Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
File: IM1XQoSmAY5bA2Neml1lj99XNPA.mft (raw, json)
Hash identifier: EvwAmAgLLlwDBzaAwrM5scfCJW4j0eugja/CM0z1828=
Subject key identifier: E3:42:E7:DD:8C:9B:32:AD:E8:92:3C:39:1E:89:8E:D6:04:C8:0F:4D
Authority key identifier: 20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
Certificate issuer: /CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Certificate serial: 019357D2378763DA02BA6E1CDD0E9DCE7052
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
Manifest number: 10B7
Signing time: Sat 23 Nov 2024 07:00:14 +0000
Manifest this update: Sat 23 Nov 2024 07:00:14 +0000
Manifest next update: Sun 24 Nov 2024 07:00:14 +0000
Files and hashes: 1: IM1XQoSmAY5bA2Neml1lj99XNPA.crl (hash: oZLb5TCgoae6QRW4oycUXrKn2w5MnwOrMzDoedXTTZI=)
2: TkYM8cMVsHOgMX_MJl6VkjL5ymk.roa (hash: 0CiddHS+AfBeJScyvv8MzIEZcSs3jVMsd8BeFgeCRZ8=)
3: gPNlbpk-rWNZZq2ZluykG7NZiuk.roa (hash: Bp0SKQNMrRch7RqtAH31ulIMY44oxzoJ1nCOyI506Hs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:37:87:63:da:02:ba:6e:1c:dd:0e:9d:ce:70:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Validity
Not Before: Nov 23 07:00:14 2024 GMT
Not After : Nov 24 07:00:14 2024 GMT
Subject: CN=e342e7dd8c9b32ade8923c391e898ed604c80f4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:a6:f9:e7:55:57:80:9a:cd:38:70:21:fa:d0:
02:fe:45:a9:ca:c6:65:c3:4f:03:d6:fc:24:59:28:
c9:36:83:15:c7:ee:08:55:b1:ba:ab:fb:16:ad:70:
cb:28:2f:22:cb:9b:7d:bb:ba:cf:50:f1:cb:c1:39:
23:dd:48:7b:71:64:c3:50:62:e4:e6:ef:25:28:1a:
47:7e:79:ec:07:76:c4:89:0a:32:96:62:6f:5e:9b:
6d:7a:35:07:2b:61:5a:9a:03:a2:a0:f7:19:ad:17:
e6:35:d4:41:97:71:5e:bb:48:44:83:60:f7:e6:e0:
ca:5b:cd:b4:2a:46:c1:c5:8d:73:50:23:8b:76:a5:
d8:6a:ca:21:70:f4:95:3d:42:88:8d:ef:29:35:86:
3c:01:39:47:1a:39:fb:22:f2:6c:72:b4:62:a4:fb:
9f:38:50:76:fd:59:1f:5c:53:fc:eb:f9:ab:be:d6:
d2:8e:3b:c9:7b:07:67:5b:2f:11:27:56:75:a5:a0:
be:d2:5d:be:0f:81:a4:df:87:46:a5:dc:6f:e5:28:
2f:80:20:83:dc:3d:ae:99:70:8a:0a:4e:69:50:aa:
58:b2:88:8d:52:58:0c:96:9f:6a:25:68:78:f2:a0:
ee:2e:34:bb:87:a1:22:04:cf:2b:2e:20:8f:11:54:
ee:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:42:E7:DD:8C:9B:32:AD:E8:92:3C:39:1E:89:8E:D6:04:C8:0F:4D
X509v3 Authority Key Identifier:
keyid:20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:2d:2d:83:84:c5:d9:93:dc:55:61:95:56:5e:6f:e6:25:49:
b7:7e:66:63:86:e3:70:de:ba:e3:8b:30:6a:49:90:ea:98:47:
6c:60:fc:8c:93:36:ae:71:03:86:d5:d8:c9:bb:c7:43:5a:f3:
b9:0c:45:25:d1:21:06:68:cc:10:c7:cf:63:d9:34:de:83:36:
d4:7f:69:5d:65:b5:45:d2:01:a6:3f:61:57:18:89:cb:e0:4b:
16:fe:a5:b5:24:56:68:79:41:ee:9f:ca:e4:ab:56:ab:9f:d2:
ef:fb:4e:9f:27:c5:42:a1:42:1f:65:e5:81:79:5e:b6:80:bd:
c4:03:25:93:48:a0:58:17:8b:4c:af:05:c4:e2:c8:44:4e:6f:
20:1a:19:55:e3:0d:be:0a:28:78:7c:d7:ce:ee:85:a3:d2:4d:
5b:9f:47:fb:43:14:ed:46:9d:bf:07:80:35:31:95:3c:6f:1f:
df:e1:3f:7d:d7:f3:5a:0b:6b:7d:69:1b:c7:4d:c2:4f:f3:a4:
1c:78:23:ed:9f:7f:ba:ae:d1:27:9b:30:bc:ec:54:68:91:ef:
09:6a:32:a7:28:4d:f4:36:d3:ef:dd:81:1f:20:de:24:b5:a5:
18:49:fe:f7:42:73:5c:f7:50:88:36:c6:74:4f:66:15:5b:d6:
46:02:b2:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNX0jeHY9oCum4c3Q6dznBSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwY2Q1NzQyODRhNjAxOGU1YjAzNjM1ZTlhNWQ2NThmZGY1
NzM0ZjAwHhcNMjQxMTIzMDcwMDE0WhcNMjQxMTI0MDcwMDE0WjAzMTEwLwYDVQQD
EyhlMzQyZTdkZDhjOWIzMmFkZTg5MjNjMzkxZTg5OGVkNjA0YzgwZjRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5ab551VXgJrNOHAh+tAC/kWpysZl
w08D1vwkWSjJNoMVx+4IVbG6q/sWrXDLKC8iy5t9u7rPUPHLwTkj3Uh7cWTDUGLk
5u8lKBpHfnnsB3bEiQoylmJvXpttejUHK2FamgOioPcZrRfmNdRBl3Feu0hEg2D3
5uDKW820KkbBxY1zUCOLdqXYasohcPSVPUKIje8pNYY8ATlHGjn7IvJscrRipPuf
OFB2/VkfXFP86/mrvtbSjjvJewdnWy8RJ1Z1paC+0l2+D4Gk34dGpdxv5SgvgCCD
3D2umXCKCk5pUKpYsoiNUlgMlp9qJWh48qDuLjS7h6EiBM8rLiCPEVTuCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFONC592MmzKt6JI8OR6JjtYEyA9NMB8GA1UdIwQY
MBaAFCDNV0KEpgGOWwNjXppdZY/fVzTwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy9jMjE2Y2EtYWE5ZC00ZDIxLTg0MWUt
NDliNTY4N2ZlZTZkLzEvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy9jMjE2Y2EtYWE5ZC00ZDIxLTg0MWUtNDliNTY4N2ZlZTZk
LzEvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAui0tg4TF
2ZPcVWGVVl5v5iVJt35mY4bjcN6644swakmQ6phHbGD8jJM2rnEDhtXYybvHQ1rz
uQxFJdEhBmjMEMfPY9k03oM21H9pXWW1RdIBpj9hVxiJy+BLFv6ltSRWaHlB7p/K
5KtWq5/S7/tOnyfFQqFCH2XlgXletoC9xAMlk0igWBeLTK8FxOLIRE5vIBoZVeMN
vgooeHzXzu6Fo9JNW59H+0MU7UadvweANTGVPG8f3+E/fdfzWgtrfWkbx03CT/Ok
HHgj7Z9/uq7RJ5swvOxUaJHvCWoypyhN9DbT792BHyDeJLWlGEn+90JzXPdQiDbG
dE9mFVvWRgKyaQ==
-----END CERTIFICATE-----
Generated at Sat Nov 23 09:55:46 2024 by rpki-client on console-fra.rpki-client.org