Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.mft
File: _l28QbEed7xEvSxzVVS1tCWNDDM.mft (raw, json)
Hash identifier: v4ftZaog9J0s4ZZQPLxeW90lO9U6KKE1fK/MBGYwSEg=
Subject key identifier: 4B:68:A6:C7:0B:39:43:75:4B:C4:D3:F7:BD:03:42:71:1D:35:D1:9C
Authority key identifier: FE:5D:BC:41:B1:1E:77:BC:44:BD:2C:73:55:54:B5:B4:25:8D:0C:33
Certificate issuer: /CN=fe5dbc41b11e77bc44bd2c735554b5b4258d0c33
Certificate serial: 019355768AC51C4269B4CA62EFC434900022
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_l28QbEed7xEvSxzVVS1tCWNDDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.mft
Manifest number: 1371
Signing time: Fri 22 Nov 2024 20:00:52 +0000
Manifest this update: Fri 22 Nov 2024 20:00:52 +0000
Manifest next update: Sat 23 Nov 2024 20:00:52 +0000
Files and hashes: 1: YJ3Rr4XJvkiUdQZiHFDEoArPlgg.roa (hash: BzGYb+xJdbxL9pBjvrsz+Mu8CrZewPiQfYbPVAmxsZ0=)
2: _l28QbEed7xEvSxzVVS1tCWNDDM.crl (hash: mnoqSYlBVVHbNeBe0ClbtJ3nS4djmsphxf0xUoZF0xY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_l28QbEed7xEvSxzVVS1tCWNDDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 20:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:76:8a:c5:1c:42:69:b4:ca:62:ef:c4:34:90:00:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe5dbc41b11e77bc44bd2c735554b5b4258d0c33
Validity
Not Before: Nov 22 20:00:52 2024 GMT
Not After : Nov 23 20:00:52 2024 GMT
Subject: CN=4b68a6c70b3943754bc4d3f7bd0342711d35d19c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7b:94:5d:16:bd:ae:d4:df:21:60:10:23:c2:
db:7b:19:b0:73:29:14:92:bf:2c:14:15:af:b9:b5:
bd:d7:4c:8e:e1:56:8a:cd:2b:f3:42:b6:74:03:06:
90:57:81:79:d1:c0:07:57:b7:9b:25:ff:45:2d:27:
a2:01:b5:ab:dc:08:78:2e:ea:bf:da:13:72:3e:b7:
cf:67:ac:36:59:88:fe:1b:fb:0b:14:e7:c4:ce:30:
94:e2:cd:50:e7:b2:95:be:58:3e:da:bc:b3:58:76:
ff:c2:82:94:71:24:b3:b6:da:99:3c:47:bf:b4:d1:
ac:f3:e9:90:ff:34:f4:d5:e6:08:26:4a:84:65:a7:
14:4a:8b:f5:df:08:dd:77:8f:d5:29:13:cd:81:ff:
16:3e:d5:cc:49:4b:34:b0:b1:61:29:b0:1d:56:f0:
18:28:b5:c3:d0:f2:42:55:b2:59:f6:ae:a1:c3:c7:
0a:0c:ef:c7:30:82:b6:70:8b:da:77:8a:4b:56:96:
6b:e4:84:63:b5:2b:99:8c:35:72:2f:e0:25:f2:66:
79:ed:0a:ab:c6:00:20:fb:17:54:a5:b8:a2:17:af:
63:0f:66:25:e6:47:05:eb:34:21:18:5f:fc:9b:b1:
cb:97:ca:e4:97:1a:d1:0b:3c:6d:d2:37:84:0c:8c:
84:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:68:A6:C7:0B:39:43:75:4B:C4:D3:F7:BD:03:42:71:1D:35:D1:9C
X509v3 Authority Key Identifier:
keyid:FE:5D:BC:41:B1:1E:77:BC:44:BD:2C:73:55:54:B5:B4:25:8D:0C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_l28QbEed7xEvSxzVVS1tCWNDDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:3e:a3:18:ca:63:66:9d:6f:b8:79:05:ef:dc:64:2a:8a:ad:
70:be:77:dc:e4:18:cc:70:b9:9d:d3:0a:99:3d:96:6e:33:1d:
99:f4:ee:ba:92:6d:5c:b7:da:d5:54:a9:e0:13:8a:9f:9d:75:
36:5f:d7:20:bc:f6:1f:8f:86:7e:53:5c:9b:ca:38:cf:78:79:
11:e4:db:3f:40:91:42:9e:08:78:72:9b:6f:bd:b7:d6:4f:c1:
5e:4f:e1:0a:5c:a7:de:e3:bf:65:9c:91:c5:f5:07:f2:f7:6d:
0f:af:f9:c8:ba:cf:c9:5c:c6:56:61:64:be:84:c8:4b:2b:f6:
d1:ed:49:8f:5d:2e:64:2a:22:0c:9f:82:e7:98:ef:17:20:09:
71:e2:bb:81:68:1e:d9:4d:26:09:67:c1:85:de:cb:ae:c6:e6:
b0:9c:bc:9d:f7:be:8b:32:ec:c6:48:62:c9:64:b6:3e:bc:ec:
1c:ea:ab:e3:c2:74:45:98:13:f2:01:11:05:1d:b5:b1:02:30:
ca:75:b0:d6:a0:29:07:be:10:41:17:0a:3b:6e:2f:8c:7f:cc:
7a:2b:48:2d:2a:8f:db:f8:f0:5d:75:15:3d:2d:a6:81:57:ad:
b0:c8:51:95:b0:35:bf:82:89:71:16:59:66:50:ff:e2:2d:7d:
30:d9:14:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNVdorFHEJptMpi78Q0kAAiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlNWRiYzQxYjExZTc3YmM0NGJkMmM3MzU1NTRiNWI0MjU4
ZDBjMzMwHhcNMjQxMTIyMjAwMDUyWhcNMjQxMTIzMjAwMDUyWjAzMTEwLwYDVQQD
Eyg0YjY4YTZjNzBiMzk0Mzc1NGJjNGQzZjdiZDAzNDI3MTFkMzVkMTljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4XuUXRa9rtTfIWAQI8LbexmwcykU
kr8sFBWvubW910yO4VaKzSvzQrZ0AwaQV4F50cAHV7ebJf9FLSeiAbWr3Ah4Luq/
2hNyPrfPZ6w2WYj+G/sLFOfEzjCU4s1Q57KVvlg+2ryzWHb/woKUcSSzttqZPEe/
tNGs8+mQ/zT01eYIJkqEZacUSov13wjdd4/VKRPNgf8WPtXMSUs0sLFhKbAdVvAY
KLXD0PJCVbJZ9q6hw8cKDO/HMIK2cIvad4pLVpZr5IRjtSuZjDVyL+Al8mZ57Qqr
xgAg+xdUpbiiF69jD2Yl5kcF6zQhGF/8m7HLl8rklxrRCzxt0jeEDIyE8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEtopscLOUN1S8TT970DQnEdNdGcMB8GA1UdIwQY
MBaAFP5dvEGxHne8RL0sc1VUtbQljQwzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2wyOFFiRWVkN3hFdlN4elZWUzF0Q1dORERNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8wODRkMzMtOWZlZC00NjIwLWI0NmMt
ODhhNjMxNDgwMjZmLzEvX2wyOFFiRWVkN3hFdlN4elZWUzF0Q1dORERNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8wODRkMzMtOWZlZC00NjIwLWI0NmMtODhhNjMxNDgwMjZm
LzEvX2wyOFFiRWVkN3hFdlN4elZWUzF0Q1dORERNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABD6jGMpj
Zp1vuHkF79xkKoqtcL533OQYzHC5ndMKmT2WbjMdmfTuupJtXLfa1VSp4BOKn511
Nl/XILz2H4+GflNcm8o4z3h5EeTbP0CRQp4IeHKbb7231k/BXk/hClyn3uO/ZZyR
xfUH8vdtD6/5yLrPyVzGVmFkvoTISyv20e1Jj10uZCoiDJ+C55jvFyAJceK7gWge
2U0mCWfBhd7LrsbmsJy8nfe+izLsxkhiyWS2PrzsHOqr48J0RZgT8gERBR21sQIw
ynWw1qApB74QQRcKO24vjH/MeitILSqP2/jwXXUVPS2mgVetsMhRlbA1v4KJcRZZ
ZlD/4i19MNkUEA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 02:00:53 2024 by rpki-client on console-ams.rpki-client.org