Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
File: goZyzXNrV-Hj38fdc2872KYWuoE.mft (raw, json)
Hash identifier: bixL2JmFROGUYyp0931RbMz16L4JF3ZXJreW/lxEsf0=
Subject key identifier: 9B:22:6D:B2:0D:07:4B:36:96:46:4C:25:15:5E:85:0B:F3:CB:4F:59
Authority key identifier: 82:86:72:CD:73:6B:57:E1:E3:DF:C7:DD:73:6F:3B:D8:A6:16:BA:81
Certificate issuer: /CN=828672cd736b57e1e3dfc7dd736f3bd8a616ba81
Certificate serial: 019357D22C82EB4C6F347482666FB9C5CB17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
Manifest number: 1371
Signing time: Sat 23 Nov 2024 07:00:11 +0000
Manifest this update: Sat 23 Nov 2024 07:00:11 +0000
Manifest next update: Sun 24 Nov 2024 07:00:11 +0000
Files and hashes: 1: dndX_P3Nf2wZ3JlctvIludDdG-c.roa (hash: 6Wn1x+8Id5zGpleNwqYXaZsCGXivHKxukcIiAN0K/SQ=)
2: goZyzXNrV-Hj38fdc2872KYWuoE.crl (hash: FlJ4Vbc0rTNcCOp5QujBMFG4yUm0z//yan245aGn9hI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:2c:82:eb:4c:6f:34:74:82:66:6f:b9:c5:cb:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=828672cd736b57e1e3dfc7dd736f3bd8a616ba81
Validity
Not Before: Nov 23 07:00:11 2024 GMT
Not After : Nov 24 07:00:11 2024 GMT
Subject: CN=9b226db20d074b3696464c25155e850bf3cb4f59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:cc:fe:87:c9:25:81:f2:1b:f4:97:0e:b8:5d:
8f:c6:ee:4a:2e:28:dd:dc:f0:7d:f8:8f:6c:96:83:
92:8d:7c:b2:60:ea:a2:96:b8:d6:75:19:16:a8:6b:
3f:fc:e5:2a:59:4e:a1:40:1c:a8:59:c5:15:db:56:
a0:63:51:ff:7a:7b:f6:39:f0:c6:b5:53:58:d4:9c:
eb:7d:e5:0d:95:4f:a0:56:6c:57:82:4b:7e:6e:e8:
3d:26:2a:eb:4f:1b:55:76:48:a2:31:f3:00:b3:d6:
0f:31:f8:8d:63:9c:5d:f1:72:f8:22:76:68:cb:68:
51:01:6e:af:eb:67:ae:fa:fb:86:b7:92:f2:f0:2e:
1a:5d:f2:ce:1e:57:7d:be:7a:dc:d1:95:e9:5b:28:
92:67:f6:4c:5a:ef:1b:4e:f8:b4:4e:51:80:b9:8c:
78:0e:17:0f:84:36:5a:fc:dc:db:ff:c0:87:07:4e:
02:cb:46:a1:ea:6d:0e:23:ed:9b:d7:82:4f:0e:74:
6e:69:a7:c9:f7:59:4a:46:f8:7f:1d:16:8e:51:fe:
32:09:b9:33:31:c5:50:af:83:a8:83:a7:97:f2:8f:
f6:99:5c:7e:84:28:f6:1f:17:d9:37:07:14:67:b1:
3e:72:1e:13:67:2a:0b:61:bc:4d:3d:69:98:34:46:
95:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:22:6D:B2:0D:07:4B:36:96:46:4C:25:15:5E:85:0B:F3:CB:4F:59
X509v3 Authority Key Identifier:
keyid:82:86:72:CD:73:6B:57:E1:E3:DF:C7:DD:73:6F:3B:D8:A6:16:BA:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:1e:06:c7:1a:89:e8:35:a4:2c:fc:1a:79:cd:e4:34:70:6a:
96:7e:23:e7:f3:97:46:95:a0:d0:66:6e:af:df:c9:9a:07:83:
d5:34:0e:3a:9c:e0:97:67:91:d0:93:7a:5f:6d:14:da:f4:97:
64:a4:14:ca:17:bb:0c:5a:27:ee:7d:13:b7:35:c5:bf:db:e1:
46:bf:75:e4:4a:2d:7f:95:97:96:e4:6f:e7:1d:b5:0a:b8:e2:
1e:f8:78:65:c9:5f:1a:91:dd:8e:b7:98:1b:ee:25:ec:28:b2:
72:3e:1f:b6:de:b6:76:41:c0:be:d5:33:ba:14:7a:ab:68:60:
4c:6f:cb:95:db:1a:28:b9:37:c5:c7:86:16:34:fa:d8:4e:27:
1f:4f:a8:54:86:a8:e9:1a:3d:6c:dd:b0:ac:ab:9b:61:99:83:
1f:88:11:cf:3b:00:9d:22:a9:a4:38:99:35:99:c3:5c:37:97:
3a:5b:72:90:ed:55:56:f4:1c:02:01:dd:09:7e:bf:a6:61:03:
fe:dd:24:3d:c9:ef:e6:e2:13:ba:94:f5:c6:59:a8:2c:f2:73:
27:00:af:61:07:14:df:93:c3:35:ed:c6:59:64:27:6e:46:9f:
e1:b0:da:a0:9d:b6:d4:f7:ca:4d:a0:84:bb:a9:dd:45:53:ca:
55:73:f9:7a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNX0iyC60xvNHSCZm+5xcsXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyODY3MmNkNzM2YjU3ZTFlM2RmYzdkZDczNmYzYmQ4YTYx
NmJhODEwHhcNMjQxMTIzMDcwMDExWhcNMjQxMTI0MDcwMDExWjAzMTEwLwYDVQQD
Eyg5YjIyNmRiMjBkMDc0YjM2OTY0NjRjMjUxNTVlODUwYmYzY2I0ZjU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvsz+h8klgfIb9JcOuF2Pxu5KLijd
3PB9+I9sloOSjXyyYOqilrjWdRkWqGs//OUqWU6hQByoWcUV21agY1H/env2OfDG
tVNY1JzrfeUNlU+gVmxXgkt+bug9JirrTxtVdkiiMfMAs9YPMfiNY5xd8XL4InZo
y2hRAW6v62eu+vuGt5Ly8C4aXfLOHld9vnrc0ZXpWyiSZ/ZMWu8bTvi0TlGAuYx4
DhcPhDZa/Nzb/8CHB04Cy0ah6m0OI+2b14JPDnRuaafJ91lKRvh/HRaOUf4yCbkz
McVQr4Oog6eX8o/2mVx+hCj2HxfZNwcUZ7E+ch4TZyoLYbxNPWmYNEaVzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJsibbINB0s2lkZMJRVehQvzy09ZMB8GA1UdIwQY
MBaAFIKGcs1za1fh49/H3XNvO9imFrqBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ29aeXpYTnJWLUhqMzhmZGMyODcyS1lXdW9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC81NGJiNTAtMDFiZS00ZWM2LTk0MTgt
ZWVlN2ZhZTVjMDM3LzEvZ29aeXpYTnJWLUhqMzhmZGMyODcyS1lXdW9FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC81NGJiNTAtMDFiZS00ZWM2LTk0MTgtZWVlN2ZhZTVjMDM3
LzEvZ29aeXpYTnJWLUhqMzhmZGMyODcyS1lXdW9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATh4GxxqJ
6DWkLPwaec3kNHBqln4j5/OXRpWg0GZur9/JmgeD1TQOOpzgl2eR0JN6X20U2vSX
ZKQUyhe7DFon7n0TtzXFv9vhRr915Eotf5WXluRv5x21CrjiHvh4ZclfGpHdjreY
G+4l7Ciycj4ftt62dkHAvtUzuhR6q2hgTG/LldsaKLk3xceGFjT62E4nH0+oVIao
6Ro9bN2wrKubYZmDH4gRzzsAnSKppDiZNZnDXDeXOltykO1VVvQcAgHdCX6/pmED
/t0kPcnv5uITupT1xlmoLPJzJwCvYQcU35PDNe3GWWQnbkaf4bDaoJ221PfKTaCE
u6ndRVPKVXP5eg==
-----END CERTIFICATE-----
Generated at Sat Nov 23 09:56:15 2024 by rpki-client on console-fra.rpki-client.org