Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.mft
File: 2lNAluw_e_xU1lT84PAWitlmIs0.mft (raw, json)
Hash identifier: TrmKjD/e1O9g8b+4NqmkVVZUEju+Yy0RAo//+gDUTc0=
Subject key identifier: DE:2A:7C:07:9F:08:BB:38:7F:C1:1A:3A:35:EF:95:13:01:5A:55:E3
Authority key identifier: DA:53:40:96:EC:3F:7B:FC:54:D6:54:FC:E0:F0:16:8A:D9:66:22:CD
Certificate issuer: /CN=da534096ec3f7bfc54d654fce0f0168ad96622cd
Certificate serial: 0193580945CD2C2F029E997034CF83E03B28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2lNAluw_e_xU1lT84PAWitlmIs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.mft
Manifest number: D7
Signing time: Sat 23 Nov 2024 08:00:22 +0000
Manifest this update: Sat 23 Nov 2024 08:00:22 +0000
Manifest next update: Sun 24 Nov 2024 08:00:22 +0000
Files and hashes: 1: 2lNAluw_e_xU1lT84PAWitlmIs0.crl (hash: CQnpUHjJW8B8AM5bfldQbUDr6SLr4W3Da44//nl+D5A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2lNAluw_e_xU1lT84PAWitlmIs0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:09:45:cd:2c:2f:02:9e:99:70:34:cf:83:e0:3b:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da534096ec3f7bfc54d654fce0f0168ad96622cd
Validity
Not Before: Nov 23 08:00:22 2024 GMT
Not After : Nov 24 08:00:22 2024 GMT
Subject: CN=de2a7c079f08bb387fc11a3a35ef9513015a55e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:bc:e1:32:0c:34:a0:60:db:c8:6c:d2:b1:09:
c1:f6:03:38:4c:47:5e:1e:e3:82:8d:9c:63:47:4d:
9c:8f:a4:55:52:ad:e4:4e:22:db:6b:18:90:c2:e6:
a2:27:86:46:12:8f:43:d4:8d:c7:3b:9a:43:ff:da:
1b:7c:aa:e6:a3:5b:ba:57:88:99:27:5f:33:37:04:
68:dc:05:97:86:06:af:55:1a:22:db:bf:ff:6c:e0:
e6:bc:2e:db:bf:3f:b9:ea:ef:d0:9c:90:3e:bf:11:
3d:6a:43:e7:99:90:15:bc:e5:8c:fe:90:5a:a5:7c:
da:59:cf:b8:54:29:0d:8d:9c:b6:4e:8d:fb:32:ab:
e1:80:23:3c:0c:c7:8f:d1:e7:2d:aa:6f:6e:bb:09:
a3:7b:ab:d2:62:35:fb:c5:69:39:74:0b:53:be:6a:
a9:cd:a0:2a:7e:72:e5:43:be:42:d1:0e:28:cc:5c:
49:e8:c8:6c:e0:23:42:87:f4:ac:64:bb:89:b1:1b:
e0:d9:ee:bc:63:68:ec:55:87:b9:19:49:38:0f:57:
1f:db:10:69:e0:aa:e7:d3:d4:7c:ab:26:58:f0:ca:
52:5f:a9:fa:41:45:94:a6:7f:57:ba:e7:ee:04:18:
91:3f:b5:32:8c:41:0b:bd:01:da:ee:ac:dd:64:c3:
46:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:2A:7C:07:9F:08:BB:38:7F:C1:1A:3A:35:EF:95:13:01:5A:55:E3
X509v3 Authority Key Identifier:
keyid:DA:53:40:96:EC:3F:7B:FC:54:D6:54:FC:E0:F0:16:8A:D9:66:22:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2lNAluw_e_xU1lT84PAWitlmIs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:de:28:e4:f5:5b:0f:ba:25:e2:fe:7d:94:65:19:95:d6:5a:
89:d4:59:1b:77:17:48:35:e5:28:05:33:72:2c:f4:30:a3:5e:
bf:68:bc:d8:0b:18:02:8e:48:df:6e:93:eb:12:58:13:5f:94:
c8:e1:16:ea:fd:8e:0c:3f:21:d1:ed:80:e6:79:ea:2c:06:09:
37:44:e4:e8:dc:f5:6b:ae:f4:19:64:4b:81:f3:3a:55:f9:07:
1d:28:77:4e:c6:89:56:56:39:58:da:07:75:d8:53:e2:6b:07:
3b:45:9a:0c:47:ec:db:0b:55:36:2b:93:34:97:bc:3c:40:bd:
d6:86:11:5b:cd:0f:5a:1d:d4:a6:4b:6b:74:26:19:4c:b3:85:
47:73:44:b8:0c:42:25:55:77:56:f9:b5:ea:6f:d0:f7:8c:67:
eb:7c:86:dc:42:72:61:ed:30:39:3f:a0:d5:b2:41:40:5c:92:
33:63:01:d7:7f:52:a4:db:b7:dc:e7:5f:b9:74:86:c7:78:d0:
4c:3f:16:fd:fa:ae:8e:01:81:a7:44:90:9a:53:91:f0:01:d3:
4d:11:d8:e6:0d:17:9a:7f:4e:30:72:9f:ad:41:79:b9:c5:6c:
ad:87:cc:f3:a6:66:d8:db:f1:12:3f:8c:7e:b9:10:ed:cb:d9:
8b:5d:ff:f3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNYCUXNLC8CnplwNM+D4DsoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhNTM0MDk2ZWMzZjdiZmM1NGQ2NTRmY2UwZjAxNjhhZDk2
NjIyY2QwHhcNMjQxMTIzMDgwMDIyWhcNMjQxMTI0MDgwMDIyWjAzMTEwLwYDVQQD
EyhkZTJhN2MwNzlmMDhiYjM4N2ZjMTFhM2EzNWVmOTUxMzAxNWE1NWUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvbzhMgw0oGDbyGzSsQnB9gM4TEde
HuOCjZxjR02cj6RVUq3kTiLbaxiQwuaiJ4ZGEo9D1I3HO5pD/9obfKrmo1u6V4iZ
J18zNwRo3AWXhgavVRoi27//bODmvC7bvz+56u/QnJA+vxE9akPnmZAVvOWM/pBa
pXzaWc+4VCkNjZy2To37MqvhgCM8DMeP0ectqm9uuwmje6vSYjX7xWk5dAtTvmqp
zaAqfnLlQ75C0Q4ozFxJ6Mhs4CNCh/SsZLuJsRvg2e68Y2jsVYe5GUk4D1cf2xBp
4Krn09R8qyZY8MpSX6n6QUWUpn9XuufuBBiRP7UyjEELvQHa7qzdZMNGpQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN4qfAefCLs4f8EaOjXvlRMBWlXjMB8GA1UdIwQY
MBaAFNpTQJbsP3v8VNZU/ODwForZZiLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmxOQWx1d19lX3hVMWxUODRQQVdpdGxtSXMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi80MDUyYjUtYjU5ZS00MzNmLTg3YWEt
ODZmMmExYWY0ZDc5LzEvMmxOQWx1d19lX3hVMWxUODRQQVdpdGxtSXMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi80MDUyYjUtYjU5ZS00MzNmLTg3YWEtODZmMmExYWY0ZDc5
LzEvMmxOQWx1d19lX3hVMWxUODRQQVdpdGxtSXMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARd4o5PVb
D7ol4v59lGUZldZaidRZG3cXSDXlKAUzciz0MKNev2i82AsYAo5I326T6xJYE1+U
yOEW6v2ODD8h0e2A5nnqLAYJN0Tk6Nz1a670GWRLgfM6VfkHHSh3TsaJVlY5WNoH
ddhT4msHO0WaDEfs2wtVNiuTNJe8PEC91oYRW80PWh3UpktrdCYZTLOFR3NEuAxC
JVV3Vvm16m/Q94xn63yG3EJyYe0wOT+g1bJBQFySM2MB139SpNu33OdfuXSGx3jQ
TD8W/fqujgGBp0SQmlOR8AHTTRHY5g0Xmn9OMHKfrUF5ucVsrYfM86Zm2NvxEj+M
frkQ7cvZi13/8w==
-----END CERTIFICATE-----
Generated at Sat Nov 23 09:57:39 2024 by rpki-client on console-fra.rpki-client.org