Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/964035-381a-41b0-9fdd-f65d33a9926b/1/_FlUn23SuDFEuIDCPwb7o7JdOYY.mft
File: _FlUn23SuDFEuIDCPwb7o7JdOYY.mft (raw, json)
Hash identifier: ojz4au8ykPNUZ/zLFmbe//TgQWwG5qBBzz/Q4Z4CVwg=
Subject key identifier: 27:C9:E1:7D:B1:CF:CC:AD:8E:6E:BB:3D:64:3D:10:AB:C1:80:7C:52
Authority key identifier: FC:59:54:9F:6D:D2:B8:31:44:B8:80:C2:3F:06:FB:A3:B2:5D:39:86
Certificate issuer: /CN=fc59549f6dd2b83144b880c23f06fba3b25d3986
Certificate serial: 0193579BDDF596CF69EDED82A644AB90F09D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_FlUn23SuDFEuIDCPwb7o7JdOYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/964035-381a-41b0-9fdd-f65d33a9926b/1/_FlUn23SuDFEuIDCPwb7o7JdOYY.mft
Manifest number: 0D6B
Signing time: Sat 23 Nov 2024 06:00:52 +0000
Manifest this update: Sat 23 Nov 2024 06:00:52 +0000
Manifest next update: Sun 24 Nov 2024 06:00:52 +0000
Files and hashes: 1: MVMZ2o9W57Vd7ES0109m7bb9o9g.roa (hash: pTusHSPh9Yp2w2mVckxpXNmaV7Fk1w0f7YjS2oKfm5w=)
2: _FlUn23SuDFEuIDCPwb7o7JdOYY.crl (hash: S2sNt1Op+Sd1O7Xjp/vsAsj+SX5jXi+ybKLYW+DI5w8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/964035-381a-41b0-9fdd-f65d33a9926b/1/_FlUn23SuDFEuIDCPwb7o7JdOYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/964035-381a-41b0-9fdd-f65d33a9926b/1/_FlUn23SuDFEuIDCPwb7o7JdOYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/_FlUn23SuDFEuIDCPwb7o7JdOYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:dd:f5:96:cf:69:ed:ed:82:a6:44:ab:90:f0:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc59549f6dd2b83144b880c23f06fba3b25d3986
Validity
Not Before: Nov 23 06:00:52 2024 GMT
Not After : Nov 24 06:00:52 2024 GMT
Subject: CN=27c9e17db1cfccad8e6ebb3d643d10abc1807c52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:1d:19:7b:25:8e:d9:eb:1b:1e:52:19:b0:2c:
ed:cd:9a:67:d4:d9:37:88:2a:27:a5:7b:89:33:0b:
26:99:9b:d9:a4:c4:e3:67:9e:6d:8d:7b:32:c4:1b:
29:04:b8:51:02:a2:fb:46:6d:e8:b0:7a:b9:a8:f2:
c9:fa:a3:45:be:97:bb:08:47:bf:86:63:98:7d:a8:
c3:32:4a:c6:8d:73:a6:60:91:5a:3d:8d:e0:ab:f5:
d6:10:34:13:1f:b9:d5:cd:e3:e9:a4:be:f2:df:be:
03:09:ef:99:d4:c1:ab:c5:39:70:38:a6:e9:80:40:
aa:a6:98:cc:60:53:32:ea:a9:b4:30:99:6c:07:ff:
48:58:9c:91:3f:73:7b:95:32:c5:2b:88:84:30:36:
29:61:72:71:a1:2a:5b:b9:c2:8d:3b:c2:a5:80:c4:
49:56:8d:71:8c:bb:f1:8e:89:6b:81:1e:8a:19:86:
6c:25:10:6d:5b:60:77:aa:89:1b:cb:a5:4c:bb:e3:
84:49:61:27:5b:d3:45:9f:4c:13:22:f6:43:37:05:
97:45:95:e7:4e:8c:b2:79:a2:f0:45:bf:a5:27:32:
d2:0b:ac:d7:41:ff:cf:7a:3f:e8:5b:3e:1a:d5:75:
cd:b8:ad:12:19:c6:18:f4:13:b8:54:07:8c:49:81:
39:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:C9:E1:7D:B1:CF:CC:AD:8E:6E:BB:3D:64:3D:10:AB:C1:80:7C:52
X509v3 Authority Key Identifier:
