWGMLy8XjNj1AUbf
Oaj328GjJVipRjUnZrpxSDuVsz21ByP4vAnhSXQLRAuYrJvzfEi4SbNc3b7ZC3uB
/Xbg6pyPS5WE2B9ldJqGY7vXZnwK74AFwoy6VMrkaZCCCdDLOk/37IWcIPPX5ZKs
L5HEGSs6fivQlFsQGXxFsDd7idWrYCL3qqKXu+RA0SrPaeGqU0GkIjmDItWr3PBb
bhS13mwDVJTf/QLktlYaYDcxskaN7Hdjr9cmBM3k2VwRqo/gjtwPQA3vl6v3NBLW
J/eEH9cuKR8Mhg==
-----END CERTIFICATE-----
Generated at Fri Dec 27 09:41:23 2024 by rpki-client on console-ams.rpki-client.org