Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
File: o8p7HBOn17MSMUErj7aUehdH250.mft (raw, json)
Hash identifier: ymLcnp0i0LauzB96dz7sYl/sW0ZH/n+ksWGTyjiK0mc=
Subject key identifier: 2F:43:8E:06:48:8E:23:27:31:D0:64:9B:CC:C3:A3:0F:5D:FB:7D:36
Authority key identifier: A3:CA:7B:1C:13:A7:D7:B3:12:31:41:2B:8F:B6:94:7A:17:47:DB:9D
Certificate issuer: /CN=a3ca7b1c13a7d7b31231412b8fb6947a1747db9d
Certificate serial: 0191F9A264F88EB52F51310C7352374B8B96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
Manifest number: A7
Signing time: Mon 16 Sep 2024 07:00:55 +0000
Manifest this update: Mon 16 Sep 2024 07:00:55 +0000
Manifest next update: Tue 17 Sep 2024 07:00:55 +0000
Files and hashes: 1: U_B2xWBhou3uIdWLQ3WIdVwRoI0.roa (hash: OIXHna+Q/eccDeY8gf7RJ+eCf3MyZwUAnoNbj6G/+UU=)
2: o8p7HBOn17MSMUErj7aUehdH250.crl (hash: P/X3+6du0c/2td6H6BvjWAc6DcF89wzidfrF01TgTY0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 07:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:f9:a2:64:f8:8e:b5:2f:51:31:0c:73:52:37:4b:8b:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3ca7b1c13a7d7b31231412b8fb6947a1747db9d
Validity
Not Before: Sep 16 07:00:55 2024 GMT
Not After : Sep 17 07:00:55 2024 GMT
Subject: CN=2f438e06488e232731d0649bccc3a30f5dfb7d36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:9f:5b:26:9a:29:57:6b:1a:e9:d6:56:83:dd:
c2:4e:e2:b0:8b:97:4b:64:cd:e8:44:39:ce:c5:b6:
6e:fd:a6:00:e1:a0:4a:14:e9:5b:58:43:46:e8:da:
df:b0:6f:f4:9e:04:24:1f:d5:2a:c8:3a:2c:5c:67:
3f:d9:3b:10:43:32:55:64:20:93:2b:be:53:14:97:
79:34:d5:fc:3d:b2:54:6e:49:fc:05:50:1e:aa:ec:
ac:cd:a2:9f:af:a8:5d:54:c8:07:fb:77:97:b9:7b:
21:23:a5:e8:81:76:09:23:cd:12:0d:9e:57:03:41:
e0:91:3e:02:3e:ff:72:0d:2b:6c:a6:40:77:7e:d3:
31:62:40:28:34:0a:bc:a0:7a:e2:62:36:d3:cf:0f:
1f:c6:fb:29:5b:d7:67:b5:26:72:34:9a:03:bc:9a:
a9:42:ae:11:cb:65:34:72:39:48:e7:86:65:85:ef:
ee:ef:34:6b:ab:1d:ca:6d:23:aa:b8:69:0e:f2:19:
05:0f:c2:85:d4:08:8d:86:bf:98:c5:2d:98:ee:38:
51:b0:85:6f:31:42:36:d6:60:a3:35:6e:8d:62:e5:
5a:bf:24:e5:ce:32:70:0e:8a:ba:4d:9e:94:eb:e8:
32:5c:53:e6:4a:ad:e5:8c:24:d2:b6:5e:87:2c:60:
21:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:43:8E:06:48:8E:23:27:31:D0:64:9B:CC:C3:A3:0F:5D:FB:7D:36
X509v3 Authority Key Identifier:
keyid:A3:CA:7B:1C:13:A7:D7:B3:12:31:41:2B:8F:B6:94:7A:17:47:DB:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:74:b5:d7:0f:ef:ea:fb:1c:f6:bb:36:f2:21:e9:a7:75:82:
cd:a5:9b:8b:d5:a1:c4:70:a3:92:58:81:5b:14:7f:e7:b2:34:
b5:5d:76:af:f8:bd:4c:15:f9:a8:6b:b6:bc:52:ce:9a:45:92:
e2:d2:8c:35:e7:b4:7e:f7:6c:04:ff:4c:69:33:ba:46:ad:10:
32:26:3a:78:c2:e8:33:ac:ce:fc:99:28:69:7e:a4:07:6f:5d:
e4:bc:f7:ba:d9:0f:75:89:a0:fd:95:48:5a:c2:82:e9:1f:3f:
49:de:d8:25:3f:2b:2d:c6:50:3a:37:d5:46:1d:d1:be:03:f0:
75:39:a8:35:d3:18:62:99:8e:78:f8:0f:d4:f3:89:53:06:15:
3e:5d:b4:fd:35:57:23:8e:d3:bc:24:56:53:13:a6:5b:20:3a:
3b:4f:9a:e7:44:29:95:35:18:56:da:9e:08:cf:1b:09:73:6a:
f4:0c:1e:de:09:64:0a:f2:33:7d:b4:eb:b6:c9:16:82:e8:e7:
92:43:05:00:9d:41:64:9c:d8:e9:21:40:33:80:60:39:ef:e4:
ce:3c:1a:f8:79:45:f7:96:e2:c0:e6:a1:f4:2b:08:7b:a1:89:
c2:79:ce:95:61:b2:d2:2c:f1:51:31:f9:59:66:05:0e:85:05:
a4:c7:7f:fe
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZH5omT4jrUvUTEMc1I3S4uWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzY2E3YjFjMTNhN2Q3YjMxMjMxNDEyYjhmYjY5NDdhMTc0
N2RiOWQwHhcNMjQwOTE2MDcwMDU1WhcNMjQwOTE3MDcwMDU1WjAzMTEwLwYDVQQD
EygyZjQzOGUwNjQ4OGUyMzI3MzFkMDY0OWJjY2MzYTMwZjVkZmI3ZDM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn59bJpopV2sa6dZWg93CTuKwi5dL
ZM3oRDnOxbZu/aYA4aBKFOlbWENG6NrfsG/0ngQkH9UqyDosXGc/2TsQQzJVZCCT
K75TFJd5NNX8PbJUbkn8BVAequyszaKfr6hdVMgH+3eXuXshI6XogXYJI80SDZ5X
A0HgkT4CPv9yDStspkB3ftMxYkAoNAq8oHriYjbTzw8fxvspW9dntSZyNJoDvJqp
Qq4Ry2U0cjlI54Zlhe/u7zRrqx3KbSOquGkO8hkFD8KF1AiNhr+YxS2Y7jhRsIVv
MUI21mCjNW6NYuVavyTlzjJwDoq6TZ6U6+gyXFPmSq3ljCTStl6HLGAh0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC9DjgZIjiMnMdBkm8zDow9d+302MB8GA1UdIwQY
MBaAFKPKexwTp9ezEjFBK4+2lHoXR9udMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzhwN0hCT24xN01TTVVFcmo3YVVlaGRIMjUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9iY2RjY2EtZjA2Yi00MGNmLThlMjEt
MjE0NTIyMDk5NGNlLzEvbzhwN0hCT24xN01TTVVFcmo3YVVlaGRIMjUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy9iY2RjY2EtZjA2Yi00MGNmLThlMjEtMjE0NTIyMDk5NGNl
LzEvbzhwN0hCT24xN01TTVVFcmo3YVVlaGRIMjUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZHS11w/v
6vsc9rs28iHpp3WCzaWbi9WhxHCjkliBWxR/57I0tV12r/i9TBX5qGu2vFLOmkWS
4tKMNee0fvdsBP9MaTO6Rq0QMiY6eMLoM6zO/JkoaX6kB29d5Lz3utkPdYmg/ZVI
WsKC6R8/Sd7YJT8rLcZQOjfVRh3RvgPwdTmoNdMYYpmOePgP1POJUwYVPl20/TVX
I47TvCRWUxOmWyA6O0+a50QplTUYVtqeCM8bCXNq9Awe3glkCvIzfbTrtskWgujn
kkMFAJ1BZJzY6SFAM4BgOe/kzjwa+HlF95biwOah9CsIe6GJwnnOlWGy0izxUTH5
WWYFDoUFpMd//g==
-----END CERTIFICATE-----
Generated at Mon Sep 16 18:14:59 2024 by rpki-client on console-ams.rpki-client.org