Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft
File: sszaHFSHy5ONV-phzC1i0xBw21E.mft (raw, json)
Hash identifier: IJR+3za7Mn6z6tZ12JjcM2wlOjl2/Bze6OZXpv7Pq4o=
Subject key identifier: DC:70:D2:7D:81:85:49:C5:31:A9:A8:F6:8C:C1:59:1C:DB:B2:11:77
Authority key identifier: B2:CC:DA:1C:54:87:CB:93:8D:57:EA:61:CC:2D:62:D3:10:70:DB:51
Certificate issuer: /CN=b2ccda1c5487cb938d57ea61cc2d62d31070db51
Certificate serial: 0193647BA3F0986FA2923F424671AFB65580
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sszaHFSHy5ONV-phzC1i0xBw21E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft
Manifest number: 097F
Signing time: Mon 25 Nov 2024 18:00:44 +0000
Manifest this update: Mon 25 Nov 2024 18:00:44 +0000
Manifest next update: Tue 26 Nov 2024 18:00:44 +0000
Files and hashes: 1: l2vetfdcm2TxIJ9lNARZxYqMXqw.roa (hash: z2j8MgdHfH7+wJ0kHF9rfwY2ox2wv9C1wPQGpUoW45E=)
2: sszaHFSHy5ONV-phzC1i0xBw21E.crl (hash: NF9aBvcXSSV5LlkI1jE2WfyYfMdjvziqFudXbjsdCNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sszaHFSHy5ONV-phzC1i0xBw21E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 18:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:64:7b:a3:f0:98:6f:a2:92:3f:42:46:71:af:b6:55:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2ccda1c5487cb938d57ea61cc2d62d31070db51
Validity
Not Before: Nov 25 18:00:44 2024 GMT
Not After : Nov 26 18:00:44 2024 GMT
Subject: CN=dc70d27d818549c531a9a8f68cc1591cdbb21177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:37:62:9e:fe:11:31:51:a1:36:5e:79:f0:96:
bb:dd:a0:aa:14:5d:94:3c:e5:b7:b9:c2:0a:02:3c:
d1:dc:6e:67:f3:70:09:5e:89:2c:24:07:47:2a:1c:
bf:cd:bd:c3:70:e0:c6:76:aa:2b:e3:3d:20:a8:56:
ca:fc:a8:3f:48:df:24:93:c8:0b:01:9d:07:92:d7:
39:71:fa:40:ee:6f:5b:27:35:2c:e2:55:a9:f7:35:
e9:fa:6c:00:fc:ec:80:e0:fe:f4:77:16:2c:e1:7b:
78:98:9d:98:53:1e:bf:11:1e:7f:52:81:ac:94:ac:
d4:dc:9b:13:9b:ca:c0:5a:77:87:f4:77:af:05:2c:
de:4a:f9:46:c2:8b:39:41:cc:e0:3a:fc:63:8d:25:
f8:ca:7c:a9:0d:af:43:cb:3a:b3:d7:e6:b4:3a:25:
c9:c6:b4:72:fc:e3:9a:62:63:13:1c:dd:29:05:4b:
35:04:50:76:b3:0c:ea:d5:ca:19:18:53:88:f7:56:
81:42:10:c1:9b:71:5a:b3:64:95:ee:83:a8:df:b6:
90:05:35:ed:66:c1:41:6f:61:5f:3a:a2:0e:5c:9e:
92:1d:7c:d1:b0:3f:48:a6:27:53:d5:f5:e5:38:fc:
99:dc:6a:56:04:14:90:07:e0:07:e9:9a:0a:98:50:
85:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:70:D2:7D:81:85:49:C5:31:A9:A8:F6:8C:C1:59:1C:DB:B2:11:77
X509v3 Authority Key Identifier:
keyid:B2:CC:DA:1C:54:87:CB:93:8D:57:EA:61:CC:2D:62:D3:10:70:DB:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sszaHFSHy5ONV-phzC1i0xBw21E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:dd:fc:2c:87:21:76:4c:04:79:81:d0:64:99:0b:2b:6d:cd:
72:97:e5:23:88:c3:fe:ce:6a:97:1b:29:09:5e:82:d0:fb:68:
b6:39:c1:21:f7:2b:71:d5:ec:aa:a2:b3:43:e5:ba:4a:3d:38:
d4:e0:1c:f5:7c:5d:96:ff:84:0a:47:a2:92:65:1d:23:ec:c1:
e1:df:23:bf:72:73:5f:74:47:1a:32:57:dc:fb:09:51:f7:83:
a7:0b:96:cf:9b:18:9c:62:60:a7:c0:c4:16:80:0b:6f:61:b0:
7d:79:65:38:17:32:c5:1c:3d:66:90:c1:98:83:68:d3:ab:29:
8a:3d:4c:4f:c3:13:da:a6:2b:08:31:39:fc:c3:f1:59:e0:04:
5c:2c:3f:d7:cf:84:e0:25:08:e6:13:38:d4:82:15:7e:84:56:
66:de:48:55:85:09:cd:5e:df:9d:f9:6e:b8:fe:72:1c:94:9d:
4b:f3:41:26:23:6b:fd:05:0a:19:c5:2d:f3:ed:1d:ca:06:f5:
29:bb:9f:8c:cc:75:7f:5f:c9:89:44:05:a4:48:5f:ba:b9:35:
e5:3f:39:79:73:c0:35:6a:ed:15:26:5b:fb:e4:60:1f:6a:df:
7d:f5:46:8c:19:ad:a3:a3:c0:e4:66:b9:24:73:a5:bf:1b:e2:
ba:df:d9:cb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNke6PwmG+ikj9CRnGvtlWAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyY2NkYTFjNTQ4N2NiOTM4ZDU3ZWE2MWNjMmQ2MmQzMTA3
MGRiNTEwHhcNMjQxMTI1MTgwMDQ0WhcNMjQxMTI2MTgwMDQ0WjAzMTEwLwYDVQQD
EyhkYzcwZDI3ZDgxODU0OWM1MzFhOWE4ZjY4Y2MxNTkxY2RiYjIxMTc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtDdinv4RMVGhNl558Ja73aCqFF2U
POW3ucIKAjzR3G5n83AJXoksJAdHKhy/zb3DcODGdqor4z0gqFbK/Kg/SN8kk8gL
AZ0Hktc5cfpA7m9bJzUs4lWp9zXp+mwA/OyA4P70dxYs4Xt4mJ2YUx6/ER5/UoGs
lKzU3JsTm8rAWneH9HevBSzeSvlGwos5QczgOvxjjSX4ynypDa9Dyzqz1+a0OiXJ
xrRy/OOaYmMTHN0pBUs1BFB2swzq1coZGFOI91aBQhDBm3Fas2SV7oOo37aQBTXt
ZsFBb2FfOqIOXJ6SHXzRsD9IpidT1fXlOPyZ3GpWBBSQB+AH6ZoKmFCFfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNxw0n2BhUnFMamo9ozBWRzbshF3MB8GA1UdIwQY
MBaAFLLM2hxUh8uTjVfqYcwtYtMQcNtRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3N6YUhGU0h5NU9OVi1waHpDMWkweEJ3MjFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9lNmI3N2YtNDBlNi00YzkzLWFjMzIt
M2RiOTYxNzAzZWE5LzEvc3N6YUhGU0h5NU9OVi1waHpDMWkweEJ3MjFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS9lNmI3N2YtNDBlNi00YzkzLWFjMzItM2RiOTYxNzAzZWE5
LzEvc3N6YUhGU0h5NU9OVi1waHpDMWkweEJ3MjFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYd38LIch
dkwEeYHQZJkLK23NcpflI4jD/s5qlxspCV6C0PtotjnBIfcrcdXsqqKzQ+W6Sj04
1OAc9Xxdlv+ECkeikmUdI+zB4d8jv3JzX3RHGjJX3PsJUfeDpwuWz5sYnGJgp8DE
FoALb2GwfXllOBcyxRw9ZpDBmINo06spij1MT8MT2qYrCDE5/MPxWeAEXCw/18+E
4CUI5hM41IIVfoRWZt5IVYUJzV7fnfluuP5yHJSdS/NBJiNr/QUKGcUt8+0dygb1
KbufjMx1f1/JiUQFpEhfurk15T85eXPANWrtFSZb++RgH2rfffVGjBmto6PA5Ga5
JHOlvxviut/Zyw==
-----END CERTIFICATE-----
Generated at Tue Nov 26 03:08:49 2024 by rpki-client on console-ams.rpki-client.org