Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
File: tZXiFxdovJspQknw46U1kBecUu4.mft (raw, json)
Hash identifier: cj41KqIh2Zy8H/MbR7vRTrpYaDmUlVBRt6qgJZuOsO8=
Subject key identifier: FA:FE:67:6C:08:F1:C0:A5:87:DB:42:8E:3A:19:66:38:1D:6C:E9:5F
Authority key identifier: B5:95:E2:17:17:68:BC:9B:29:42:49:F0:E3:A5:35:90:17:9C:52:EE
Certificate issuer: /CN=b595e2171768bc9b294249f0e3a53590179c52ee
Certificate serial: 0193568AD88921FDD9B468C3CCCF9260B349
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
Manifest number: 1372
Signing time: Sat 23 Nov 2024 01:02:40 +0000
Manifest this update: Sat 23 Nov 2024 01:02:40 +0000
Manifest next update: Sun 24 Nov 2024 01:02:40 +0000
Files and hashes: 1: tZXiFxdovJspQknw46U1kBecUu4.crl (hash: lpV2nccp3bRi3+1R+bypa/Jk11sDDRpRL2KeHg0ANRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:d8:89:21:fd:d9:b4:68:c3:cc:cf:92:60:b3:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b595e2171768bc9b294249f0e3a53590179c52ee
Validity
Not Before: Nov 23 01:02:40 2024 GMT
Not After : Nov 24 01:02:40 2024 GMT
Subject: CN=fafe676c08f1c0a587db428e3a1966381d6ce95f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:89:97:b6:34:f5:a2:1e:64:42:77:44:68:47:
26:20:22:94:83:e3:34:e6:80:88:10:60:60:25:94:
42:90:bf:44:b2:f9:f1:00:ca:fb:92:1d:20:c7:0d:
87:a2:81:93:84:68:d6:2e:d1:46:6c:d1:85:a9:ca:
3d:00:1d:7c:63:e5:e2:a4:b4:c7:6f:3d:ac:bf:7b:
9c:65:64:54:e7:f0:b9:90:7f:ad:ed:2c:d4:c8:b7:
29:59:84:fa:82:c5:27:b0:d8:ed:79:2f:00:86:20:
e9:8e:71:3e:fa:e0:e4:11:35:5c:bb:6a:09:77:8a:
10:f5:31:da:f9:c7:d6:87:31:63:19:a3:8a:56:0a:
0e:cc:72:da:41:05:a6:3e:14:80:03:53:78:ce:f8:
0d:ae:f9:29:f5:81:75:51:cd:6c:6a:00:53:d7:04:
cf:a7:e1:7b:22:12:ea:6e:33:4c:bc:ed:88:46:9e:
55:bd:65:6d:32:11:4c:bc:42:e0:63:8b:17:89:4d:
6e:b8:56:bd:c7:7a:41:19:6e:09:f6:eb:36:82:19:
04:bf:0c:00:b9:de:60:49:f4:a7:3f:08:91:0d:58:
64:ef:e3:c2:a5:89:83:89:3e:e8:a1:d5:ce:ff:a2:
b5:b5:8b:b9:b4:7f:c7:e7:f0:f4:57:1a:14:f7:58:
b3:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:FE:67:6C:08:F1:C0:A5:87:DB:42:8E:3A:19:66:38:1D:6C:E9:5F
X509v3 Authority Key Identifier:
keyid:B5:95:E2:17:17:68:BC:9B:29:42:49:F0:E3:A5:35:90:17:9C:52:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:e4:f5:70:14:89:01:da:59:0c:9b:c3:55:1b:0d:78:b4:2f:
1e:86:d3:c4:cd:4f:c2:a8:5b:b1:b5:40:dd:5e:6f:f7:0e:7c:
a5:fc:ef:d7:c4:40:ac:9a:3d:bc:c7:0e:f0:ce:b8:27:a9:2e:
20:18:2c:5a:d2:ce:2b:8f:64:77:e9:29:d9:4e:ff:e2:dc:64:
fd:26:08:45:a8:cf:f9:cf:3a:6c:82:61:ec:ad:24:ff:85:9c:
b9:84:a5:29:bd:e5:7f:64:77:19:cf:5b:40:94:8e:9e:61:41:
b4:c2:69:39:39:28:e2:07:f5:7c:81:39:30:6b:b2:f5:c1:47:
3d:95:17:fa:0c:2c:ee:51:7c:bb:6f:74:d4:22:9a:d7:9b:67:
12:f1:78:4b:00:3e:b4:2d:93:b9:d8:69:41:7c:0b:cf:56:64:
e3:0a:34:34:22:14:b6:c8:a5:0e:53:af:d5:dd:10:19:6d:73:
b6:17:dd:c0:14:c2:69:3d:f9:ab:1b:d7:49:7e:ab:40:ef:0e:
41:57:4e:46:35:31:3f:d1:b5:e3:e0:20:8c:b6:0c:ac:01:af:
4c:0f:34:dc:28:fe:e7:3e:37:b7:91:4f:e3:65:5f:05:09:43:
46:e3:42:3e:77:ea:97:a2:12:98:05:6f:ed:27:2f:14:8b:0b:
fd:de:fe:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNWitiJIf3ZtGjDzM+SYLNJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1OTVlMjE3MTc2OGJjOWIyOTQyNDlmMGUzYTUzNTkwMTc5
YzUyZWUwHhcNMjQxMTIzMDEwMjQwWhcNMjQxMTI0MDEwMjQwWjAzMTEwLwYDVQQD
EyhmYWZlNjc2YzA4ZjFjMGE1ODdkYjQyOGUzYTE5NjYzODFkNmNlOTVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm4mXtjT1oh5kQndEaEcmICKUg+M0
5oCIEGBgJZRCkL9EsvnxAMr7kh0gxw2HooGThGjWLtFGbNGFqco9AB18Y+XipLTH
bz2sv3ucZWRU5/C5kH+t7SzUyLcpWYT6gsUnsNjteS8AhiDpjnE++uDkETVcu2oJ
d4oQ9THa+cfWhzFjGaOKVgoOzHLaQQWmPhSAA1N4zvgNrvkp9YF1Uc1sagBT1wTP
p+F7IhLqbjNMvO2IRp5VvWVtMhFMvELgY4sXiU1uuFa9x3pBGW4J9us2ghkEvwwA
ud5gSfSnPwiRDVhk7+PCpYmDiT7oodXO/6K1tYu5tH/H5/D0VxoU91izHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPr+Z2wI8cClh9tCjjoZZjgdbOlfMB8GA1UdIwQY
MBaAFLWV4hcXaLybKUJJ8OOlNZAXnFLuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFpYaUZ4ZG92SnNwUWtudzQ2VTFrQmVjVXU0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC9hMzRmYjktZjY0ZS00MjkxLTkyOTEt
NjBiNGFjZTAwNGI1LzEvdFpYaUZ4ZG92SnNwUWtudzQ2VTFrQmVjVXU0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC9hMzRmYjktZjY0ZS00MjkxLTkyOTEtNjBiNGFjZTAwNGI1
LzEvdFpYaUZ4ZG92SnNwUWtudzQ2VTFrQmVjVXU0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbOT1cBSJ
AdpZDJvDVRsNeLQvHobTxM1PwqhbsbVA3V5v9w58pfzv18RArJo9vMcO8M64J6ku
IBgsWtLOK49kd+kp2U7/4txk/SYIRajP+c86bIJh7K0k/4WcuYSlKb3lf2R3Gc9b
QJSOnmFBtMJpOTko4gf1fIE5MGuy9cFHPZUX+gws7lF8u2901CKa15tnEvF4SwA+
tC2TudhpQXwLz1Zk4wo0NCIUtsilDlOv1d0QGW1zthfdwBTCaT35qxvXSX6rQO8O
QVdORjUxP9G14+AgjLYMrAGvTA803Cj+5z43t5FP42VfBQlDRuNCPnfql6ISmAVv
7ScvFIsL/d7+0w==
-----END CERTIFICATE-----
Generated at Sat Nov 23 09:57:51 2024 by rpki-client on console-fra.rpki-client.org