Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft
File: ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft (raw, json)
Hash identifier: r8ZyYyHNnaLy+yx2hNqN8LsUCpancgFBYCF862u8IoM=
Subject key identifier: 43:D2:24:62:F6:A9:BC:B8:6A:AE:7A:AF:AC:0F:A3:D6:39:BB:26:16
Authority key identifier: 72:48:1D:D9:0D:10:0B:D5:BC:23:C0:4B:10:C0:A8:43:1C:C9:A5:B5
Certificate issuer: /CN=72481dd90d100bd5bc23c04b10c0a8431cc9a5b5
Certificate serial: 01936933F793FB171FDCAE75FED2983E0F03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft
Manifest number: 12BE
Signing time: Tue 26 Nov 2024 16:00:33 +0000
Manifest this update: Tue 26 Nov 2024 16:00:33 +0000
Manifest next update: Wed 27 Nov 2024 16:00:33 +0000
Files and hashes: 1: c48ITznYWNOCtQnBItYbm_4wI4c.roa (hash: dcMy/kHnx3JAVi/C/fI++zs6QoCREjwrUOkNdwZwGgY=)
2: ckgd2Q0QC9W8I8BLEMCoQxzJpbU.crl (hash: sH/mlWCT73EECvhv3oKsRxnSSa/u4/m/wTZH9nH4gWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 16:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:33:f7:93:fb:17:1f:dc:ae:75:fe:d2:98:3e:0f:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72481dd90d100bd5bc23c04b10c0a8431cc9a5b5
Validity
Not Before: Nov 26 16:00:33 2024 GMT
Not After : Nov 27 16:00:33 2024 GMT
Subject: CN=43d22462f6a9bcb86aae7aafac0fa3d639bb2616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d7:d0:90:a1:2a:33:5a:ff:85:e0:f2:90:0c:
d7:ca:ae:86:59:2c:23:4e:d2:51:ff:6f:e6:71:50:
76:16:6e:24:ea:f8:74:8c:0e:9f:71:3b:a3:d9:e7:
f4:00:96:b4:91:e9:00:89:72:f8:f3:73:a2:10:4f:
ed:17:48:8d:5a:66:10:8a:d4:56:29:70:ac:0a:24:
56:80:fd:61:83:7b:8f:ac:f3:2c:50:09:43:f5:94:
82:f8:16:4c:00:43:fe:25:30:18:f7:17:26:a3:72:
bc:e2:47:b2:77:2c:82:05:a2:55:56:b8:1b:4d:51:
f5:58:24:e7:b0:f3:eb:53:bb:59:72:e9:1e:30:08:
8b:31:4e:2a:18:be:73:36:8e:bd:a8:38:4a:55:f6:
76:8b:96:7d:37:54:0d:3f:ff:d2:20:d5:fc:68:7f:
39:95:1f:45:17:eb:bb:91:de:10:68:eb:75:26:36:
01:7f:68:8a:d6:49:b0:f2:d8:ff:85:8c:e2:cf:1c:
91:a4:a8:2b:bd:ac:5e:f6:ad:42:46:c7:a1:30:c7:
32:70:43:be:cd:89:b0:d2:9b:fc:78:6f:ce:1f:45:
99:45:4d:c7:73:94:1c:83:7c:cf:86:c9:9f:d3:63:
d3:54:a5:10:2f:d1:54:c0:5f:1b:3c:78:83:33:f5:
fe:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:D2:24:62:F6:A9:BC:B8:6A:AE:7A:AF:AC:0F:A3:D6:39:BB:26:16
X509v3 Authority Key Identifier:
keyid:72:48:1D:D9:0D:10:0B:D5:BC:23:C0:4B:10:C0:A8:43:1C:C9:A5:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:f7:45:a3:5c:31:40:6e:ad:eb:c2:13:96:b2:0b:50:69:83:
d7:87:2b:b5:51:aa:62:ef:9d:ad:a9:5e:e2:3a:dd:53:cf:00:
19:c4:d2:0d:e1:3f:23:3d:3d:57:4e:88:5d:6e:74:ff:f7:42:
79:f3:24:f8:a7:8c:b7:c6:33:ce:09:20:bd:ad:d8:81:0e:d2:
b4:1b:2f:0d:24:2c:af:3e:5b:cb:a9:b0:f2:66:bf:bc:83:e8:
24:21:e2:cb:7e:76:b3:a1:8c:93:b7:24:25:ea:6a:82:27:21:
a9:83:2d:57:42:8a:7f:a1:fa:c8:77:67:38:37:6a:de:cd:9a:
fb:c4:74:01:bd:1d:61:1b:1b:42:dd:5c:96:ff:e0:c6:8f:55:
fd:ff:b0:0f:92:e9:e7:11:c4:db:98:6a:15:a3:60:fb:6d:02:
32:71:61:7c:e2:0e:a4:e7:97:4c:96:ac:ce:8e:6b:9f:77:a6:
e0:8d:73:03:34:5b:a9:f3:87:a4:b6:f2:dc:49:a1:b0:18:07:
63:f7:40:b4:06:2d:f3:98:65:7b:36:21:bc:f9:f2:5a:ab:7c:
e2:80:7d:0f:b3:52:48:32:b2:24:a1:5d:46:e3:ac:11:e8:c5:
b7:e0:10:a4:74:10:b5:41:d5:e3:8f:bc:1b:5c:c3:40:17:19:
bd:6c:04:5d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNpM/eT+xcf3K51/tKYPg8DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyNDgxZGQ5MGQxMDBiZDViYzIzYzA0YjEwYzBhODQzMWNj
OWE1YjUwHhcNMjQxMTI2MTYwMDMzWhcNMjQxMTI3MTYwMDMzWjAzMTEwLwYDVQQD
Eyg0M2QyMjQ2MmY2YTliY2I4NmFhZTdhYWZhYzBmYTNkNjM5YmIyNjE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmdfQkKEqM1r/heDykAzXyq6GWSwj
TtJR/2/mcVB2Fm4k6vh0jA6fcTuj2ef0AJa0kekAiXL483OiEE/tF0iNWmYQitRW
KXCsCiRWgP1hg3uPrPMsUAlD9ZSC+BZMAEP+JTAY9xcmo3K84keydyyCBaJVVrgb
TVH1WCTnsPPrU7tZcukeMAiLMU4qGL5zNo69qDhKVfZ2i5Z9N1QNP//SINX8aH85
lR9FF+u7kd4QaOt1JjYBf2iK1kmw8tj/hYzizxyRpKgrvaxe9q1CRsehMMcycEO+
zYmw0pv8eG/OH0WZRU3Hc5Qcg3zPhsmf02PTVKUQL9FUwF8bPHiDM/X+bQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEPSJGL2qby4aq56r6wPo9Y5uyYWMB8GA1UdIwQY
MBaAFHJIHdkNEAvVvCPASxDAqEMcyaW1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2tnZDJRMFFDOVc4SThCTEVNQ29ReHpKcGJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC84MzAwZjgtOWVjZS00N2NkLTgzN2Qt
ZjE5OTBiMGM3MDVhLzEvY2tnZDJRMFFDOVc4SThCTEVNQ29ReHpKcGJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC84MzAwZjgtOWVjZS00N2NkLTgzN2QtZjE5OTBiMGM3MDVh
LzEvY2tnZDJRMFFDOVc4SThCTEVNQ29ReHpKcGJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzPdFo1wx
QG6t68ITlrILUGmD14crtVGqYu+drale4jrdU88AGcTSDeE/Iz09V06IXW50//dC
efMk+KeMt8Yzzgkgva3YgQ7StBsvDSQsrz5by6mw8ma/vIPoJCHiy352s6GMk7ck
JepqgichqYMtV0KKf6H6yHdnODdq3s2a+8R0Ab0dYRsbQt1clv/gxo9V/f+wD5Lp
5xHE25hqFaNg+20CMnFhfOIOpOeXTJaszo5rn3em4I1zAzRbqfOHpLby3EmhsBgH
Y/dAtAYt85hlezYhvPnyWqt84oB9D7NSSDKyJKFdRuOsEejFt+AQpHQQtUHV44+8
G1zDQBcZvWwEXQ==
-----END CERTIFICATE-----
Generated at Tue Nov 26 21:06:47 2024 by rpki-client on console-fra.rpki-client.org