Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
File: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft (raw, json)
Hash identifier: O0obqFDVROjVv0kRU90E1bQzDfdvEiyzE8kks/51mmg=
Subject key identifier: 2F:1C:E5:17:7D:C5:AC:9E:D7:26:41:B8:B9:9D:70:C4:49:7C:03:25
Authority key identifier: 3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
Certificate issuer: /CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Certificate serial: 019359C135A782B1BE5E97710A8C01577921
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
Manifest number: 0639
Signing time: Sat 23 Nov 2024 16:00:54 +0000
Manifest this update: Sat 23 Nov 2024 16:00:54 +0000
Manifest next update: Sun 24 Nov 2024 16:00:54 +0000
Files and hashes: 1: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl (hash: c3p0o9PZUSG0SDhSWmdQ5aWBNBcbCRbbzJ2Hhwq52Po=)
2: g0VDF22EfLFXopEQTAJQttSztkg.roa (hash: LKXkY/yH3o98KgY5c4kmYTLTNkRgi2s8EnYBmKgfNaM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:59:c1:35:a7:82:b1:be:5e:97:71:0a:8c:01:57:79:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Validity
Not Before: Nov 23 16:00:54 2024 GMT
Not After : Nov 24 16:00:54 2024 GMT
Subject: CN=2f1ce5177dc5ac9ed72641b8b99d70c4497c0325
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e8:1c:b7:94:a6:df:df:30:66:0c:4f:0b:86:
7d:fc:3a:53:59:5c:d7:fe:0d:71:64:4d:c5:f0:a0:
26:e5:64:27:8b:87:70:e2:93:a6:8c:82:53:a5:db:
43:db:4c:40:7a:39:34:e2:d8:10:7c:79:94:99:8e:
34:4e:44:03:61:67:48:a1:67:4c:fe:4b:d4:12:9b:
4c:46:cd:83:44:c9:e4:6f:5e:0c:44:62:77:59:c7:
28:4e:e7:e9:fb:a9:8e:81:7c:30:67:98:bd:60:f5:
dd:78:a0:b0:d5:33:ef:12:98:54:06:ed:b1:c5:e4:
44:68:7a:4a:23:5a:2d:06:e9:93:08:68:df:61:6f:
64:a8:77:ff:bc:3d:cd:43:4e:d3:e7:ca:fb:96:43:
7a:56:83:d4:3e:16:98:6b:6b:e8:26:03:0e:b2:47:
4d:3e:14:d2:61:ef:48:84:75:cb:1e:41:86:41:42:
ea:a2:45:b4:ca:8e:f7:44:2a:b4:b9:ed:19:04:92:
bd:f2:26:cb:07:c0:fa:45:37:12:54:e0:f5:02:ee:
65:6a:61:64:86:00:76:2f:e9:6d:cb:30:b4:0d:67:
11:ac:b1:c4:e8:ee:8b:6d:de:85:6a:9f:3d:c4:36:
30:08:cc:91:c0:b2:1f:4b:9c:8e:7e:ed:77:5d:32:
b1:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:1C:E5:17:7D:C5:AC:9E:D7:26:41:B8:B9:9D:70:C4:49:7C:03:25
X509v3 Authority Key Identifier:
keyid:3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:fc:73:7b:7c:d8:b0:9d:63:ca:eb:02:80:d2:eb:bd:05:72:
88:6e:f4:7f:17:fd:4f:77:ea:27:c3:be:d3:08:33:e1:9e:3c:
