Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.mft
File: Q34DDURmGkwgHroD3kUrBLjn2eU.mft (raw, json)
Hash identifier: 4B3jv1b/BnQCH2AF9RTXF/lHHBhrsbXf/Jhs2dxHftI=
Subject key identifier: F4:7A:CD:29:AC:48:9A:69:75:E3:38:FD:1B:C2:F9:AF:A0:8A:AD:99
Authority key identifier: 43:7E:03:0D:44:66:1A:4C:20:1E:BA:03:DE:45:2B:04:B8:E7:D9:E5
Certificate issuer: /CN=437e030d44661a4c201eba03de452b04b8e7d9e5
Certificate serial: 01935651BAADF62A4D364CFD33FBDB613295
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q34DDURmGkwgHroD3kUrBLjn2eU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.mft
Manifest number: 12B6
Signing time: Sat 23 Nov 2024 00:00:16 +0000
Manifest this update: Sat 23 Nov 2024 00:00:16 +0000
Manifest next update: Sun 24 Nov 2024 00:00:16 +0000
Files and hashes: 1: KQJn8KIT8Z5-atZt3Cnh0W5Bos8.roa (hash: iIMdSyu+bdpcoDqu5BB0segcOdsG8c9S9fTCO9BNRxE=)
2: Q34DDURmGkwgHroD3kUrBLjn2eU.crl (hash: ceMKOvwuVJ3MmVgaboCv1ZikcJFFXp0GEXEVsF0pDw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q34DDURmGkwgHroD3kUrBLjn2eU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:51:ba:ad:f6:2a:4d:36:4c:fd:33:fb:db:61:32:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=437e030d44661a4c201eba03de452b04b8e7d9e5
Validity
Not Before: Nov 23 00:00:16 2024 GMT
Not After : Nov 24 00:00:16 2024 GMT
Subject: CN=f47acd29ac489a6975e338fd1bc2f9afa08aad99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:3b:42:cb:d1:b3:8a:15:26:d6:0c:30:37:11:
f2:df:0c:46:ed:d7:0d:a2:9b:57:ef:5a:ac:be:b2:
3d:2d:92:f1:40:d6:3e:94:7a:41:9f:b0:aa:03:f1:
e3:2c:2c:ad:74:2c:2f:53:62:39:d2:fc:bb:f6:eb:
cd:e9:dc:7d:04:87:09:1c:36:f5:16:e4:23:fb:b6:
59:5b:d5:ca:2d:01:e6:4e:31:8a:9c:42:b9:61:1a:
42:6a:a4:33:cb:70:56:0d:1a:e9:1a:f7:7d:13:27:
7a:3e:3f:44:88:ec:38:36:3c:60:cd:73:66:5f:53:
f7:3e:6b:38:8f:20:7c:8f:4d:d6:19:31:33:f2:42:
74:12:61:c0:2b:c5:de:52:b9:53:c1:ad:64:ac:85:
67:d6:ed:62:45:4e:b7:35:bd:a5:35:a6:45:d5:9c:
1c:45:96:d5:dd:50:5e:7b:2c:2c:e4:20:7f:f3:58:
03:19:7f:c8:d2:22:a5:62:a8:fd:4d:d1:86:e8:0e:
ba:6b:7c:a2:95:1c:40:0b:67:69:ca:15:93:c5:5a:
46:e3:0b:db:92:83:33:9b:39:6d:9e:72:70:02:12:
b9:e1:17:64:2d:72:a2:87:40:0f:23:b2:ea:5a:1b:
6f:33:fe:c4:8e:22:07:36:17:bb:b1:bb:49:63:b6:
57:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:7A:CD:29:AC:48:9A:69:75:E3:38:FD:1B:C2:F9:AF:A0:8A:AD:99
X509v3 Authority Key Identifier:
keyid:43:7E:03:0D:44:66:1A:4C:20:1E:BA:03:DE:45:2B:04:B8:E7:D9:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q34DDURmGkwgHroD3kUrBLjn2eU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:5b:e1:0b:f3:0e:c3:09:3e:27:fa:b6:9a:7b:32:41:81:ff:
bd:bd:b3:d1:09:0c:27:e9:eb:e5:b8:00:9b:37:5a:55:20:33:
e9:6f:82:80:45:9c:ea:8e:ef:9f:3a:b8:85:84:48:81:e5:00:
5f:3e:d6:1f:9d:7c:67:ce:60:69:d0:e5:0b:d0:1b:8b:7a:1a:
c4:cb:67:4f:f5:03:15:e9:81:15:72:01:b5:d7:cb:74:04:01:
d5:69:32:21:75:ad:7a:ce:5f:47:08:4e:b8:53:5a:f6:21:1d:
00:7d:3e:5b:a1:11:49:d4:95:4b:f0:6a:23:74:36:6b:fa:fc:
c4:d0:6f:08:98:d4:f2:1d:42:cd:f2:3c:fb:83:7b:0d:c1:a1:
7c:f3:35:c9:cb:b5:64:ad:62:98:9c:d7:45:c2:00:21:51:ef:
e8:fb:89:15:5a:83:50:9c:b3:98:1d:cc:b3:96:a0:6d:23:48:
0c:10:e3:69:d4:ad:f8:91:cc:7a:e2:da:44:84:8a:8c:7d:40:
97:34:d1:d2:12:a6:f1:88:b6:9d:00:10:77:53:a5:25:fb:f9:
1f:2d:f5:24:3f:23:a5:63:54:a6:ce:a6:0e:91:87:b4:3d:f9:
72:f4:96:ab:33:91:b3:f9:fe:81:d6:40:66:10:b6:ca:ea:00:
af:a9:a8:1f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNWUbqt9ipNNkz9M/vbYTKVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzN2UwMzBkNDQ2NjFhNGMyMDFlYmEwM2RlNDUyYjA0Yjhl
N2Q5ZTUwHhcNMjQxMTIzMDAwMDE2WhcNMjQxMTI0MDAwMDE2WjAzMTEwLwYDVQQD
EyhmNDdhY2QyOWFjNDg5YTY5NzVlMzM4ZmQxYmMyZjlhZmEwOGFhZDk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjjtCy9GzihUm1gwwNxHy3wxG7dcN
optX71qsvrI9LZLxQNY+lHpBn7CqA/HjLCytdCwvU2I50vy79uvN6dx9BIcJHDb1
FuQj+7ZZW9XKLQHmTjGKnEK5YRpCaqQzy3BWDRrpGvd9Eyd6Pj9EiOw4NjxgzXNm
X1P3Pms4jyB8j03WGTEz8kJ0EmHAK8XeUrlTwa1krIVn1u1iRU63Nb2lNaZF1Zwc
RZbV3VBeeyws5CB/81gDGX/I0iKlYqj9TdGG6A66a3yilRxAC2dpyhWTxVpG4wvb
koMzmzltnnJwAhK54RdkLXKih0API7LqWhtvM/7EjiIHNhe7sbtJY7ZXnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPR6zSmsSJppdeM4/RvC+a+giq2ZMB8GA1UdIwQY
MBaAFEN+Aw1EZhpMIB66A95FKwS459nlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTM0RERVUm1Ha3dnSHJvRDNrVXJCTGpuMmVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS80YmUyNTktYmU5Ni00MGZhLTg4MGUt
YmJkMjEwNmYzMzcwLzEvUTM0RERVUm1Ha3dnSHJvRDNrVXJCTGpuMmVVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS80YmUyNTktYmU5Ni00MGZhLTg4MGUtYmJkMjEwNmYzMzcw
LzEvUTM0RERVUm1Ha3dnSHJvRDNrVXJCTGpuMmVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD1vhC/MO
wwk+J/q2mnsyQYH/vb2z0QkMJ+nr5bgAmzdaVSAz6W+CgEWc6o7vnzq4hYRIgeUA
Xz7WH518Z85gadDlC9Abi3oaxMtnT/UDFemBFXIBtdfLdAQB1WkyIXWtes5fRwhO
uFNa9iEdAH0+W6ERSdSVS/BqI3Q2a/r8xNBvCJjU8h1CzfI8+4N7DcGhfPM1ycu1
ZK1imJzXRcIAIVHv6PuJFVqDUJyzmB3Ms5agbSNIDBDjadSt+JHMeuLaRISKjH1A
lzTR0hKm8Yi2nQAQd1OlJfv5Hy31JD8jpWNUps6mDpGHtD35cvSWqzORs/n+gdZA
ZhC2yuoAr6moHw==
-----END CERTIFICATE-----
Generated at Sat Nov 23 02:01:42 2024 by rpki-client on console-ams.rpki-client.org