Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft
File: EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft (raw, json)
Hash identifier: q9JLWEDXgiUix/Wz5gDSme2Am9W6TjVQlEO2p+NnvNY=
Subject key identifier: 26:90:A7:C1:FF:AD:A8:95:AB:F8:53:27:CE:C7:45:0F:39:E8:6C:5F
Authority key identifier: 10:7A:5A:F1:96:B8:A0:EA:96:0C:28:F6:B3:E7:52:91:C7:E8:61:CD
Certificate issuer: /CN=107a5af196b8a0ea960c28f6b3e75291c7e861cd
Certificate serial: 019405A0F805F3008511E51883F36D4FCBB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft
Manifest number: 13CC
Signing time: Fri 27 Dec 2024 01:00:22 +0000
Manifest this update: Fri 27 Dec 2024 01:00:22 +0000
Manifest next update: Sat 28 Dec 2024 01:00:22 +0000
Files and hashes: 1: 9tH5GOAQwRZgtrqRCw6E5l2rvEA.roa (hash: OyTG7wFkFaVBFOx69BwGknbkHGngj4fAcgjyuoj620Y=)
2: EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl (hash: djhRXbbLASYNJPwmHLrdCMf2LpBc5+563BbnxtZ1PpM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 00:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:05:a0:f8:05:f3:00:85:11:e5:18:83:f3:6d:4f:cb:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=107a5af196b8a0ea960c28f6b3e75291c7e861cd
Validity
Not Before: Dec 27 01:00:22 2024 GMT
Not After : Dec 28 01:00:22 2024 GMT
Subject: CN=2690a7c1ffada895abf85327cec7450f39e86c5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:35:73:30:21:3a:86:e4:6c:fb:11:72:07:f9:
4e:a3:50:a9:88:87:d2:db:38:e3:95:e9:8c:cc:b2:
e9:21:28:38:0a:0a:ed:02:50:d4:5c:42:4c:08:03:
dd:43:c9:05:90:66:8b:45:d2:0c:dc:e9:a5:78:f6:
80:9a:4a:06:42:c5:df:89:8b:45:13:88:2f:65:75:
54:26:02:30:72:54:c7:6b:90:7d:3e:18:9e:fb:f9:
2a:e4:49:33:96:11:4b:2a:e5:92:b9:e3:33:dd:f3:
8a:cc:7a:8c:00:c5:53:0e:87:74:05:dc:ad:d1:24:
d7:da:b1:9d:46:ec:e2:6c:d2:4a:03:60:8f:6e:41:
5f:ed:74:aa:3a:89:ae:09:0e:19:58:01:8e:90:96:
a7:5a:47:e4:6a:64:0f:33:f2:73:92:a5:09:0c:52:
f5:09:1a:78:01:56:2e:7d:3c:96:48:db:42:9c:63:
30:22:39:1d:ef:d6:b2:7e:60:be:71:3e:6e:ca:d5:
25:f2:2e:6e:21:32:8e:4f:2f:26:e3:57:a0:46:5e:
c8:45:9e:ca:f4:99:9a:3f:1d:dc:b5:76:65:ce:84:
1b:21:9a:02:e6:4a:67:a6:24:e1:67:a4:79:5c:9a:
75:c7:7f:06:c9:f7:02:2d:02:66:09:ad:bd:29:aa:
eb:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:90:A7:C1:FF:AD:A8:95:AB:F8:53:27:CE:C7:45:0F:39:E8:6C:5F
X509v3 Authority Key Identifier:
keyid:10:7A:5A:F1:96:B8:A0:EA:96:0C:28:F6:B3:E7:52:91:C7:E8:61:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:fb:e6:27:fe:0e:db:bc:1d:59:f6:2b:0c:32:ef:d4:b6:df:
cf:1e:7e:9e:ab:9a:38:5c:59:29:32:6b:50:d5:90:de:40:6c:
94:fa:aa:58:2f:cc:4b:ef:09:77:9c:af:dd:f4:6d:14:95:b8:
a4:a8:3c:47:33:d1:5a:aa:d2:62:06:9a:81:65:6d:7f:1b:2d:
8d:c5:61:70:8d:5c:8c:42:b8:fd:fe:c2:3e:84:c6:12:99:05:
df:62:98:88:b4:46:6f:27:dc:ee:d8:df:80:e6:81:30:9a:fb:
65:87:61:3c:54:76:4c:72:bc:19:8d:45:18:37:a3:a9:0b:48:
bd:19:ce:1b:9f:f8:6e:f0:3b:8f:63:63:52:47:2f:3b:f5:1f:
d0:21:6d:92:90:3a:e7:94:74:88:ed:83:78:04:a5:b7:15:01:
70:65:64:9d:30:90:ea:28:6b:bc:b2:ef:b4:e4:53:6c:96:f7:
a5:fc:1c:cf:be:34:4d:7e:3a:b9:d9:4b:91:90:0d:ca:be:35:
44:70:39:88:fb:be:2c:42:1f:46:64:cb:32:41:36:e5:c7:84:
67:03:4f:d3:1e:ef:03:5c:92:09:e1:fa:f1:6c:75:01:5c:19:
02:77:ee:a1:75:23:c7:f5:8b:c1:64:a8:62:9f:06:86:8d:e7:
35:12:98:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZQFoPgF8wCFEeUYg/NtT8uzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwN2E1YWYxOTZiOGEwZWE5NjBjMjhmNmIzZTc1MjkxYzdl
ODYxY2QwHhcNMjQxMjI3MDEwMDIyWhcNMjQxMjI4MDEwMDIyWjAzMTEwLwYDVQQD
EygyNjkwYTdjMWZmYWRhODk1YWJmODUzMjdjZWM3NDUwZjM5ZTg2YzVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5DVzMCE6huRs+xFyB/lOo1CpiIfS
2zjjlemMzLLpISg4CgrtAlDUXEJMCAPdQ8kFkGaLRdIM3OmlePaAmkoGQsXfiYtF
E4gvZXVUJgIwclTHa5B9Phie+/kq5EkzlhFLKuWSueMz3fOKzHqMAMVTDod0Bdyt
0STX2rGdRuzibNJKA2CPbkFf7XSqOomuCQ4ZWAGOkJanWkfkamQPM/JzkqUJDFL1
CRp4AVYufTyWSNtCnGMwIjkd79ayfmC+cT5uytUl8i5uITKOTy8m41egRl7IRZ7K
9JmaPx3ctXZlzoQbIZoC5kpnpiThZ6R5XJp1x38GyfcCLQJmCa29KarrJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCaQp8H/raiVq/hTJ87HRQ856GxfMB8GA1UdIwQY
MBaAFBB6WvGWuKDqlgwo9rPnUpHH6GHNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRUhwYThaYTRvT3FXRENqMnMtZFNrY2ZvWWMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9iYjIzZTEtNDZjYS00NjRhLWIzZjIt
ZjkyOWUyNTUxNjI3LzEvRUhwYThaYTRvT3FXRENqMnMtZFNrY2ZvWWMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9iYjIzZTEtNDZjYS00NjRhLWIzZjItZjkyOWUyNTUxNjI3
LzEvRUhwYThaYTRvT3FXRENqMnMtZFNrY2ZvWWMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApfvmJ/4O
27wdWfYrDDLv1Lbfzx5+nquaOFxZKTJrUNWQ3kBslPqqWC/MS+8Jd5yv3fRtFJW4
pKg8RzPRWqrSYgaagWVtfxstjcVhcI1cjEK4/f7CPoTGEpkF32KYiLRGbyfc7tjf
gOaBMJr7ZYdhPFR2THK8GY1FGDejqQtIvRnOG5/4bvA7j2NjUkcvO/Uf0CFtkpA6
55R0iO2DeASltxUBcGVknTCQ6ihrvLLvtORTbJb3pfwcz740TX46udlLkZANyr41
RHA5iPu+LEIfRmTLMkE25ceEZwNP0x7vA1ySCeH68Wx1AVwZAnfuoXUjx/WLwWSo
Yp8Gho3nNRKYYQ==
-----END CERTIFICATE-----
Generated at Fri Dec 27 09:41:44 2024 by rpki-client on console-ams.rpki-client.org