a3:1e:fa:9e:a2:e6:b0:49:ef:33:ba:18:00:42:0e:50:c8:3e:
1d:65:19:24:3d:5f:83:7e:4f:ba:99:bc:1d:e2:18:e9:7c:15:
c6:dc:1d:c6:31:de:fc:44:5e:e4:e5:79:fd:8a:cf:80:af:1e:
c2:2f:b2:00:a0:b4:d8:ee:6d:ff:f7:1c:68:d4:88:aa:b8:b8:
e9:9c:08:83:f5:fa:ea:ac:32:33:c7:6c:00:7b:99:b2:12:91:
51:f2:a6:11:7f:07:90:78:52:46:2d:01:25:e1:43:ae:77:40:
55:21:84:02:8f:0e:44:88:41:10:56:54:b2:ad:4d:23:f3:4d:
aa:95:1e:b4:7e:63:29:6b:36:44:11:07:bb:35:83:26:c0:21:
3a:01:53:4c:c8:48:84:e4:b2:84:ce:7c:d8:88:87:b1:8a:bd:
f0:d2:1e:db:35:28:44:67:66:39:68:26:bd:c9:7d:7f:ef:a9:
87:68:7e:2d:ff:aa:7c:68:1f:00:79:c2:2c:b7:e0:db:09:57:
69:8d:55:01:f3:74:ab:6b:7c:cd:00:06:d8:04:73:c7:e4:94:
aa:6d:09:34
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNZwTWngrG+XpdxCowBV3khMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkODk3YmQ4YzZkZjFjYjcxNDEwZmUxOTRiZWQ3MzlhMmY4
YTY3NzMwHhcNMjQxMTIzMTYwMDU0WhcNMjQxMTI0MTYwMDU0WjAzMTEwLwYDVQQD
EygyZjFjZTUxNzdkYzVhYzllZDcyNjQxYjhiOTlkNzBjNDQ5N2MwMzI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjegct5Sm398wZgxPC4Z9/DpTWVzX
/g1xZE3F8KAm5WQni4dw4pOmjIJTpdtD20xAejk04tgQfHmUmY40TkQDYWdIoWdM
/kvUEptMRs2DRMnkb14MRGJ3WccoTufp+6mOgXwwZ5i9YPXdeKCw1TPvEphUBu2x
xeREaHpKI1otBumTCGjfYW9kqHf/vD3NQ07T58r7lkN6VoPUPhaYa2voJgMOskdN
PhTSYe9IhHXLHkGGQULqokW0yo73RCq0ue0ZBJK98ibLB8D6RTcSVOD1Au5lamFk
hgB2L+ltyzC0DWcRrLHE6O6Lbd6Fap89xDYwCMyRwLIfS5yOfu13XTKx2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC8c5Rd9xaye1yZBuLmdcMRJfAMlMB8GA1UdIwQY
MBaAFD2Je9jG3xy3FBD+GUvtc5ovimdzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFlsNzJNYmZITGNVRVA0WlMtMXptaS1LWjNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi81NDcxZjgtYzkzOC00MGNjLWIxMzkt
ZjlmOTIxNTBjZDM5LzEvUFlsNzJNYmZITGNVRVA0WlMtMXptaS1LWjNNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi81NDcxZjgtYzkzOC00MGNjLWIxMzktZjlmOTIxNTBjZDM5
LzEvUFlsNzJNYmZITGNVRVA0WlMtMXptaS1LWjNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtvxze3zY
sJ1jyusCgNLrvQVyiG70fxf9T3fqJ8O+0wgz4Z48ox76nqLmsEnvM7oYAEIOUMg+
HWUZJD1fg35Pupm8HeIY6XwVxtwdxjHe/ERe5OV5/YrPgK8ewi+yAKC02O5t//cc
aNSIqri46ZwIg/X66qwyM8dsAHuZshKRUfKmEX8HkHhSRi0BJeFDrndAVSGEAo8O
RIhBEFZUsq1NI/NNqpUetH5jKWs2RBEHuzWDJsAhOgFTTMhIhOSyhM582IiHsYq9
8NIe2zUoRGdmOWgmvcl9f++ph2h+Lf+qfGgfAHnCLLfg2wlXaY1VAfN0q2t8zQAG
2ARzx+SUqm0JNA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:20 2024 by rpki-client on console-ams.rpki-client.org