
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: dDZ0NOqMFQS7oUqpexPcy9w/i1GhxUV2nqG3g2H4j0I=
Subject key identifier: EA:DE:11:6B:8D:71:F1:A0:77:39:65:CA:5E:B8:7E:54:79:67:26:47
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 018C32FC7FFB828103F1D33931CB6F22CA58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 0FBE
Signing time: Mon 04 Dec 2023 04:00:57 +0000
Manifest this update: Mon 04 Dec 2023 04:00:57 +0000
Manifest next update: Tue 05 Dec 2023 04:00:57 +0000
Files and hashes: 1: j3ktgFN7nifIZWWpaSr2trH7QPE.roa (hash: +x/4Z1jyPvVyLKls9Bj6RnTxMJ/aNpLqmUa+YCdhNRA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: tLnLbJggBovF4AO8K585QZbcKhWotnNsjSq64YkC088=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 04 Dec 2023 21:40:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:32:fc:7f:fb:82:81:03:f1:d3:39:31:cb:6f:22:ca:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Dec 4 04:00:57 2023 GMT
Not After : Dec 5 04:00:57 2023 GMT
Subject: CN=eade116b8d71f1a0773965ca5eb87e5479672647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1f:94:b2:77:89:14:5d:f1:1d:40:cb:3f:f2:
14:90:11:12:49:cd:b3:ef:a9:2a:cc:35:24:eb:f2:
56:c9:9d:77:ed:37:15:a0:36:25:47:41:f8:5e:df:
34:b4:49:ae:b8:8f:d7:df:28:e1:5e:38:8b:6d:d4:
fd:c2:63:c5:50:5b:e5:60:fb:e5:3c:e9:95:8e:52:
44:f2:80:b1:67:41:c0:c3:9a:d6:4b:b2:26:a5:bc:
5e:ae:ff:f5:88:c3:f0:6a:6b:b0:ef:c9:1c:29:a4:
57:15:d6:ca:eb:98:83:00:1f:55:90:b4:81:7e:11:
45:be:5a:3e:ab:8c:78:6d:3e:18:cb:be:dc:3a:e6:
cb:56:57:15:9b:c6:ce:46:f5:f7:de:6a:cb:fb:f4:
54:e0:4b:a2:20:c7:d0:c8:e5:bb:c2:9e:d6:a1:f6:
2b:67:31:8c:6f:b4:ae:db:e1:50:b7:08:df:6c:2a:
4c:2b:4d:ba:0c:8e:c3:37:7a:e5:20:dd:62:1e:72:
b8:b8:d8:6a:80:b8:fc:b6:3d:84:fb:74:eb:de:62:
fc:27:0f:35:33:be:2e:a7:1c:36:7b:d6:87:31:7f:
c0:d1:30:8b:3a:07:8a:c2:43:40:9a:c3:ec:c3:4a:
07:b0:29:66:16:8f:73:a8:b4:d9:6b:36:4a:8d:b5:
36:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:DE:11:6B:8D:71:F1:A0:77:39:65:CA:5E:B8:7E:54:79:67:26:47
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:d4:4a:b4:8a:b0:2f:62:63:19:7c:f2:01:95:7c:fb:b4:8b:
8b:7a:c5:01:24:f9:19:25:86:93:7a:53:cd:1b:f9:be:d2:2e:
d4:fa:20:bf:9c:1d:cb:8b:9c:f1:4f:00:a3:2c:b3:b8:5c:fa:
f2:33:88:9d:69:d6:0e:29:94:00:ed:90:aa:be:90:fa:ac:6f:
ff:f3:6d:3b:9a:1e:67:f3:a1:e4:a4:c0:6a:5c:df:09:1b:08:
3f:ee:f3:20:4b:4e:64:ae:57:a6:9a:0b:d3:b3:13:08:40:b0:
64:85:6f:a6:5e:8a:b2:95:7d:dc:dc:d4:74:31:f0:24:83:a5:
ef:35:c8:db:66:6e:43:13:0d:2c:2b:fa:14:e0:a7:9a:ea:6d:
68:76:46:d8:c7:aa:f9:67:68:d3:68:8c:0e:01:08:7b:48:31:
cb:80:47:95:9b:3b:1f:38:13:50:22:1d:d1:02:82:5f:a6:61:
77:c9:e8:18:20:58:34:22:0e:93:5f:34:4e:b8:84:95:5d:32:
9a:22:fc:7b:0e:b8:97:60:ba:f5:e5:be:7d:5a:11:f4:76:ae:
1a:1f:19:17:64:43:85:02:da:f8:05:2f:41:56:99:19:bd:3b:
59:37:91:58:ad:c1:18:a8:53:9d:d4:cb:b4:e9:6e:96:50:a1:
82:bf:28:7b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAYwy/H/7goED8dM5MctvIspYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjMxMjA0MDQwMDU3WhcNMjMxMjA1MDQwMDU3WjAzMTEwLwYDVQQD
EyhlYWRlMTE2YjhkNzFmMWEwNzczOTY1Y2E1ZWI4N2U1NDc5NjcyNjQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoB+UsneJFF3xHUDLP/IUkBESSc2z
76kqzDUk6/JWyZ137TcVoDYlR0H4Xt80tEmuuI/X3yjhXjiLbdT9wmPFUFvlYPvl
POmVjlJE8oCxZ0HAw5rWS7Impbxerv/1iMPwamuw78kcKaRXFdbK65iDAB9VkLSB
fhFFvlo+q4x4bT4Yy77cOubLVlcVm8bORvX33mrL+/RU4EuiIMfQyOW7wp7WofYr
ZzGMb7Su2+FQtwjfbCpMK026DI7DN3rlIN1iHnK4uNhqgLj8tj2E+3Tr3mL8Jw81
M74upxw2e9aHMX/A0TCLOgeKwkNAmsPsw0oHsClmFo9zqLTZazZKjbU2LwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOreEWuNcfGgdzllyl64flR5ZyZHMB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE9RKtIqw
L2JjGXzyAZV8+7SLi3rFAST5GSWGk3pTzRv5vtIu1Pogv5wdy4uc8U8AoyyzuFz6
8jOInWnWDimUAO2Qqr6Q+qxv//NtO5oeZ/Oh5KTAalzfCRsIP+7zIEtOZK5XppoL
07MTCECwZIVvpl6KspV93NzUdDHwJIOl7zXI22ZuQxMNLCv6FOCnmuptaHZG2Meq
+Wdo02iMDgEIe0gxy4BHlZs7HzgTUCId0QKCX6Zhd8noGCBYNCIOk180TriElV0y
miL8ew64l2C69eW+fVoR9HauGh8ZF2RDhQLa+AUvQVaZGb07WTeRWK3BGKhTndTL
tOlullChgr8oew==
-----END CERTIFICATE-----
Generated at Mon Dec 4 04:56:24 2023 by rpki-client on console-fra.rpki-client.org