Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.mft
File: I5xF5DYlUiCArsU5UpiaE6KKvQA.mft (raw, json)
Hash identifier: 6Kvkdxq8a+BuzWmxnrJShz/C/05IdlYLmTpyn+Filt4=
Subject key identifier: F3:78:C1:84:9F:AC:B2:22:4A:18:41:B6:85:DB:F7:5C:C9:71:64:18
Authority key identifier: 23:9C:45:E4:36:25:52:20:80:AE:C5:39:52:98:9A:13:A2:8A:BD:00
Certificate issuer: /CN=239c45e43625522080aec53952989a13a28abd00
Certificate serial: 019358403C814714DB0F7918FB3355FF88EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I5xF5DYlUiCArsU5UpiaE6KKvQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.mft
Manifest number: 1374
Signing time: Sat 23 Nov 2024 09:00:24 +0000
Manifest this update: Sat 23 Nov 2024 09:00:24 +0000
Manifest next update: Sun 24 Nov 2024 09:00:24 +0000
Files and hashes: 1: 8m14GemymqOGC0QdkxXJ5SIo1rE.roa (hash: s9BYHWU3xU8SXQ0aeCTfx6dsFGvyHeZFQG9O4YC9ksk=)
2: I5xF5DYlUiCArsU5UpiaE6KKvQA.crl (hash: WpI/BUZBTCsVdAlnfUACKHTV11KuNwAx5tDtmwALMnw=)
3: obCacYNDkoYBSIpqiOxg2skasu8.roa (hash: 2w5bc6B9o16GgAuseKGt/+amiYEvmWW5EW+ReZ1s4tQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/I5xF5DYlUiCArsU5UpiaE6KKvQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:40:3c:81:47:14:db:0f:79:18:fb:33:55:ff:88:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=239c45e43625522080aec53952989a13a28abd00
Validity
Not Before: Nov 23 09:00:24 2024 GMT
Not After : Nov 24 09:00:24 2024 GMT
Subject: CN=f378c1849facb2224a1841b685dbf75cc9716418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:18:89:8f:cf:66:27:dc:18:a1:bf:ed:11:bb:
26:ca:43:13:e5:53:54:a8:cb:f0:e9:b6:0f:5d:96:
38:4c:ea:58:e2:b0:73:d8:10:9a:25:f3:e6:c9:b0:
42:32:83:e0:10:98:2a:94:0d:b0:b0:ad:c1:f6:7c:
0c:36:10:03:de:00:99:cb:96:1d:df:f9:2d:d7:82:
a7:a1:2f:ba:11:e8:3c:93:ae:49:f2:24:33:ad:e8:
1b:9c:4b:d4:8d:74:23:e7:53:8a:3b:a9:60:ef:08:
3c:ce:3f:27:28:2f:1f:97:40:02:6b:c8:29:0a:09:
6b:66:c3:b4:05:06:ce:c1:fb:c6:5b:ea:e9:a6:fa:
7d:50:41:7c:dc:1f:c2:c8:72:0a:55:2d:ce:4e:4e:
36:55:5b:f3:a4:ab:da:6d:60:9e:4a:0c:30:43:bd:
12:30:ad:0a:6a:0a:3f:38:f9:7e:25:a2:5b:dc:5c:
6d:df:cd:3b:af:89:dc:cc:02:99:8d:d1:c9:e4:e2:
5c:16:00:91:3f:91:8f:fd:99:d6:c7:87:bc:06:9e:
8c:62:95:e9:f2:78:e1:5f:b6:d9:85:84:5a:b8:08:
f6:be:48:7c:85:1c:4c:41:1b:3c:08:83:80:de:5a:
7b:e4:2d:35:53:a1:f7:08:51:e7:a3:fa:b8:ed:ae:
22:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:78:C1:84:9F:AC:B2:22:4A:18:41:B6:85:DB:F7:5C:C9:71:64:18
X509v3 Authority Key Identifier:
keyid:23:9C:45:E4:36:25:52:20:80:AE:C5:39:52:98:9A:13:A2:8A:BD:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I5xF5DYlUiCArsU5UpiaE6KKvQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:57:fe:52:36:e8:df:fb:b7:88:9d:74:b7:d0:bb:f5:8d:bd:
a4:0a:56:e4:17:cd:51:b2:cb:45:d1:53:fe:bf:1f:48:21:44:
b5:5c:7b:61:1f:16:32:40:69:cb:75:89:ec:39:37:97:a1:e5:
91:1f:e2:8d:99:8a:0f:6b:78:ab:35:0b:62:9c:8a:72:a1:c0:
4c:74:fc:87:68:3e:67:87:ec:bc:4b:79:83:c8:9c:e7:c4:d5:
65:99:f2:1b:f8:8d:3b:6d:e6:c5:27:68:a9:4c:af:3b:07:62:
b0:41:70:4d:e1:df:84:e9:c8:16:45:47:0d:31:c7:b5:ec:c7:
32:57:1c:31:2f:83:f5:b2:90:66:e1:cf:9b:80:e5:81:97:1f:
00:9a:7c:55:19:f6:2d:28:25:5d:24:99:39:41:95:7b:93:a3:
72:4b:0e:e6:9a:b9:a0:0a:95:09:8f:ed:ed:d0:c3:df:5b:0f:
77:88:28:58:0a:3e:b2:10:ff:0b:39:19:e4:12:b0:03:e0:8d:
3b:fa:ff:d5:00:c7:4a:de:2d:54:4d:4a:64:62:fa:4a:ec:ff:
ca:e0:d5:6d:ca:f3:14:fd:d9:7f:09:50:46:89:77:2d:ca:43:
f9:bd:94:7c:f0:8b:fe:b8:33:1f:37:05:a2:d9:61:e5:39:36:
c0:27:af:5a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNYQDyBRxTbD3kY+zNV/4jsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzOWM0NWU0MzYyNTUyMjA4MGFlYzUzOTUyOTg5YTEzYTI4
YWJkMDAwHhcNMjQxMTIzMDkwMDI0WhcNMjQxMTI0MDkwMDI0WjAzMTEwLwYDVQQD
EyhmMzc4YzE4NDlmYWNiMjIyNGExODQxYjY4NWRiZjc1Y2M5NzE2NDE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4xiJj89mJ9wYob/tEbsmykMT5VNU
qMvw6bYPXZY4TOpY4rBz2BCaJfPmybBCMoPgEJgqlA2wsK3B9nwMNhAD3gCZy5Yd
3/kt14KnoS+6Eeg8k65J8iQzregbnEvUjXQj51OKO6lg7wg8zj8nKC8fl0ACa8gp
CglrZsO0BQbOwfvGW+rppvp9UEF83B/CyHIKVS3OTk42VVvzpKvabWCeSgwwQ70S
MK0Kago/OPl+JaJb3Fxt3807r4nczAKZjdHJ5OJcFgCRP5GP/ZnWx4e8Bp6MYpXp
8njhX7bZhYRauAj2vkh8hRxMQRs8CIOA3lp75C01U6H3CFHno/q47a4iowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPN4wYSfrLIiShhBtoXb91zJcWQYMB8GA1UdIwQY
MBaAFCOcReQ2JVIggK7FOVKYmhOiir0AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTV4RjVEWWxVaUNBcnNVNVVwaWFFNktLdlFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi80YzQ4OTQtODBmYy00OGVmLWI2Njgt
OTc1YTIzN2VjZDA2LzEvSTV4RjVEWWxVaUNBcnNVNVVwaWFFNktLdlFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi80YzQ4OTQtODBmYy00OGVmLWI2NjgtOTc1YTIzN2VjZDA2
LzEvSTV4RjVEWWxVaUNBcnNVNVVwaWFFNktLdlFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnVf+Ujbo
3/u3iJ10t9C79Y29pApW5BfNUbLLRdFT/r8fSCFEtVx7YR8WMkBpy3WJ7Dk3l6Hl
kR/ijZmKD2t4qzULYpyKcqHATHT8h2g+Z4fsvEt5g8ic58TVZZnyG/iNO23mxSdo
qUyvOwdisEFwTeHfhOnIFkVHDTHHtezHMlccMS+D9bKQZuHPm4DlgZcfAJp8VRn2
LSglXSSZOUGVe5OjcksO5pq5oAqVCY/t7dDD31sPd4goWAo+shD/CzkZ5BKwA+CN
O/r/1QDHSt4tVE1KZGL6Suz/yuDVbcrzFP3ZfwlQRol3LcpD+b2UfPCL/rgzHzcF
otlh5Tk2wCevWg==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:38:30 2024 by rpki-client on console-ams.rpki-client.org