Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft
File: CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft (raw, json)
Hash identifier: yQkeEdjSoGXDc18kI9/BUf/cKiXtwuaLnwVsnyAZ9jg=
Subject key identifier: 8A:8D:E2:98:B7:AE:5D:E6:70:AF:CE:B7:EC:57:A6:F9:C9:F9:77:47
Authority key identifier: 08:A5:C3:AB:A4:21:B7:8A:7D:5D:09:B7:5B:4C:E3:BE:52:73:CA:AC
Certificate issuer: /CN=08a5c3aba421b78a7d5d09b75b4ce3be5273caac
Certificate serial: 019356894E971FC8928D3ECDAB1780A299FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft
Manifest number: 1375
Signing time: Sat 23 Nov 2024 01:00:59 +0000
Manifest this update: Sat 23 Nov 2024 01:00:59 +0000
Manifest next update: Sun 24 Nov 2024 01:00:59 +0000
Files and hashes: 1: CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl (hash: JTcKFxHbPq1Ha6h/g9KpvtGRrR1SKjKnQ0EyS+9LYa8=)
2: biaZMBJdBOPx2FHlzf8QzqNWSW4.roa (hash: R6EFt2yzO/6cvZjM+UoPUQd1LR5tVrN3Lm9Q4bu+Nzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:4e:97:1f:c8:92:8d:3e:cd:ab:17:80:a2:99:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a5c3aba421b78a7d5d09b75b4ce3be5273caac
Validity
Not Before: Nov 23 01:00:59 2024 GMT
Not After : Nov 24 01:00:59 2024 GMT
Subject: CN=8a8de298b7ae5de670afceb7ec57a6f9c9f97747
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:02:51:f1:7c:ab:8e:3d:52:92:cd:39:2b:89:
77:16:21:d9:69:b3:c6:e2:b8:1f:68:9c:64:0a:7c:
c7:ca:d8:1b:af:e1:6d:64:a4:1e:70:c9:e4:46:19:
88:f8:b9:e6:77:ee:84:46:e1:11:5d:5a:69:bd:43:
e0:ac:7c:1e:6a:59:11:2c:75:be:07:58:91:63:df:
05:16:01:4d:fb:7d:f7:8f:3a:78:d8:32:57:64:f0:
d5:f3:03:fa:ab:21:1a:30:54:9f:24:e9:4e:6e:a4:
e4:40:6c:94:a2:5a:23:b8:12:55:2d:47:d9:e0:b0:
5b:0a:5b:f5:7e:f8:7a:27:2a:0e:d6:47:9f:94:20:
31:8a:11:ed:c4:31:50:f7:51:15:36:dc:43:25:fc:
a3:e0:53:36:d5:f0:62:61:5a:3e:dd:e3:7d:03:bd:
f9:7e:4f:ba:2e:2d:0e:20:2d:56:02:c0:4a:38:68:
54:5d:e5:a2:0e:0b:49:45:64:f7:97:7d:2f:eb:b6:
ff:a7:83:69:b9:12:4f:a9:ff:ff:f1:01:de:26:0e:
29:ff:62:28:a4:98:dd:11:1b:b1:fb:cc:b2:1f:88:
69:25:bd:6d:75:b2:ac:e9:ef:8d:89:d2:7d:a7:14:
a0:77:5b:e6:ff:15:66:a5:8b:9e:c2:bb:57:ed:b5:
8e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:8D:E2:98:B7:AE:5D:E6:70:AF:CE:B7:EC:57:A6:F9:C9:F9:77:47
X509v3 Authority Key Identifier:
keyid:08:A5:C3:AB:A4:21:B7:8A:7D:5D:09:B7:5B:4C:E3:BE:52:73:CA:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:39:6f:f8:f7:88:c1:97:7f:0f:d9:a0:15:d9:39:e9:7e:88:
9a:62:65:b3:96:32:79:13:92:e2:dd:9b:c9:07:d6:60:49:74:
a3:06:d7:c8:cb:40:48:ef:91:1a:4f:e1:1b:b2:04:ae:70:51:
7b:1a:8d:4e:d7:f9:69:ec:30:37:4e:24:a2:82:7d:57:b6:9e:
01:bf:58:b7:61:dc:08:6a:87:ba:88:48:18:d0:fd:cd:ed:bb:
68:d6:81:3d:a4:59:2c:24:a4:f1:b6:8b:4a:2f:93:da:94:e9:
21:33:a6:eb:94:71:81:03:68:ea:b9:07:93:fb:9f:4c:be:47:
14:e9:18:bb:2a:df:2a:87:f9:35:3a:6c:1c:9c:f7:06:32:6f:
c5:68:56:2f:4e:91:5e:4c:37:ec:97:5a:fe:2f:07:d6:ef:d5:
08:e2:fc:e9:af:2f:59:03:ed:b5:9c:43:82:f0:69:21:fc:97:
66:e2:bb:a0:23:c4:4f:19:4e:d7:bd:dc:a7:60:17:93:76:8e:
83:ac:cf:d3:d7:df:ae:1a:5e:6e:91:17:d1:e8:79:9b:53:84:
fc:d8:ee:f6:c0:26:ab:5b:b1:35:42:cc:84:ca:e2:59:69:62:
0e:5c:e6:5b:dd:0b:66:eb:0f:89:0d:17:16:13:50:78:12:a6:
bb:60:1e:cf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNWiU6XH8iSjT7NqxeAopn+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4YTVjM2FiYTQyMWI3OGE3ZDVkMDliNzViNGNlM2JlNTI3
M2NhYWMwHhcNMjQxMTIzMDEwMDU5WhcNMjQxMTI0MDEwMDU5WjAzMTEwLwYDVQQD
Eyg4YThkZTI5OGI3YWU1ZGU2NzBhZmNlYjdlYzU3YTZmOWM5Zjk3NzQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArwJR8Xyrjj1Sks05K4l3FiHZabPG
4rgfaJxkCnzHytgbr+FtZKQecMnkRhmI+Lnmd+6ERuERXVppvUPgrHwealkRLHW+
B1iRY98FFgFN+333jzp42DJXZPDV8wP6qyEaMFSfJOlObqTkQGyUolojuBJVLUfZ
4LBbClv1fvh6JyoO1keflCAxihHtxDFQ91EVNtxDJfyj4FM21fBiYVo+3eN9A735
fk+6Li0OIC1WAsBKOGhUXeWiDgtJRWT3l30v67b/p4NpuRJPqf//8QHeJg4p/2Io
pJjdERux+8yyH4hpJb1tdbKs6e+NidJ9pxSgd1vm/xVmpYuewrtX7bWOBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIqN4pi3rl3mcK/Ot+xXpvnJ+XdHMB8GA1UdIwQY
MBaAFAilw6ukIbeKfV0Jt1tM475Sc8qsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0tYRHE2UWh0NHA5WFFtM1cwemp2bEp6eXF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My83YmQ4Y2YtMmE2MS00Yjc0LTg2MGQt
MzY0ZmFlN2M3MmM0LzEvQ0tYRHE2UWh0NHA5WFFtM1cwemp2bEp6eXF3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My83YmQ4Y2YtMmE2MS00Yjc0LTg2MGQtMzY0ZmFlN2M3MmM0
LzEvQ0tYRHE2UWh0NHA5WFFtM1cwemp2bEp6eXF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQjlv+PeI
wZd/D9mgFdk56X6ImmJls5YyeROS4t2byQfWYEl0owbXyMtASO+RGk/hG7IErnBR
exqNTtf5aewwN04kooJ9V7aeAb9Yt2HcCGqHuohIGND9ze27aNaBPaRZLCSk8baL
Si+T2pTpITOm65RxgQNo6rkHk/ufTL5HFOkYuyrfKof5NTpsHJz3BjJvxWhWL06R
Xkw37Jda/i8H1u/VCOL86a8vWQPttZxDgvBpIfyXZuK7oCPETxlO173cp2AXk3aO
g6zP09ffrhpebpEX0eh5m1OE/Nju9sAmq1uxNULMhMriWWliDlzmW90LZusPiQ0X
FhNQeBKmu2Aezw==
-----END CERTIFICATE-----
Generated at Sat Nov 23 09:58:07 2024 by rpki-client on console-fra.rpki-client.org