Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
File: pqBZBOyBdGoKZtIH9dNvjZeIig0.mft (raw, json)
Hash identifier: QEUHscFEfnUM+z/IANK1PHpvp71rn+97tXxkKNlCJVI=
Subject key identifier: 91:7A:39:8B:44:D7:B2:AB:F6:33:4A:78:C6:35:7A:3C:0F:69:88:EC
Authority key identifier: A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D
Certificate issuer: /CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d
Certificate serial: 0193531A603B2536B5BC55D907110EB7A85B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
Manifest number: 04D2
Signing time: Fri 22 Nov 2024 09:00:57 +0000
Manifest this update: Fri 22 Nov 2024 09:00:57 +0000
Manifest next update: Sat 23 Nov 2024 09:00:57 +0000
Files and hashes: 1: GTh-G6yI2S6LlNyn0_SA5MyDt5I.roa (hash: zVqWn+3LerJ53wNT0CBkYX7z6mikTo0ypXKu4Pmpyak=)
2: pqBZBOyBdGoKZtIH9dNvjZeIig0.crl (hash: /Bi6XzMiLk4h8UXaFqDsdLhOYOcAnh3rXN3sjYiiILI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 09:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:53:1a:60:3b:25:36:b5:bc:55:d9:07:11:0e:b7:a8:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d
Validity
Not Before: Nov 22 09:00:57 2024 GMT
Not After : Nov 23 09:00:57 2024 GMT
Subject: CN=917a398b44d7b2abf6334a78c6357a3c0f6988ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:99:ce:08:30:8e:15:37:e9:67:f7:be:e4:64:
20:cf:67:fc:95:1f:1f:f9:8a:b2:67:09:9a:0b:c5:
27:c5:06:5f:a8:89:03:0b:b0:e0:8e:9d:c9:12:77:
b5:8c:a5:c2:bd:56:b3:1b:23:91:b4:74:b5:4d:eb:
70:ee:76:29:d1:dd:46:bc:99:52:a9:82:3f:bf:bb:
2b:bf:ce:7f:c8:76:2f:f9:f9:7e:42:16:cd:7c:1b:
d6:36:b1:5f:54:dd:af:53:ca:42:98:4a:93:fc:d7:
93:22:41:e5:7f:f6:60:a2:cc:05:2e:09:84:3c:b4:
e7:06:5c:a4:89:e2:dc:93:8e:f4:48:92:10:b5:e6:
e6:88:a5:60:ee:72:d2:df:d7:d1:3e:d0:00:e2:c1:
d7:12:57:6f:8f:a5:ad:bf:af:4c:5e:83:06:90:3b:
a2:15:f7:1e:27:a0:bc:76:69:d6:09:1c:21:9d:44:
d2:ad:f1:4f:e0:c8:e9:fc:6c:e1:3b:e9:61:fa:d2:
29:2c:a8:b9:62:90:c4:2b:02:ff:4e:f9:3c:f3:40:
c2:da:08:42:c2:b7:f7:f4:13:63:f0:ac:95:f1:1a:
86:3a:56:1a:bf:c5:e3:1c:cc:0f:a6:3c:98:c4:bb:
0f:30:f4:a9:98:6e:6f:30:ca:e2:12:76:9b:37:e9:
e9:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:7A:39:8B:44:D7:B2:AB:F6:33:4A:78:C6:35:7A:3C:0F:69:88:EC
X509v3 Authority Key Identifier:
keyid:A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:0d:93:0a:41:26:ef:05:52:76:c0:9e:cd:51:3c:1c:15:5e:
5f:4c:af:bb:a2:4b:74:b1:83:46:df:02:cb:ec:e2:19:3d:f4:
