Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft
File: JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft (raw, json)
Hash identifier: udeKccP4A0x0Ufwpcis/sc9sCU4bBbBws5BygM/tDHI=
Subject key identifier: 94:C3:F1:DD:8A:07:39:E0:84:8F:C2:BC:57:D8:92:E1:71:92:AE:45
Authority key identifier: 25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04
Certificate issuer: /CN=255876412d20fbb6cab823481782ac47703b4404
Certificate serial: 01935274E3C9E15722314563D50B0C3DD6C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft
Manifest number: 40
Signing time: Fri 22 Nov 2024 06:00:12 +0000
Manifest this update: Fri 22 Nov 2024 06:00:12 +0000
Manifest next update: Sat 23 Nov 2024 06:00:12 +0000
Files and hashes: 1: 68qoT7nRhfgrTUKunveROfevrAM.roa (hash: q3g3CU4E8stoVjz0BW00BUfO1oDvlz+v6a82CcvXwbM=)
2: JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl (hash: L4TffFQHlvKqLn2qAC9TTVniAvZr0rhyG32SD90rUrQ=)
3: Q2C2K8lIxxiUdu5b7Z3pPxSlUA4.roa (hash: fF+89Xt5OrOfTEcdNIvr2GEA64huOuCskoUs/riTTbQ=)
4: SBggCHtF1hUBUR-EMYoiUgZq9qo.roa (hash: j8FSq0CNuCHVr2hn/QvFdqMB8wgxE2PQBOApQSUEl1w=)
5: VZJHzDNuTzbzYD_RSaWZlgehjFQ.roa (hash: vVzwIkv/iAit2akckkKxsWamqdbKN2Wh8RJbCYAPYoU=)
6: grJIxnFXuuslltrN8O0WEaeMdG8.roa (hash: b+HZkNxuU57JV5xLfHxbKFibjBj+6Fq0htPVYCiKc80=)
7: x5cGrWaTPTTehZD7hyCsNig9dPM.roa (hash: UVRc86uKZfRXpyxwiNptOcoTFCql1ofh/CeIaskq6TQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:74:e3:c9:e1:57:22:31:45:63:d5:0b:0c:3d:d6:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=255876412d20fbb6cab823481782ac47703b4404
Validity
Not Before: Nov 22 06:00:12 2024 GMT
Not After : Nov 23 06:00:12 2024 GMT
Subject: CN=94c3f1dd8a0739e0848fc2bc57d892e17192ae45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:31:cf:03:69:dc:22:c7:09:fe:b7:50:e2:6e:
ed:5c:cf:0d:ea:14:99:12:9d:81:4f:2e:76:31:54:
1b:5f:dc:66:e6:f4:0e:7d:76:8f:1c:06:22:00:50:
da:a3:94:cd:eb:a6:74:af:e4:03:7b:ed:60:5d:30:
87:14:a3:fb:f7:70:15:28:8a:3f:9d:39:8d:cd:ff:
70:ab:d2:0e:5a:46:c0:1f:a5:55:3b:56:95:83:d7:
5d:66:ea:1b:68:39:4b:e3:ed:2f:5c:77:a6:2c:7e:
21:86:e6:04:14:92:90:cd:62:86:0b:98:d9:ad:61:
56:24:7f:39:44:d5:80:43:63:1d:b0:15:c0:d9:b7:
19:4f:99:61:fd:e2:32:9e:95:ed:4a:27:61:c4:9f:
92:13:69:88:d9:64:cf:e9:42:d9:aa:a6:09:d4:fb:
52:a6:e2:75:b0:13:80:3e:cc:ec:e0:38:4f:4c:9e:
cf:13:23:69:a5:4f:98:30:54:ba:34:b3:69:2f:c6:
6d:44:95:75:1a:91:ea:fd:0d:da:f0:bc:c3:3c:b0:
23:e6:44:16:4f:78:2f:1e:48:87:d9:4d:31:08:9d:
0a:1c:f4:bb:39:f8:6e:51:4f:87:d5:83:1e:ea:c5:
e6:68:2c:0d:35:33:9e:01:58:b1:5a:36:c2:b0:69:
75:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:C3:F1:DD:8A:07:39:E0:84:8F:C2:BC:57:D8:92:E1:71:92:AE:45
X509v3 Authority Key Identifier:
keyid:25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:79:f1:64:15:4e:07:a6:2e:1b:b9:50:2e:75:e7:4a:04:b3:
86:11:1c:d8:3d:59:32:80:72:79:fc:d2:ac:8c:c5:f7:b1:a2:
1e:d7:a2:4a:11:28:0d:2e:95:70:95:6a:74:a6:14:0d:cc:48:
27:bb:e9:cd:e0:e3:c6:c3:31:a6:90:cd:37:11:9e:f0:47:ae:
1b:4e:b7:b5:5f:ef:61:b0:4b:2a:aa:4d:10:72:24:7a:57:b1:
47:8a:e2:a3:d6:f4:cf:56:b3:fc:26:49:40:a1:dd:b9:e8:77:
c8:86:33:00:87:56:58:c5:5f:e3:21:5d:36:ed:98:b0:01:87:
a3:17:da:e6:00:d2:8d:d0:66:fb:6a:cb:33:57:76:12:07:7a:
30:81:f9:db:5b:e4:f0:f3:cc:7d:9d:5a:42:f5:c2:3c:7c:52:
be:0f:84:7c:6e:2e:53:d0:c4:88:55:e2:43:9e:62:09:97:41:
16:77:17:2d:d4:95:30:1a:56:17:30:cd:38:1f:47:dd:ed:09:
5b:89:e6:81:b1:c3:ea:60:ae:a8:5f:aa:d1:ae:c8:c1:d2:64:
16:c5:c2:91:f0:37:5e:23:f2:8a:0d:71:09:f6:70:2b:14:fb:
c0:b4:c2:a5:e2:a0:0b:39:cb:08:1e:ba:d9:ae:de:6c:21:01:
ce:bd:e5:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNSdOPJ4VciMUVj1QsMPdbGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1NTg3NjQxMmQyMGZiYjZjYWI4MjM0ODE3ODJhYzQ3NzAz
YjQ0MDQwHhcNMjQxMTIyMDYwMDEyWhcNMjQxMTIzMDYwMDEyWjAzMTEwLwYDVQQD
Eyg5NGMzZjFkZDhhMDczOWUwODQ4ZmMyYmM1N2Q4OTJlMTcxOTJhZTQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+jHPA2ncIscJ/rdQ4m7tXM8N6hSZ
Ep2BTy52MVQbX9xm5vQOfXaPHAYiAFDao5TN66Z0r+QDe+1gXTCHFKP793AVKIo/
nTmNzf9wq9IOWkbAH6VVO1aVg9ddZuobaDlL4+0vXHemLH4hhuYEFJKQzWKGC5jZ
rWFWJH85RNWAQ2MdsBXA2bcZT5lh/eIynpXtSidhxJ+SE2mI2WTP6ULZqqYJ1PtS
puJ1sBOAPszs4DhPTJ7PEyNppU+YMFS6NLNpL8ZtRJV1GpHq/Q3a8LzDPLAj5kQW
T3gvHkiH2U0xCJ0KHPS7OfhuUU+H1YMe6sXmaCwNNTOeAVixWjbCsGl1FwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJTD8d2KBznghI/CvFfYkuFxkq5FMB8GA1UdIwQY
MBaAFCVYdkEtIPu2yrgjSBeCrEdwO0QEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEt
ODc2YzdmY2E0YjM0LzEvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEtODc2YzdmY2E0YjM0
LzEvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF3nxZBVO
B6YuG7lQLnXnSgSzhhEc2D1ZMoByefzSrIzF97GiHteiShEoDS6VcJVqdKYUDcxI
J7vpzeDjxsMxppDNNxGe8EeuG063tV/vYbBLKqpNEHIkelexR4rio9b0z1az/CZJ
QKHdueh3yIYzAIdWWMVf4yFdNu2YsAGHoxfa5gDSjdBm+2rLM1d2Egd6MIH521vk
8PPMfZ1aQvXCPHxSvg+EfG4uU9DEiFXiQ55iCZdBFncXLdSVMBpWFzDNOB9H3e0J
W4nmgbHD6mCuqF+q0a7IwdJkFsXCkfA3XiPyig1xCfZwKxT7wLTCpeKgCznLCB66
2a7ebCEBzr3lsQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 09:46:15 2024 by rpki-client on console-ams.rpki-client.org