Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
File: KaA5l7KPWbCAMciYQH3V5RN93bE.mft (raw, json)
Hash identifier: U17nXv96aJEsombFk0Yro2s6W+6bQXH4aYIVt7Ket/E=
Subject key identifier: 5D:EB:28:57:28:94:A5:C2:14:38:59:B6:AB:BA:E6:30:2D:7D:6D:60
Authority key identifier: 29:A0:39:97:B2:8F:59:B0:80:31:C8:98:40:7D:D5:E5:13:7D:DD:B1
Certificate issuer: /CN=29a03997b28f59b08031c898407dd5e5137dddb1
Certificate serial: 01936031C0F86E6CD4611FB6B03DAC832C2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
Manifest number: 1061
Signing time: Sun 24 Nov 2024 22:01:33 +0000
Manifest this update: Sun 24 Nov 2024 22:01:33 +0000
Manifest next update: Mon 25 Nov 2024 22:01:33 +0000
Files and hashes: 1: FvgUttrzdpktKgHBKbvgoJ6ePdc.roa (hash: 4nfHuQwiAPU2/ad2RBYhItAfEv1o71zh1+lsmVUJktg=)
2: KaA5l7KPWbCAMciYQH3V5RN93bE.crl (hash: qX71CGk7C4r0mZBKfn+66qOax/xp0t2LA/HMraqoaws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 22:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:60:31:c0:f8:6e:6c:d4:61:1f:b6:b0:3d:ac:83:2c:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29a03997b28f59b08031c898407dd5e5137dddb1
Validity
Not Before: Nov 24 22:01:33 2024 GMT
Not After : Nov 25 22:01:33 2024 GMT
Subject: CN=5deb28572894a5c2143859b6abbae6302d7d6d60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9e:3b:8b:31:2f:b2:08:66:c4:bb:29:b6:0c:
33:a9:1b:a1:47:a5:ad:ed:9c:d7:84:f8:82:c2:3a:
86:f1:ce:17:6f:eb:59:40:a2:78:ba:08:4f:92:71:
37:9e:8b:55:96:09:ad:0e:b3:4f:43:e4:35:e0:c3:
23:c5:26:f2:69:5b:3d:73:66:a6:d9:10:e6:94:82:
c9:77:69:b2:30:b7:a7:46:6c:ef:d5:74:2f:ba:c8:
ed:33:2d:92:75:7b:6c:55:13:27:82:30:40:ad:31:
1c:9b:67:c0:95:56:36:f9:09:9d:91:60:0d:b9:5c:
37:db:f7:d7:09:57:c8:3a:79:90:a0:76:0e:aa:e2:
e1:ea:30:9f:92:2f:17:a6:de:cc:3a:a1:a1:8c:70:
53:6b:dc:98:dd:d8:30:b0:ff:03:ce:a0:54:b3:f0:
76:ee:df:b6:87:e4:8d:ec:d6:42:2b:4d:ee:62:6b:
d6:44:1d:ec:29:73:2a:57:af:dc:6a:94:46:48:a2:
d2:3a:42:54:03:3f:71:eb:c6:7b:3f:08:14:9e:1e:
38:79:00:b3:9b:90:0c:4f:af:9d:99:9c:f8:00:87:
c0:51:96:27:10:91:ac:f9:1c:04:fd:d5:14:96:3d:
6b:9e:df:aa:0e:50:d9:8e:88:49:b8:a4:39:46:06:
25:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:EB:28:57:28:94:A5:C2:14:38:59:B6:AB:BA:E6:30:2D:7D:6D:60
X509v3 Authority Key Identifier:
keyid:29:A0:39:97:B2:8F:59:B0:80:31:C8:98:40:7D:D5:E5:13:7D:DD:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:6a:fb:3b:25:ef:78:6d:5f:e0:2a:96:b8:be:50:20:fa:f9:
9a:c2:92:41:f4:a8:49:a4:40:93:dc:41:72:43:67:51:d2:90:
c2:b3:ce:57:16:e5:47:ea:5d:0b:a2:52:87:74:ab:02:a1:92:
6a:4f:ef:9e:48:38:f6:ed:95:00:71:6f:6a:83:0f:99:69:c3:
7c:17:15:71:92:60:3e:6e:4a:c5:ae:fe:f7:a3:4f:cd:09:66:
12:df:13:b0:61:c4:97:58:de:d7:8e:ba:4f:2c:61:8e:82:71:
d0:75:c4:47:cd:6b:aa:42:c6:51:27:ab:8b:6a:57:11:d0:ab:
a4:00:85:23:07:79:08:93:73:42:a7:9f:82:da:c6:9f:62:be:
b3:ee:8a:74:e7:8a:37:bd:82:77:c3:35:da:74:d7:33:76:ad:
59:ec:5b:97:f8:78:ee:42:67:76:71:a8:38:ed:f5:2d:7f:d9:
9f:a8:55:c1:fd:de:fc:68:39:49:c2:0f:7b:b3:80:c9:fe:72:
a3:21:63:6b:9c:55:be:3f:7f:17:a7:1a:e8:9a:91:00:0d:d6:
51:8e:0e:75:67:39:b1:5f:41:11:44:f6:7f:44:d1:0d:a7:fc:
8c:37:55:89:e9:d6:5f:4e:0d:c1:ec:a5:6f:84:59:89:46:1a:
7e:d9:86:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNgMcD4bmzUYR+2sD2sgywuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5YTAzOTk3YjI4ZjU5YjA4MDMxYzg5ODQwN2RkNWU1MTM3
ZGRkYjEwHhcNMjQxMTI0MjIwMTMzWhcNMjQxMTI1MjIwMTMzWjAzMTEwLwYDVQQD
Eyg1ZGViMjg1NzI4OTRhNWMyMTQzODU5YjZhYmJhZTYzMDJkN2Q2ZDYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJ47izEvsghmxLsptgwzqRuhR6Wt
7ZzXhPiCwjqG8c4Xb+tZQKJ4ughPknE3notVlgmtDrNPQ+Q14MMjxSbyaVs9c2am
2RDmlILJd2myMLenRmzv1XQvusjtMy2SdXtsVRMngjBArTEcm2fAlVY2+QmdkWAN
uVw32/fXCVfIOnmQoHYOquLh6jCfki8Xpt7MOqGhjHBTa9yY3dgwsP8DzqBUs/B2
7t+2h+SN7NZCK03uYmvWRB3sKXMqV6/capRGSKLSOkJUAz9x68Z7PwgUnh44eQCz
m5AMT6+dmZz4AIfAUZYnEJGs+RwE/dUUlj1rnt+qDlDZjohJuKQ5RgYlIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF3rKFcolKXCFDhZtqu65jAtfW1gMB8GA1UdIwQY
MBaAFCmgOZeyj1mwgDHImEB91eUTfd2xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2FBNWw3S1BXYkNBTWNpWVFIM1Y1Uk45M2JFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS8yMTliZTItMzk2Zi00MjdmLTk0MmMt
MWY4ZTUyMjQwOGE1LzEvS2FBNWw3S1BXYkNBTWNpWVFIM1Y1Uk45M2JFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS8yMTliZTItMzk2Zi00MjdmLTk0MmMtMWY4ZTUyMjQwOGE1
LzEvS2FBNWw3S1BXYkNBTWNpWVFIM1Y1Uk45M2JFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc2r7OyXv
eG1f4CqWuL5QIPr5msKSQfSoSaRAk9xBckNnUdKQwrPOVxblR+pdC6JSh3SrAqGS
ak/vnkg49u2VAHFvaoMPmWnDfBcVcZJgPm5Kxa7+96NPzQlmEt8TsGHEl1je1466
TyxhjoJx0HXER81rqkLGUSeri2pXEdCrpACFIwd5CJNzQqefgtrGn2K+s+6KdOeK
N72Cd8M12nTXM3atWexbl/h47kJndnGoOO31LX/Zn6hVwf3e/Gg5ScIPe7OAyf5y
oyFja5xVvj9/F6ca6JqRAA3WUY4OdWc5sV9BEUT2f0TRDaf8jDdVienWX04Nweyl
b4RZiUYaftmGQA==
-----END CERTIFICATE-----
Generated at Mon Nov 25 07:29:31 2024 by rpki-client on console-ams.rpki-client.org