Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
File: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft (raw, json)
Hash identifier: jPW1fhXwvfiR7yK9dn/8EdEOOGk0jzBFGhPvRYsknUg=
Subject key identifier: FF:29:D4:0C:12:05:50:F0:24:F1:A8:BC:2A:4A:98:75:21:A5:AA:B5
Authority key identifier: 03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E
Certificate issuer: /CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e
Certificate serial: 0193576485272E9779E5AE3531877D5F0606
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
Manifest number: 0301
Signing time: Sat 23 Nov 2024 05:00:25 +0000
Manifest this update: Sat 23 Nov 2024 05:00:25 +0000
Manifest next update: Sun 24 Nov 2024 05:00:25 +0000
Files and hashes: 1: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl (hash: yjRArTFo4XzXSLpXjYr9ESqq/jMFsL4YPp/ipEl7GY8=)
2: RFFndJaAsheyX40fDDXhXYd6y6g.roa (hash: i84XH17q/j96gcob+vFRMtu00NEFwhm7XnWZlowNKZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:64:85:27:2e:97:79:e5:ae:35:31:87:7d:5f:06:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e
Validity
Not Before: Nov 23 05:00:25 2024 GMT
Not After : Nov 24 05:00:25 2024 GMT
Subject: CN=ff29d40c120550f024f1a8bc2a4a987521a5aab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:d6:74:ce:eb:ad:6c:3c:0e:a5:c5:d1:db:bb:
3f:f5:42:be:27:c2:57:ab:16:86:20:87:12:6f:e0:
d5:26:9a:53:6a:02:c3:ae:80:c1:21:83:0e:4b:33:
3d:47:40:e9:cf:1a:c3:5d:eb:f9:7b:09:6b:88:05:
25:28:cd:00:50:e1:9e:ba:16:6d:c5:e8:be:c8:1f:
ce:2f:66:fe:3b:8d:28:1a:1a:ab:7a:4d:db:7e:bb:
29:96:b8:02:d2:b1:28:d5:2f:47:63:f4:05:16:a8:
ec:d8:a5:b0:84:dc:e5:99:34:9f:d9:db:dd:94:ad:
6f:2c:38:b9:19:a8:3a:13:1a:7f:f8:ca:c4:56:cf:
b0:7c:dd:25:8c:77:9a:c4:b1:e6:62:e5:2c:f3:52:
37:38:6c:ed:7c:e0:96:f0:82:57:ff:94:4b:63:a0:
c1:79:7f:bd:f7:68:ea:1d:8e:72:f1:4a:54:b5:74:
f6:96:53:29:05:3e:d0:71:ce:d9:a5:21:2e:23:68:
e3:c4:8c:2f:81:a8:3f:87:46:bc:43:a2:d0:ba:3b:
6a:37:ba:84:87:9f:45:16:cb:dd:ee:4c:06:76:7d:
d7:c4:76:c5:c0:25:f4:b6:e1:60:a8:c3:62:52:e1:
2f:20:4c:fe:57:6a:9a:11:bb:c1:ac:72:95:c4:3b:
6d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:29:D4:0C:12:05:50:F0:24:F1:A8:BC:2A:4A:98:75:21:A5:AA:B5
X509v3 Authority Key Identifier:
keyid:03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:e9:e2:31:30:a4:f1:6a:4b:0c:28:79:85:84:ab:0d:78:a8:
d8:87:22:69:8e:ce:ea:2d:96:07:fb:b7:e9:0b:f6:cb:6c:3b:
