Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/pxErNcd6Sxb761YSHJdNWdVmeEs.mft
File: pxErNcd6Sxb761YSHJdNWdVmeEs.mft (raw, json)
Hash identifier: Yow5MlS33C8snAeqx0sIU36q9v4CfAT5nefUYox8D9k=
Subject key identifier: 68:75:28:85:F8:C1:E5:B0:81:D6:35:48:8C:AF:57:0C:02:F1:EB:0E
Authority key identifier: A7:11:2B:35:C7:7A:4B:16:FB:EB:56:12:1C:97:4D:59:D5:66:78:4B
Certificate issuer: /CN=a7112b35c77a4b16fbeb56121c974d59d566784b
Certificate serial: 0193568933EB938C4E73D839ECA01727007E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxErNcd6Sxb761YSHJdNWdVmeEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/pxErNcd6Sxb761YSHJdNWdVmeEs.mft
Manifest number: 136F
Signing time: Sat 23 Nov 2024 01:00:52 +0000
Manifest this update: Sat 23 Nov 2024 01:00:52 +0000
Manifest next update: Sun 24 Nov 2024 01:00:52 +0000
Files and hashes: 1: 2KOQHR1FouB_AyRbe0iu2p9HnSg.roa (hash: dJxjPiBUbMzCr1hc6/GlK6JLn9qB7fKtmd7xOqciYIY=)
2: pxErNcd6Sxb761YSHJdNWdVmeEs.crl (hash: 0FDdOSfuwIKzsuwe69mH/TfLjl4U5DYIVimZ/pxWpEw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/pxErNcd6Sxb761YSHJdNWdVmeEs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/pxErNcd6Sxb761YSHJdNWdVmeEs.mft
rsync://rpki.ripe.net/repository/DEFAULT/pxErNcd6Sxb761YSHJdNWdVmeEs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:33:eb:93:8c:4e:73:d8:39:ec:a0:17:27:00:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7112b35c77a4b16fbeb56121c974d59d566784b
Validity
Not Before: Nov 23 01:00:52 2024 GMT
Not After : Nov 24 01:00:52 2024 GMT
Subject: CN=68752885f8c1e5b081d635488caf570c02f1eb0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:8b:e3:e0:ea:dd:41:84:49:70:07:e7:bb:4c:
d6:e1:1f:34:87:a7:2b:0c:09:a5:96:1e:f2:b8:91:
64:e7:8d:51:ec:c4:42:e9:d1:1f:8e:3c:55:7b:34:
8e:3c:7c:88:60:8f:c9:28:3a:3d:83:f9:c3:2a:a7:
26:0e:3a:26:a5:c3:76:de:00:e1:33:2e:92:c7:1a:
c8:ea:ee:0b:2e:cf:d1:7b:57:73:a5:87:69:df:b2:
45:d6:d2:d0:14:ce:f5:37:7e:27:7f:37:a8:48:c6:
df:3e:e3:31:bf:79:3a:c2:6c:7d:b3:c6:b6:28:aa:
3b:5c:fc:ac:8f:35:ee:42:b0:57:1b:6e:d2:e0:e9:
89:71:60:8e:e6:8c:ea:24:b5:50:bc:b4:4b:b7:3f:
15:5d:45:9c:e3:2b:d0:ff:22:4f:8b:94:c3:37:49:
8d:e7:18:45:43:64:37:7f:db:04:96:00:b2:73:ca:
29:6b:0f:cf:ef:3c:6f:e9:98:ee:86:c7:e4:d5:94:
09:95:cf:28:e2:32:cb:5a:33:e7:9d:94:5a:62:32:
a2:e3:11:3a:36:63:4a:cc:f9:92:c4:b6:e8:94:33:
4c:36:57:8c:93:07:83:3f:48:d0:70:69:6e:ec:80:
78:ee:0b:25:34:ef:6f:7d:12:f9:47:28:14:43:b0:
e7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:75:28:85:F8:C1:E5:B0:81:D6:35:48:8C:AF:57:0C:02:F1:EB:0E
X509v3 Authority Key Identifier:
keyid:A7:11:2B:35:C7:7A:4B:16:FB:EB:56:12:1C:97:4D:59:D5:66:78:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxErNcd6Sxb761YSHJdNWdVmeEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/pxErNcd6Sxb761YSHJdNWdVmeEs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/pxErNcd6Sxb761YSHJdNWdVmeEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:3a:e6:76:81:f5:a4:02:cd:7b:7e:b2:e1:29:ef:e7:5d:19:
0e:dc:86:b2:6a:78:a1:f1:66:d9:90:04:c6:3f:df:18:dc:5f:
9b:24:57:d4:40:75:50:35:ed:39:2f:a2:a7:f3:e0:54:f2:0d:
b0:36:e3:18:25:28:4a:16:54:2b:e3:ec:b7:b9:54:fc:03:f8:
80:aa:af:10:ce:1c:b7:5e:cc:f3:9f:13:4f:4e:ea:10:0e:36:
f7:82:97:e8:7a:76:b3:33:0f:f0:47:58:6e:09:ed:b7:8c:8a:
3c:a6:e5:e1:e5:ad:82:02:08:80:53:03:54:97:2d:47:97:7e:
38:a2:a1:d5:c3:ee:ee:11:2d:96:89:7c:58:66:c6:21:7f:21:
97:d3:35:b9:0e:0b:6d:19:29:73:cd:81:4d:8b:6f:b6:08:86:
d0:98:be:2a:b3:0c:92:57:79:0e:b4:3b:0a:be:b3:65:42:6b:
2c:ad:b2:89:e6:dc:d1:44:bf:f2:e0:9d:a6:25:e3:48:d8:b2:
51:0a:1d:fa:47:e4:3f:37:1b:0c:a3:8c:b8:18:c6:a5:d2:c7:
5a:1c:ce:a2:5c:a9:15:10:da:31:40:a7:b0:12:fb:19:62:c3:
f1:99:72:74:64:1a:9a:a9:75:7d:46:3a:81:a7:f8:71:65:74:
25:9d:f4:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNWiTPrk4xOc9g57KAXJwB+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3MTEyYjM1Yzc3YTRiMTZmYmViNTYxMjFjOTc0ZDU5ZDU2
Njc4NGIwHhcNMjQxMTIzMDEwMDUyWhcNMjQxMTI0MDEwMDUyWjAzMTEwLwYDVQQD
Eyg2ODc1Mjg4NWY4YzFlNWIwODFkNjM1NDg4Y2FmNTcwYzAyZjFlYjBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnovj4OrdQYRJcAfnu0zW4R80h6cr
DAmllh7yuJFk541R7MRC6dEfjjxVezSOPHyIYI/JKDo9g/nDKqcmDjompcN23gDh
My6SxxrI6u4LLs/Re1dzpYdp37JF1tLQFM71N34nfzeoSMbfPuMxv3k6wmx9s8a2
KKo7XPysjzXuQrBXG27S4OmJcWCO5ozqJLVQvLRLtz8VXUWc4yvQ/yJPi5TDN0mN
5xhFQ2Q3f9sElgCyc8opaw/P7zxv6Zjuhsfk1ZQJlc8o4jLLWjPnnZRaYjKi4xE6
NmNKzPmSxLbolDNMNleMkweDP0jQcGlu7IB47gslNO9vfRL5RygUQ7DniwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGh1KIX4weWwgdY1SIyvVwwC8esOMB8GA1UdIwQY
MBaAFKcRKzXHeksW++tWEhyXTVnVZnhLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcHhFck5jZDZTeGI3NjFZU0hKZE5XZFZtZUVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi83MWNiZTUtNGEyOS00NTY3LWExZmEt
Nzg4ODQyODIyNWI0LzEvcHhFck5jZDZTeGI3NjFZU0hKZE5XZFZtZUVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi83MWNiZTUtNGEyOS00NTY3LWExZmEtNzg4ODQyODIyNWI0
LzEvcHhFck5jZDZTeGI3NjFZU0hKZE5XZFZtZUVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUDrmdoH1
pALNe36y4Snv510ZDtyGsmp4ofFm2ZAExj/fGNxfmyRX1EB1UDXtOS+ip/PgVPIN
sDbjGCUoShZUK+Pst7lU/AP4gKqvEM4ct17M858TT07qEA4294KX6Hp2szMP8EdY
bgntt4yKPKbl4eWtggIIgFMDVJctR5d+OKKh1cPu7hEtlol8WGbGIX8hl9M1uQ4L
bRkpc82BTYtvtgiG0Ji+KrMMkld5DrQ7Cr6zZUJrLK2yiebc0US/8uCdpiXjSNiy
UQod+kfkPzcbDKOMuBjGpdLHWhzOolypFRDaMUCnsBL7GWLD8ZlydGQamql1fUY6
gaf4cWV0JZ30Ow==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:37:18 2024 by rpki-client on console-ams.rpki-client.org