Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.mft
File: AonuzqJ5QTJX2JCMJVaKvrivhnc.mft (raw, json)
Hash identifier: 0H9U1I0kIOiwe5K53Glg+Qn6BCzSgRKNaXsw9dyBiYU=
Subject key identifier: 1E:5C:A5:69:1E:83:62:DC:2D:27:F4:09:DE:5D:1D:B6:F3:00:7F:B0
Authority key identifier: 02:89:EE:CE:A2:79:41:32:57:D8:90:8C:25:56:8A:BE:B8:AF:86:77
Certificate issuer: /CN=0289eecea279413257d8908c25568abeb8af8677
Certificate serial: 01936A46AF9948C608CC867E83239C058508
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AonuzqJ5QTJX2JCMJVaKvrivhnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.mft
Manifest number: 08F2
Signing time: Tue 26 Nov 2024 21:00:37 +0000
Manifest this update: Tue 26 Nov 2024 21:00:37 +0000
Manifest next update: Wed 27 Nov 2024 21:00:37 +0000
Files and hashes: 1: AonuzqJ5QTJX2JCMJVaKvrivhnc.crl (hash: XfRzcE0jF1lvVjjW1pwworUUQfwhZNC1F5GJvoqX5xs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.mft
rsync://rpki.ripe.net/repository/DEFAULT/AonuzqJ5QTJX2JCMJVaKvrivhnc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:46:af:99:48:c6:08:cc:86:7e:83:23:9c:05:85:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0289eecea279413257d8908c25568abeb8af8677
Validity
Not Before: Nov 26 21:00:37 2024 GMT
Not After : Nov 27 21:00:37 2024 GMT
Subject: CN=1e5ca5691e8362dc2d27f409de5d1db6f3007fb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:40:e3:1e:bb:71:9c:d1:cc:97:b8:d6:bb:0c:
62:59:1b:81:81:66:90:df:69:8a:6d:f1:48:3b:80:
ca:2d:89:32:f5:4e:e8:1b:40:97:d3:9a:35:dc:3e:
dc:d5:35:d6:bc:9e:96:cc:86:b4:47:55:93:b0:12:
ba:d4:2e:5d:c3:5b:2d:c1:58:27:fa:f8:f1:10:d6:
76:f4:28:3d:e1:8a:02:0c:b8:ae:6b:c3:b7:24:89:
1f:20:cb:63:5f:8b:73:17:f7:43:ba:8f:97:f3:2c:
64:5e:9b:82:f1:6e:a8:b4:66:9c:00:33:98:e1:ef:
b3:be:de:74:58:c8:28:66:ab:e9:c0:94:67:e2:76:
d2:0c:4b:c6:b2:20:62:4a:b1:17:15:75:e4:7f:0f:
4e:24:fc:64:9d:c8:a9:da:d4:32:1d:ea:0c:f7:e3:
a9:fb:22:85:7c:d1:d1:0d:56:c9:12:02:13:88:9c:
9e:56:d8:0d:fc:61:99:41:52:2f:91:ec:a5:d4:9f:
50:82:f3:a5:de:2f:6c:ca:2d:4b:e9:fa:3f:72:1b:
30:46:5d:21:b6:65:e5:8d:c4:18:f9:43:a9:c9:79:
ba:85:26:33:0c:2a:d4:2d:af:4f:59:70:4d:46:d3:
1c:1f:c3:31:e1:4a:e0:74:c7:d4:02:51:d6:e8:0f:
a1:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:5C:A5:69:1E:83:62:DC:2D:27:F4:09:DE:5D:1D:B6:F3:00:7F:B0
X509v3 Authority Key Identifier:
keyid:02:89:EE:CE:A2:79:41:32:57:D8:90:8C:25:56:8A:BE:B8:AF:86:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AonuzqJ5QTJX2JCMJVaKvrivhnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:0e:66:0d:59:49:1c:7d:eb:9c:6e:8a:45:bb:97:6a:ca:bb:
57:97:c0:bb:49:90:28:fe:1a:60:02:52:de:1b:ac:20:b5:e9:
69:33:c9:36:54:0c:c2:82:ed:90:cb:91:81:09:8b:83:04:8e:
c5:40:ee:9c:ec:e6:64:26:6d:4f:64:13:39:2c:16:91:63:96:
74:44:80:af:53:ba:30:5c:1d:f8:1c:24:35:4d:df:8b:50:b2:
02:91:6d:41:47:89:67:a8:10:89:80:d0:c0:f0:48:dd:a4:c8:
63:7d:99:ee:2a:1c:83:13:33:81:77:a6:9e:18:1b:34:91:e4:
4a:85:d9:d2:09:6e:56:cd:f3:28:a0:bf:c5:b4:88:fc:35:3d:
b8:a0:78:69:9c:ee:b9:9d:f8:e7:14:5d:46:1e:c2:df:73:e4:
a7:6b:60:a1:0d:63:17:93:81:3a:18:a1:b7:9a:e3:22:bc:90:
2d:6d:94:25:bc:08:97:5b:5d:8d:8d:7f:d3:a1:ae:c5:db:ea:
49:8d:92:2f:3e:41:09:b5:f8:b6:be:2f:07:3d:cd:8b:40:65:
2a:e8:40:52:1f:9a:db:d8:3f:49:89:b8:36:c9:08:51:4c:c6:
d8:65:ff:a9:03:9f:09:71:01:46:f1:f6:aa:b5:39:19:bf:78:
a3:60:9d:63
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNqRq+ZSMYIzIZ+gyOcBYUIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyODllZWNlYTI3OTQxMzI1N2Q4OTA4YzI1NTY4YWJlYjhh
Zjg2NzcwHhcNMjQxMTI2MjEwMDM3WhcNMjQxMTI3MjEwMDM3WjAzMTEwLwYDVQQD
EygxZTVjYTU2OTFlODM2MmRjMmQyN2Y0MDlkZTVkMWRiNmYzMDA3ZmIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtEDjHrtxnNHMl7jWuwxiWRuBgWaQ
32mKbfFIO4DKLYky9U7oG0CX05o13D7c1TXWvJ6WzIa0R1WTsBK61C5dw1stwVgn
+vjxENZ29Cg94YoCDLiua8O3JIkfIMtjX4tzF/dDuo+X8yxkXpuC8W6otGacADOY
4e+zvt50WMgoZqvpwJRn4nbSDEvGsiBiSrEXFXXkfw9OJPxkncip2tQyHeoM9+Op
+yKFfNHRDVbJEgITiJyeVtgN/GGZQVIvkeyl1J9QgvOl3i9syi1L6fo/chswRl0h
tmXljcQY+UOpyXm6hSYzDCrULa9PWXBNRtMcH8Mx4UrgdMfUAlHW6A+hPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB5cpWkeg2LcLSf0Cd5dHbbzAH+wMB8GA1UdIwQY
MBaAFAKJ7s6ieUEyV9iQjCVWir64r4Z3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQW9udXpxSjVRVEpYMkpDTUpWYUt2cml2aG5jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8yMmI4OGItMWZiZi00MGY0LWFkYTUt
MjcwOTI5ZDA1MTkyLzEvQW9udXpxSjVRVEpYMkpDTUpWYUt2cml2aG5jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi8yMmI4OGItMWZiZi00MGY0LWFkYTUtMjcwOTI5ZDA1MTky
LzEvQW9udXpxSjVRVEpYMkpDTUpWYUt2cml2aG5jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqw5mDVlJ
HH3rnG6KRbuXasq7V5fAu0mQKP4aYAJS3husILXpaTPJNlQMwoLtkMuRgQmLgwSO
xUDunOzmZCZtT2QTOSwWkWOWdESAr1O6MFwd+BwkNU3fi1CyApFtQUeJZ6gQiYDQ
wPBI3aTIY32Z7iocgxMzgXemnhgbNJHkSoXZ0gluVs3zKKC/xbSI/DU9uKB4aZzu
uZ345xRdRh7C33Pkp2tgoQ1jF5OBOhiht5rjIryQLW2UJbwIl1tdjY1/06Guxdvq
SY2SLz5BCbX4tr4vBz3Ni0BlKuhAUh+a29g/SYm4NskIUUzG2GX/qQOfCXEBRvH2
qrU5Gb94o2CdYw==
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:39:38 2024 by rpki-client on console-fra.rpki-client.org