Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
File: kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft (raw, json)
Hash identifier: mhu4p/MIwwKuNR3q3nEUuEtbWlPqSbzVjE4CrtPYA8I=
Subject key identifier: 48:19:BD:6F:17:48:B2:41:02:CA:91:58:E0:9B:02:DE:2C:EC:D7:D0
Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Certificate serial: 01936AEB9DFC60A239352F2DA65F892C4358
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
Manifest number: 1382
Signing time: Wed 27 Nov 2024 00:00:46 +0000
Manifest this update: Wed 27 Nov 2024 00:00:46 +0000
Manifest next update: Thu 28 Nov 2024 00:00:46 +0000
Files and hashes: 1: kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl (hash: hY/n0NIaHIjKVZqauKDDN874cwsdihE8pWKTZ3Wy0SU=)
2: vuY3gyX-gaFTnvgWA17X6nJR5IY.roa (hash: 6RvZTWoRAvIM8YPV0+qHdGRH0dO6505xms72gymMkAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:eb:9d:fc:60:a2:39:35:2f:2d:a6:5f:89:2c:43:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Validity
Not Before: Nov 27 00:00:46 2024 GMT
Not After : Nov 28 00:00:46 2024 GMT
Subject: CN=4819bd6f1748b24102ca9158e09b02de2cecd7d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:cc:9e:5f:5d:77:99:fa:e7:2b:7c:79:91:ad:
8a:15:1e:ec:53:f4:98:50:16:95:2a:1f:fa:d8:d5:
0b:8c:89:27:91:16:fb:68:5c:ee:5f:51:ec:47:0e:
75:fe:62:26:5f:e6:67:fa:9d:36:c8:4e:81:af:64:
f4:bf:99:6c:f2:17:30:3c:e0:a5:ff:ef:b5:55:98:
78:bd:39:7f:7e:1b:ec:5f:e1:4c:79:19:72:bb:fe:
0b:76:74:56:23:07:40:9a:c2:50:d4:4b:29:2e:37:
bd:31:87:a0:fe:5b:a3:35:96:6e:3f:a8:55:af:cd:
a0:ab:b5:5a:92:29:77:73:3d:82:a5:e3:00:cb:16:
f4:7e:04:d1:5c:7f:bd:fe:e0:33:ce:8f:cf:c7:ec:
e2:29:36:ac:5c:48:65:e9:97:94:d0:5c:a6:07:7f:
cf:cb:7d:ee:39:72:36:24:94:63:14:43:05:76:5d:
c6:5e:47:b2:8b:c0:7a:f9:3f:34:8b:d3:52:0b:db:
d1:b2:19:be:f1:8d:ba:9c:75:3b:b3:09:7a:d0:6b:
9e:7e:a1:aa:e8:e9:cc:33:d1:f1:02:41:1e:5b:84:
96:30:83:e4:6f:6e:13:b0:4d:0f:6c:47:35:cb:d2:
1e:e3:d8:49:cc:11:36:2c:b4:b1:d3:e4:e6:be:bd:
38:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:19:BD:6F:17:48:B2:41:02:CA:91:58:E0:9B:02:DE:2C:EC:D7:D0
X509v3 Authority Key Identifier:
keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:d8:2d:19:2f:ab:e5:91:9c:ce:78:5d:76:8d:ae:8f:f6:0e:
a2:85:9e:d7:b4:1c:1e:95:a1:bb:99:c7:38:b3:d4:e6:9b:15:
57:95:8f:1b:55:eb:dc:14:41:7c:56:b0:96:e2:48:84:71:c1:
ae:07:b5:7a:8c:c0:c9:8a:85:29:b5:44:e5:f7:5c:f8:3a:38:
2c:52:c3:eb:d9:41:8a:12:9a:aa:2d:23:7f:63:89:86:06:a2:
3f:2f:32:0f:49:c5:c5:e4:98:b4:fa:7c:67:37:23:5f:71:c6:
2a:4c:6c:5a:b8:94:60:6c:52:e1:66:09:e2:49:3f:e1:1d:86:
36:09:a4:66:82:d1:c5:20:50:38:85:a7:26:10:a1:4d:ae:fb:
39:9f:98:a4:94:7d:ca:40:0d:ce:8a:d3:7f:56:f0:4b:a9:54:
a0:41:d3:75:f5:17:93:3e:0f:a1:65:9d:1c:f7:e8:91:20:8e:
1f:5a:71:89:64:2d:09:b9:58:00:8c:32:81:3a:15:9f:4b:6e:
8a:59:e3:cf:22:48:00:39:04:8c:8c:3f:0d:94:eb:cc:3c:a5:
c3:cd:8b:9a:4e:82:fd:ca:a0:df:43:8d:d6:44:e1:e9:11:57:
e3:14:ae:86:b6:6b:64:0d:9b:d2:56:c3:5b:94:ca:e6:c9:4c:
79:66:d6:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNq6538YKI5NS8tpl+JLENYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxYzFjODViZjVjNTM0NzFhOTk3ZWY5ZmE5OTlkMGMxNmJl
ODU0NDQwHhcNMjQxMTI3MDAwMDQ2WhcNMjQxMTI4MDAwMDQ2WjAzMTEwLwYDVQQD
Eyg0ODE5YmQ2ZjE3NDhiMjQxMDJjYTkxNThlMDliMDJkZTJjZWNkN2QwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzcyeX113mfrnK3x5ka2KFR7sU/SY
UBaVKh/62NULjIknkRb7aFzuX1HsRw51/mImX+Zn+p02yE6Br2T0v5ls8hcwPOCl
/++1VZh4vTl/fhvsX+FMeRlyu/4LdnRWIwdAmsJQ1EspLje9MYeg/lujNZZuP6hV
r82gq7Vakil3cz2CpeMAyxb0fgTRXH+9/uAzzo/Px+ziKTasXEhl6ZeU0FymB3/P
y33uOXI2JJRjFEMFdl3GXkeyi8B6+T80i9NSC9vRshm+8Y26nHU7swl60GuefqGq
6OnMM9HxAkEeW4SWMIPkb24TsE0PbEc1y9Ie49hJzBE2LLSx0+Tmvr04ZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEgZvW8XSLJBAsqRWOCbAt4s7NfQMB8GA1UdIwQY
MBaAFJHByFv1xTRxqZfvn6mZ0MFr6FREMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2NISVdfWEZOSEdwbC0tZnFablF3V3ZvVkVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8wMzQ3ZDMtZTU0Yy00NGMwLThmN2Et
NDUxNDM3NGU2ZmZhLzEva2NISVdfWEZOSEdwbC0tZnFablF3V3ZvVkVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC8wMzQ3ZDMtZTU0Yy00NGMwLThmN2EtNDUxNDM3NGU2ZmZh
LzEva2NISVdfWEZOSEdwbC0tZnFablF3V3ZvVkVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMNgtGS+r
5ZGcznhddo2uj/YOooWe17QcHpWhu5nHOLPU5psVV5WPG1Xr3BRBfFawluJIhHHB
rge1eozAyYqFKbVE5fdc+Do4LFLD69lBihKaqi0jf2OJhgaiPy8yD0nFxeSYtPp8
ZzcjX3HGKkxsWriUYGxS4WYJ4kk/4R2GNgmkZoLRxSBQOIWnJhChTa77OZ+YpJR9
ykANzorTf1bwS6lUoEHTdfUXkz4PoWWdHPfokSCOH1pxiWQtCblYAIwygToVn0tu
ilnjzyJIADkEjIw/DZTrzDylw82Lmk6C/cqg30ON1kTh6RFX4xSuhrZrZA2b0lbD
W5TK5slMeWbWug==
-----END CERTIFICATE-----
Generated at Wed Nov 27 02:48:55 2024 by rpki-client on console-fra.rpki-client.org