Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft
File: XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft (raw, json)
Hash identifier: 9fjoeqc5yw14P8wF/1nsk2ZYuG8t7HcfpExfR+7LKZI=
Subject key identifier: D7:B2:1D:ED:02:C9:D2:06:8B:F1:BD:C9:D2:1D:F5:4E:F4:51:B4:22
Authority key identifier: 5E:D6:77:2B:90:21:2E:57:72:49:F7:35:6C:21:8E:D1:06:8B:67:76
Certificate issuer: /CN=5ed6772b90212e577249f7356c218ed1068b6776
Certificate serial: 01935689F16D3431C00242A72363D4EC1AA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft
Manifest number: 136F
Signing time: Sat 23 Nov 2024 01:01:40 +0000
Manifest this update: Sat 23 Nov 2024 01:01:40 +0000
Manifest next update: Sun 24 Nov 2024 01:01:40 +0000
Files and hashes: 1: XtZ3K5AhLldySfc1bCGO0QaLZ3Y.crl (hash: Jvq+O8wuIdKGFfKsuq/7ewnZM6lS+aUFNK5+m5TNGf0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:f1:6d:34:31:c0:02:42:a7:23:63:d4:ec:1a:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ed6772b90212e577249f7356c218ed1068b6776
Validity
Not Before: Nov 23 01:01:40 2024 GMT
Not After : Nov 24 01:01:40 2024 GMT
Subject: CN=d7b21ded02c9d2068bf1bdc9d21df54ef451b422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f9:ce:60:fa:2c:d7:bf:d9:42:7b:6c:3b:a9:
65:05:d9:8a:c1:fe:c6:ad:e2:2d:34:6e:84:f2:50:
2f:57:9f:37:8a:5a:55:55:2e:67:9e:ae:42:8f:41:
95:43:c5:e5:21:ee:77:50:00:31:40:4b:23:74:e5:
4d:f6:83:11:1c:7c:9e:44:27:bb:40:38:ba:60:c2:
07:d1:29:9c:d9:83:5a:6b:51:23:b6:fc:5a:a5:a8:
be:9c:1f:e0:82:1e:59:cc:e3:c1:bc:21:2f:d2:62:
e0:e8:00:0b:fc:27:96:4b:39:21:3d:43:30:01:d0:
3d:8f:ab:65:c8:43:44:d4:e9:34:a6:20:5d:87:e4:
b2:8b:f0:91:7d:dc:e2:1c:cd:d4:be:a0:75:e8:41:
2d:ef:eb:19:cc:91:9b:c6:45:53:42:4d:50:66:f1:
48:43:c5:73:fd:9e:6f:f6:8e:e2:b8:e1:0c:a0:71:
45:01:ed:dd:e8:0d:f1:3e:48:8c:a4:5c:e8:7d:02:
92:4e:fe:7e:2d:55:ed:61:3a:47:9e:e4:d3:a5:8c:
b6:9f:ca:94:f5:b2:b9:aa:98:05:3f:1d:aa:c8:98:
42:b3:b1:68:28:1a:0c:b1:c5:31:49:c8:40:95:27:
0a:3b:1d:03:8f:2e:b0:17:6d:ab:7c:6a:3f:3b:d9:
05:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:B2:1D:ED:02:C9:D2:06:8B:F1:BD:C9:D2:1D:F5:4E:F4:51:B4:22
X509v3 Authority Key Identifier:
keyid:5E:D6:77:2B:90:21:2E:57:72:49:F7:35:6C:21:8E:D1:06:8B:67:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:73:15:3d:88:bc:c0:89:44:01:c1:d9:3a:1b:d7:8b:12:a6:
20:74:0b:a0:8a:20:92:79:f9:91:96:5a:f1:9c:4d:24:40:57:
c8:05:2b:b4:3e:77:c7:8d:21:86:37:0d:03:60:89:04:09:39:
45:ad:ef:99:3a:c9:cd:3c:c1:53:be:02:47:e1:1d:91:65:4c:
75:2f:51:a2:91:52:e4:38:42:be:8c:b9:8a:bf:ee:ce:a6:78:
f8:7f:13:73:1b:b4:6f:d9:04:59:5d:1e:53:0a:c3:e9:78:9a:
d7:21:f1:cd:00:93:bc:64:fb:c4:1e:55:a6:ef:eb:9c:f4:28:
67:e9:6d:d2:4f:c1:af:ee:25:de:c2:42:9d:d5:43:76:19:f2:
71:58:cf:45:43:64:bb:c7:fe:c7:f5:be:a1:a9:c4:e6:25:62:
db:13:5d:03:ff:81:c2:b4:d7:1e:da:16:a0:be:28:d4:8d:e8:
ec:cf:d5:ee:fc:9c:56:f5:3d:7e:34:c9:b9:db:5a:e9:2b:f8:
15:78:1e:54:94:55:98:8a:ff:61:63:42:19:0c:26:f2:13:80:
83:40:03:0b:83:e2:04:53:5e:3e:44:7e:6a:91:7b:12:aa:93:
6e:bd:20:14:a4:de:e3:76:af:4e:3e:e9:91:a3:40:a0:de:57:
4b:69:c7:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNWifFtNDHAAkKnI2PU7BqpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlZDY3NzJiOTAyMTJlNTc3MjQ5ZjczNTZjMjE4ZWQxMDY4
YjY3NzYwHhcNMjQxMTIzMDEwMTQwWhcNMjQxMTI0MDEwMTQwWjAzMTEwLwYDVQQD
EyhkN2IyMWRlZDAyYzlkMjA2OGJmMWJkYzlkMjFkZjU0ZWY0NTFiNDIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl/nOYPos17/ZQntsO6llBdmKwf7G
reItNG6E8lAvV583ilpVVS5nnq5Cj0GVQ8XlIe53UAAxQEsjdOVN9oMRHHyeRCe7
QDi6YMIH0Smc2YNaa1Ejtvxapai+nB/ggh5ZzOPBvCEv0mLg6AAL/CeWSzkhPUMw
AdA9j6tlyENE1Ok0piBdh+Syi/CRfdziHM3UvqB16EEt7+sZzJGbxkVTQk1QZvFI
Q8Vz/Z5v9o7iuOEMoHFFAe3d6A3xPkiMpFzofQKSTv5+LVXtYTpHnuTTpYy2n8qU
9bK5qpgFPx2qyJhCs7FoKBoMscUxSchAlScKOx0Djy6wF22rfGo/O9kFYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNeyHe0CydIGi/G9ydId9U70UbQiMB8GA1UdIwQY
MBaAFF7WdyuQIS5Xckn3NWwhjtEGi2d2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHRaM0s1QWhMbGR5U2ZjMWJDR08wUWFMWjNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9mNWVlNzYtZWVhZS00MzZjLTg4NDMt
ODYyMTA2ODUzODYwLzEvWHRaM0s1QWhMbGR5U2ZjMWJDR08wUWFMWjNZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy9mNWVlNzYtZWVhZS00MzZjLTg4NDMtODYyMTA2ODUzODYw
LzEvWHRaM0s1QWhMbGR5U2ZjMWJDR08wUWFMWjNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqHMVPYi8
wIlEAcHZOhvXixKmIHQLoIogknn5kZZa8ZxNJEBXyAUrtD53x40hhjcNA2CJBAk5
Ra3vmTrJzTzBU74CR+EdkWVMdS9RopFS5DhCvoy5ir/uzqZ4+H8Tcxu0b9kEWV0e
UwrD6Xia1yHxzQCTvGT7xB5Vpu/rnPQoZ+lt0k/Br+4l3sJCndVDdhnycVjPRUNk
u8f+x/W+oanE5iVi2xNdA/+BwrTXHtoWoL4o1I3o7M/V7vycVvU9fjTJudta6Sv4
FXgeVJRVmIr/YWNCGQwm8hOAg0ADC4PiBFNePkR+apF7EqqTbr0gFKTe43avTj7p
kaNAoN5XS2nH/Q==
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:18:13 2024 by rpki-client on console-fra.rpki-client.org