fa:84:5e:66:1b:76:a6:19:eb:e9:22:99:8a:d0:02:93:64:78:
5c:28:7f:d1:83:b7:b8:43:8a:5a:06:6e:73:c6:c8:3a:52:b4:
2e:34:47:e5:e7:36:9c:49:fa:40:62:15:05:60:f8:ba:8e:10:
20:b5:bf:7b:c9:e2:d4:ec:7b:c2:46:4a:c8:f3:bd:98:35:99:
52:21:c8:12:b8:cb:27:dd:ff:cd:f0:22:0f:f2:12:09:8b:ce:
8b:1e:18:35:06:5c:c4:0a:fb:c9:30:6b:f2:d5:05:24:38:db:
3d:fc:9d:6e:95:a6:96:70:51:87:f9:d4:50:ec:0a:98:6a:15:
1b:02:87:55:2e:dc:f4:db:90:7a:4d:c7:1a:34:12:c2:12:ab:
55:ad:d6:b1:ef:1b:fb:bc:6b:c0:a4:6a:9a:c3:8f:bb:3e:36:
21:d9:6b:75:11:c3:20:d2:a0:38:ca:8d:67:8b:2c:8c:f8:b4:
3b:e2:04:37:c1:bb:b1:8f:f7:c9:2a:86:06:c3:2e:8e:3b:0a:
ca:e6:47:52:1e:84:e5:15:92:35:f7:3f:5c:ba:05:a0:fe:a9:
4f:3e:06:5c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNXZIUnLpd55a41MYd9XwYGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzNTg0NWY4NmNiYzNjZmE5ZTBlNzk4N2EwMzgyZDVkMGRk
N2NlM2UwHhcNMjQxMTIzMDUwMDI1WhcNMjQxMTI0MDUwMDI1WjAzMTEwLwYDVQQD
EyhmZjI5ZDQwYzEyMDU1MGYwMjRmMWE4YmMyYTRhOTg3NTIxYTVhYWI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8NZ0zuutbDwOpcXR27s/9UK+J8JX
qxaGIIcSb+DVJppTagLDroDBIYMOSzM9R0DpzxrDXev5ewlriAUlKM0AUOGeuhZt
xei+yB/OL2b+O40oGhqrek3bfrsplrgC0rEo1S9HY/QFFqjs2KWwhNzlmTSf2dvd
lK1vLDi5Gag6Exp/+MrEVs+wfN0ljHeaxLHmYuUs81I3OGztfOCW8IJX/5RLY6DB
eX+992jqHY5y8UpUtXT2llMpBT7Qcc7ZpSEuI2jjxIwvgag/h0a8Q6LQujtqN7qE
h59FFsvd7kwGdn3XxHbFwCX0tuFgqMNiUuEvIEz+V2qaEbvBrHKVxDttwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP8p1AwSBVDwJPGovCpKmHUhpaq1MB8GA1UdIwQY
MBaAFANYRfhsvDz6ng55h6A4LV0N184+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQTFoRi1HeThQUHFlRG5tSG9EZ3RYUTNYemo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9kMjc5ZDMtOTQ3ZS00NWM3LWE4OTAt
M2I4NGQ3OWFiZGFmLzEvQTFoRi1HeThQUHFlRG5tSG9EZ3RYUTNYemo0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi9kMjc5ZDMtOTQ3ZS00NWM3LWE4OTAtM2I4NGQ3OWFiZGFm
LzEvQTFoRi1HeThQUHFlRG5tSG9EZ3RYUTNYemo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbuniMTCk
8WpLDCh5hYSrDXio2IciaY7O6i2WB/u36Qv2y2w7+oReZht2phnr6SKZitACk2R4
XCh/0YO3uEOKWgZuc8bIOlK0LjRH5ec2nEn6QGIVBWD4uo4QILW/e8ni1Ox7wkZK
yPO9mDWZUiHIErjLJ93/zfAiD/ISCYvOix4YNQZcxAr7yTBr8tUFJDjbPfydbpWm
lnBRh/nUUOwKmGoVGwKHVS7c9NuQek3HGjQSwhKrVa3Wse8b+7xrwKRqmsOPuz42
IdlrdRHDINKgOMqNZ4ssjPi0O+IEN8G7sY/3ySqGBsMujjsKyuZHUh6E5RWSNfc/
XLoFoP6pTz4GXA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 09:54:49 2024 by rpki-client on console-fra.rpki-client.org