Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
File: kdDHjDCaPpncmrdPLNwEhIWedTA.mft (raw, json)
Hash identifier: pGNV85LqYesNhyGjPp2qazl6EPxfM+D8A219W9tF188=
Subject key identifier: BF:A3:FD:CF:F0:B8:7C:2D:53:86:A8:79:21:5C:DD:8D:AA:66:11:BC
Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
Certificate issuer: /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Certificate serial: 019352ADD09618FDDD4B3C55FB0AB429B96B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
Manifest number: 0E7F
Signing time: Fri 22 Nov 2024 07:02:22 +0000
Manifest this update: Fri 22 Nov 2024 07:02:22 +0000
Manifest next update: Sat 23 Nov 2024 07:02:22 +0000
Files and hashes: 1: 1-1TG_qMClEODo2IIWP7WsY7zmNo.roa (hash: eeqSjFVaM5j5+q3SAvWxUmpuyRTIcPImAc2lDmJ+HTk=)
2: 1-HnbxmK99DUTDW7m7lpCJFydmBk.roa (hash: GAUj/w+5iJrWywATYOYn1Bo5eeBQqwqfKLyFdVj07+g=)
3: GAUVIPuqDmzKJxNF61BA98340sk.roa (hash: F7Ra1dGpTnjJshcDtXkrQufDwmlnGOLsmjc8/zeTHA0=)
4: Pe6YJJEIy8ZfW3AK-ftu0bKGcfI.roa (hash: 5j+khzBGSYTh6EnVA+e9d9MGL++WgtAXjnmYJJ7NTd4=)
5: b44suaJ8-uqdIRYYeejhGSCuhVY.roa (hash: E9u1aKCheO/8KW36OuY4NwTEOH7DDZzd+J9AFv0wCMI=)
6: cLUJuuwo98F9cCSHwxMmlNgy1EI.roa (hash: mmDXwbg2CJCgyOBYHe76QQfGOqQ3kQ37CJocjzyhcz0=)
7: kdDHjDCaPpncmrdPLNwEhIWedTA.crl (hash: 4ovkFO+MQisTrQWB0HSNJrsZfY48zzQz28xUtyz+l8Y=)
8: mIs7FuKL49YrIo_B4SQOcdwwOMo.roa (hash: frGELVk/UIsK1uH5rYXkaN7206ZpXpE65WkkZFpYCTo=)
9: zsjHCQuhauPJ_uWjp_YUfznSzkw.roa (hash: G56vF2K5K/chItjqnrVCg78CgMpW6Z2K3wKhXJWbpS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:ad:d0:96:18:fd:dd:4b:3c:55:fb:0a:b4:29:b9:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Validity
Not Before: Nov 22 07:02:22 2024 GMT
Not After : Nov 23 07:02:22 2024 GMT
Subject: CN=bfa3fdcff0b87c2d5386a879215cdd8daa6611bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ac:93:54:a8:46:d4:a2:41:71:40:8b:87:27:
f4:ed:b5:a3:96:1b:d6:a8:ec:d5:5d:d7:ab:16:bc:
36:92:21:c7:96:ce:1d:e1:e2:99:a5:6e:ed:66:65:
ec:e1:4f:73:89:c8:d1:85:42:6c:4f:49:d4:d8:95:
50:98:e5:e1:08:a0:d5:22:1a:78:ed:6c:bb:7b:9b:
04:97:eb:31:a2:56:17:85:c7:cb:3e:ab:1a:60:58:
21:50:72:5b:c6:4c:77:bb:9e:18:05:3f:4a:37:b4:
95:60:9b:d2:ff:ef:58:dc:46:79:e1:88:f8:17:8a:
a9:50:d5:ec:a3:3f:86:c1:72:06:3c:b6:6e:06:4b:
73:20:74:0f:81:0c:79:d1:9a:da:1a:c1:4f:9c:5e:
fb:4c:e2:1b:14:a2:2a:72:0c:17:4d:72:cb:b6:17:
65:19:25:4a:22:4b:c5:5a:8b:db:49:50:29:20:62:
d7:7b:9a:fe:c6:57:69:df:c6:65:8d:5d:9c:57:35:
75:e3:7d:05:6e:7d:ad:5c:d1:27:d2:ca:55:05:b5:
67:65:f7:97:59:58:62:82:3f:15:e9:0a:dd:9f:68:
84:39:c8:63:fd:b0:68:68:99:35:5c:17:28:6c:38:
a5:15:d9:fe:a2:6d:8a:fe:2a:99:2e:36:95:ce:6d:
aa:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:A3:FD:CF:F0:B8:7C:2D:53:86:A8:79:21:5C:DD:8D:AA:66:11:BC
X509v3 Authority Key Identifier:
keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:3b:b9:ae:ff:c2:92:e8:6a:a2:a2:e5:a8:5f:dd:50:bf:48:
02:75:51:02:53:77:09:f8:2b:2e:6c:63:c2:97:99:f1:1e:ab:
be:36:5b:ab:5a:59:e9:9a:cc:49:43:e7:ff:a9:40:c9:8a:0b:
fd:52:4d:b9:16:59:32:e8:01:5e:f2:90:f2:e4:ca:47:e8:8a:
fb:cb:e9:07:d0:1f:54:e9:f5:c9:4c:52:68:f7:b8:26:bc:c5:
14:61:c3:e7:d1:54:04:91:45:aa:3c:97:19:e0:d7:a3:6b:1c:
5b:09:ec:ac:2b:10:d1:e2:87:79:ed:56:10:06:4f:2d:3b:1b:
aa:85:5d:84:42:e2:ed:a8:b4:e5:11:f7:2b:5f:2c:f3:cf:22:
53:65:fd:89:96:bd:1f:f9:b3:3d:fb:8d:c3:a3:53:b3:b7:ea:
a6:40:ed:2f:be:4d:f4:c1:2b:f6:7c:2c:f6:38:98:f2:4c:e1:
e2:4f:a6:72:d8:33:db:65:10:2a:6c:1c:09:a7:53:8a:a1:21:
8d:f8:f2:81:3e:c7:87:6c:05:85:60:4a:f2:1b:ce:33:04:0f:
9a:7f:90:fc:f4:e4:a0:e0:30:f5:df:f4:36:dc:f9:0d:38:2a:
cf:bb:6f:9e:2c:aa:05:43:12:e5:bb:1d:ac:f1:b9:96:16:8d:
1e:1f:67:89
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNSrdCWGP3dSzxV+wq0KblrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxZDBjNzhjMzA5YTNlOTlkYzlhYjc0ZjJjZGMwNDg0ODU5
ZTc1MzAwHhcNMjQxMTIyMDcwMjIyWhcNMjQxMTIzMDcwMjIyWjAzMTEwLwYDVQQD
EyhiZmEzZmRjZmYwYjg3YzJkNTM4NmE4NzkyMTVjZGQ4ZGFhNjYxMWJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzqyTVKhG1KJBcUCLhyf07bWjlhvW
qOzVXderFrw2kiHHls4d4eKZpW7tZmXs4U9zicjRhUJsT0nU2JVQmOXhCKDVIhp4
7Wy7e5sEl+sxolYXhcfLPqsaYFghUHJbxkx3u54YBT9KN7SVYJvS/+9Y3EZ54Yj4
F4qpUNXsoz+GwXIGPLZuBktzIHQPgQx50ZraGsFPnF77TOIbFKIqcgwXTXLLthdl
GSVKIkvFWovbSVApIGLXe5r+xldp38ZljV2cVzV1430Fbn2tXNEn0spVBbVnZfeX
WVhigj8V6Qrdn2iEOchj/bBoaJk1XBcobDilFdn+om2K/iqZLjaVzm2q1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL+j/c/wuHwtU4aoeSFc3Y2qZhG8MB8GA1UdIwQY
MBaAFJHQx4wwmj6Z3Jq3TyzcBISFnnUwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEt
NDg1MmM4ZmY4YWYyLzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEtNDg1MmM4ZmY4YWYy
LzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcDu5rv/C
kuhqoqLlqF/dUL9IAnVRAlN3CfgrLmxjwpeZ8R6rvjZbq1pZ6ZrMSUPn/6lAyYoL
/VJNuRZZMugBXvKQ8uTKR+iK+8vpB9AfVOn1yUxSaPe4JrzFFGHD59FUBJFFqjyX
GeDXo2scWwnsrCsQ0eKHee1WEAZPLTsbqoVdhELi7ai05RH3K18s888iU2X9iZa9
H/mzPfuNw6NTs7fqpkDtL75N9MEr9nws9jiY8kzh4k+mctgz22UQKmwcCadTiqEh
jfjygT7Hh2wFhWBK8hvOMwQPmn+Q/PTkoOAw9d/0Ntz5DTgqz7tvniyqBUMS5bsd
rPG5lhaNHh9niQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 09:37:59 2024 by rpki-client on console-fra.rpki-client.org