fe:38:d8:53:8b:13:d7:3e:18:5f:8f:b5:00:97:23:ab:e3:0d:
09:e7:a6:7a:52:e8:12:d5:07:df:62:e2:25:7b:e5:dc:5a:b9:
13:e8:c6:82:8a:02:46:10:bc:03:e7:b1:ae:6b:37:97:50:1d:
2d:cc:eb:83:c3:13:c2:c4:3d:fa:cf:22:af:7c:bc:b8:03:1c:
5f:a8:6d:61:f6:b0:cf:03:76:79:0e:f6:51:28:41:ba:8e:4c:
79:84:32:d4:0e:db:b4:a7:85:d2:10:0a:90:8b:a4:a9:7e:9f:
37:b2:91:45:22:78:e6:4f:ce:1b:6d:cd:d5:ce:99:e2:79:c2:
d2:ad:24:a3:3b:f6:5c:5d:93:7c:4a:a6:a4:9f:38:e5:74:92:
0d:ca:4c:5a:8c:65:a8:18:48:45:04:a2:e1:dc:2a:5b:6c:40:
fe:26:24:1b:b7:66:39:04:71:8b:a0:b3:2d:37:03:38:b3:f7:
6f:70:c2:32:d7:4d:b3:62:38:a2:62:35:65:01:b7:2d:c7:75:
ac:59:c1:d2:a0:cb:d2:f2:47:bd:59:30:42:33:91:ea:4b:36:
7a:1e:3c:bf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNTGmA7JTa1vFXZBxEOt6hbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2YTA1OTA0ZWM4MTc0NmEwYTY2ZDIwN2Y1ZDM2ZjhkOTc4
ODhhMGQwHhcNMjQxMTIyMDkwMDU3WhcNMjQxMTIzMDkwMDU3WjAzMTEwLwYDVQQD
Eyg5MTdhMzk4YjQ0ZDdiMmFiZjYzMzRhNzhjNjM1N2EzYzBmNjk4OGVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJnOCDCOFTfpZ/e+5GQgz2f8lR8f
+YqyZwmaC8UnxQZfqIkDC7Dgjp3JEne1jKXCvVazGyORtHS1Tetw7nYp0d1GvJlS
qYI/v7srv85/yHYv+fl+QhbNfBvWNrFfVN2vU8pCmEqT/NeTIkHlf/ZgoswFLgmE
PLTnBlykieLck470SJIQtebmiKVg7nLS39fRPtAA4sHXEldvj6Wtv69MXoMGkDui
FfceJ6C8dmnWCRwhnUTSrfFP4Mjp/GzhO+lh+tIpLKi5YpDEKwL/Tvk880DC2ghC
wrf39BNj8KyV8RqGOlYav8XjHMwPpjyYxLsPMPSpmG5vMMriEnabN+npJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJF6OYtE17Kr9jNKeMY1ejwPaYjsMB8GA1UdIwQY
MBaAFKagWQTsgXRqCmbSB/XTb42XiIoNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcHFCWkJPeUJkR29LWnRJSDlkTnZqWmVJaWcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8zYjUxYzktYjM3Yi00NzY3LTg4ZDkt
NWRmNmE0NjMwMzViLzEvcHFCWkJPeUJkR29LWnRJSDlkTnZqWmVJaWcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi8zYjUxYzktYjM3Yi00NzY3LTg4ZDktNWRmNmE0NjMwMzVi
LzEvcHFCWkJPeUJkR29LWnRJSDlkTnZqWmVJaWcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfQ2TCkEm
7wVSdsCezVE8HBVeX0yvu6JLdLGDRt8Cy+ziGT30/jjYU4sT1z4YX4+1AJcjq+MN
CeemelLoEtUH32LiJXvl3Fq5E+jGgooCRhC8A+exrms3l1AdLczrg8MTwsQ9+s8i
r3y8uAMcX6htYfawzwN2eQ72UShBuo5MeYQy1A7btKeF0hAKkIukqX6fN7KRRSJ4
5k/OG23N1c6Z4nnC0q0kozv2XF2TfEqmpJ845XSSDcpMWoxlqBhIRQSi4dwqW2xA
/iYkG7dmOQRxi6CzLTcDOLP3b3DCMtdNs2I4omI1ZQG3Lcd1rFnB0qDL0vJHvVkw
QjOR6ks2eh48vw==
-----END CERTIFICATE-----
Generated at Fri Nov 22 16:09:31 2024 by rpki-client on console-fra.rpki-client.org