keyid:FC:59:54:9F:6D:D2:B8:31:44:B8:80:C2:3F:06:FB:A3:B2:5D:39:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FlUn23SuDFEuIDCPwb7o7JdOYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/964035-381a-41b0-9fdd-f65d33a9926b/1/_FlUn23SuDFEuIDCPwb7o7JdOYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/964035-381a-41b0-9fdd-f65d33a9926b/1/_FlUn23SuDFEuIDCPwb7o7JdOYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:45:3f:f5:26:18:3c:13:dc:bb:f6:f1:53:5c:b4:fd:23:ba:
93:fc:de:53:b4:6c:c6:e7:48:43:80:11:8e:df:83:4f:d6:75:
b6:89:a3:cc:ae:ac:29:03:e5:af:d0:fc:4f:61:c9:aa:a5:1f:
49:43:30:8e:ea:00:51:3d:f0:e7:2b:79:17:49:b0:76:9d:4f:
2f:44:1c:0f:b4:a7:0d:ff:53:ee:a2:25:a6:84:e9:3c:64:13:
8e:72:6b:08:27:79:b4:06:7d:c6:78:4b:f9:68:3b:bd:7e:4a:
87:eb:f6:de:00:b7:24:ba:c8:e2:14:02:d0:fc:73:ef:1e:d6:
a1:47:d1:42:98:1b:ed:cc:30:52:ae:da:6c:25:cc:a8:f6:d1:
f7:87:49:aa:39:f5:f6:11:04:31:5b:99:e7:36:cd:60:f2:4c:
09:1c:13:9d:8d:99:47:7f:a4:58:e9:e4:60:d0:d5:dd:9d:83:
22:6d:4f:1f:40:d3:0f:5e:89:7a:3c:56:be:18:a3:9c:f5:c4:
02:78:74:40:3e:ad:fb:66:93:b6:42:7c:1f:4c:aa:06:eb:74:
49:ba:e0:7a:1c:2c:0e:11:be:a7:1a:37:75:e4:24:b2:0a:c3:
d3:41:da:f6:8f:3c:d2:5e:6d:b3:5d:00:db:fd:a5:dd:0f:d9:
81:3f:cc:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNXm931ls9p7e2CpkSrkPCdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZjNTk1NDlmNmRkMmI4MzE0NGI4ODBjMjNmMDZmYmEzYjI1
ZDM5ODYwHhcNMjQxMTIzMDYwMDUyWhcNMjQxMTI0MDYwMDUyWjAzMTEwLwYDVQQD
EygyN2M5ZTE3ZGIxY2ZjY2FkOGU2ZWJiM2Q2NDNkMTBhYmMxODA3YzUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmx0ZeyWO2esbHlIZsCztzZpn1Nk3
iConpXuJMwsmmZvZpMTjZ55tjXsyxBspBLhRAqL7Rm3osHq5qPLJ+qNFvpe7CEe/
hmOYfajDMkrGjXOmYJFaPY3gq/XWEDQTH7nVzePppL7y374DCe+Z1MGrxTlwOKbp
gECqppjMYFMy6qm0MJlsB/9IWJyRP3N7lTLFK4iEMDYpYXJxoSpbucKNO8KlgMRJ
Vo1xjLvxjolrgR6KGYZsJRBtW2B3qokby6VMu+OESWEnW9NFn0wTIvZDNwWXRZXn
ToyyeaLwRb+lJzLSC6zXQf/Pej/oWz4a1XXNuK0SGcYY9BO4VAeMSYE5tQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCfJ4X2xz8ytjm67PWQ9EKvBgHxSMB8GA1UdIwQY
MBaAFPxZVJ9t0rgxRLiAwj8G+6OyXTmGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX0ZsVW4yM1N1REZFdUlEQ1B3YjdvN0pkT1lZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy85NjQwMzUtMzgxYS00MWIwLTlmZGQt
ZjY1ZDMzYTk5MjZiLzEvX0ZsVW4yM1N1REZFdUlEQ1B3YjdvN0pkT1lZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy85NjQwMzUtMzgxYS00MWIwLTlmZGQtZjY1ZDMzYTk5MjZi
LzEvX0ZsVW4yM1N1REZFdUlEQ1B3YjdvN0pkT1lZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOEU/9SYY
PBPcu/bxU1y0/SO6k/zeU7RsxudIQ4ARjt+DT9Z1tomjzK6sKQPlr9D8T2HJqqUf
SUMwjuoAUT3w5yt5F0mwdp1PL0QcD7SnDf9T7qIlpoTpPGQTjnJrCCd5tAZ9xnhL
+Wg7vX5Kh+v23gC3JLrI4hQC0Pxz7x7WoUfRQpgb7cwwUq7abCXMqPbR94dJqjn1
9hEEMVuZ5zbNYPJMCRwTnY2ZR3+kWOnkYNDV3Z2DIm1PH0DTD16JejxWvhijnPXE
Anh0QD6t+2aTtkJ8H0yqBut0SbrgehwsDhG+pxo3deQksgrD00Ha9o880l5ts10A
2/2l3Q/ZgT/MUw==
-----END CERTIFICATE-----