Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8d6068-acca-4777-9448-b7cf6a7b2a29/1/vNgzeodIrlhibqk9my9YmNAY3fE.mft
File: vNgzeodIrlhibqk9my9YmNAY3fE.mft (raw, json)
Hash identifier: NH9EM6XuJ2eSa4rOkSMAJIWZYZHaNzYOp4FBuCYnBlI=
Subject key identifier: 20:85:51:54:E4:82:B7:11:B8:B8:F4:61:8F:FC:F5:0C:37:90:3E:9F
Authority key identifier: BC:D8:33:7A:87:48:AE:58:62:6E:A9:3D:9B:2F:58:98:D0:18:DD:F1
Certificate issuer: /CN=bcd8337a8748ae58626ea93d9b2f5898d018ddf1
Certificate serial: 01936AB4AA0F7B44F7D8F7D6C941A18F2CE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vNgzeodIrlhibqk9my9YmNAY3fE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8d6068-acca-4777-9448-b7cf6a7b2a29/1/vNgzeodIrlhibqk9my9YmNAY3fE.mft
Manifest number: 1309
Signing time: Tue 26 Nov 2024 23:00:45 +0000
Manifest this update: Tue 26 Nov 2024 23:00:45 +0000
Manifest next update: Wed 27 Nov 2024 23:00:45 +0000
Files and hashes: 1: vNgzeodIrlhibqk9my9YmNAY3fE.crl (hash: kx0tfmbKewymj7hST3QoDmfAiFjvRbQ8ZwbhH24W0Y4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/8d6068-acca-4777-9448-b7cf6a7b2a29/1/vNgzeodIrlhibqk9my9YmNAY3fE.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/8d6068-acca-4777-9448-b7cf6a7b2a29/1/vNgzeodIrlhibqk9my9YmNAY3fE.mft
rsync://rpki.ripe.net/repository/DEFAULT/vNgzeodIrlhibqk9my9YmNAY3fE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:b4:aa:0f:7b:44:f7:d8:f7:d6:c9:41:a1:8f:2c:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcd8337a8748ae58626ea93d9b2f5898d018ddf1
Validity
Not Before: Nov 26 23:00:45 2024 GMT
Not After : Nov 27 23:00:45 2024 GMT
Subject: CN=20855154e482b711b8b8f4618ffcf50c37903e9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:1d:52:b6:85:5d:39:51:cf:3f:56:f4:94:10:
d5:c1:ca:c4:a9:21:f4:ed:ef:49:11:34:12:37:b8:
5f:f0:a2:ab:34:ee:81:98:db:48:37:21:14:e3:87:
99:16:d9:f4:ad:e5:53:ef:0b:71:46:33:d4:62:38:
89:f4:34:b6:48:c2:e8:e6:9b:4f:51:b2:e2:67:95:
0a:91:ad:b0:2f:9f:2b:16:fe:72:e1:64:65:47:28:
17:1f:16:10:27:25:4b:88:3a:32:6c:d2:f8:63:56:
12:25:ea:8b:99:0c:eb:44:d3:b3:88:7d:63:4a:28:
de:57:ac:43:ed:9a:8e:f9:c6:50:68:36:16:f6:3d:
d9:5d:d1:d1:25:d0:c1:34:58:83:60:bc:36:f2:a8:
5a:8a:d0:06:3d:52:b2:d5:4e:ef:63:5d:f4:47:26:
ea:27:c9:a6:21:f4:58:74:64:79:33:e3:2e:cb:60:
00:95:92:c3:f8:47:3a:c9:22:80:0e:a5:33:98:43:
b9:76:0c:7c:d9:56:ad:ca:2c:ee:2e:af:9d:8a:ad:
d2:f9:5a:c0:c3:db:0c:b9:76:78:65:a3:11:02:b8:
76:d5:22:b6:d1:67:80:38:bb:f3:92:2c:1d:e2:05:
93:17:ab:40:b4:71:ce:0f:84:9a:15:9a:c5:b0:3b:
14:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:85:51:54:E4:82:B7:11:B8:B8:F4:61:8F:FC:F5:0C:37:90:3E:9F
X509v3 Authority Key Identifier:
keyid:BC:D8:33:7A:87:48:AE:58:62:6E:A9:3D:9B:2F:58:98:D0:18:DD:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vNgzeodIrlhibqk9my9YmNAY3fE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8d6068-acca-4777-9448-b7cf6a7b2a29/1/vNgzeodIrlhibqk9my9YmNAY3fE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8d6068-acca-4777-9448-b7cf6a7b2a29/1/vNgzeodIrlhibqk9my9YmNAY3fE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:80:65:24:ad:48:99:ee:4f:3a:48:38:47:26:7a:44:c2:ca:
5c:1c:18:a1:eb:bc:91:66:62:94:2c:f1:15:38:cc:78:3f:c8:
fe:42:17:95:2f:b0:fa:38:02:8c:1e:1b:c1:00:94:3e:11:43:
a0:31:2a:0a:e0:b1:09:b4:90:c5:ce:9b:6e:98:d9:82:58:27:
e3:14:fd:4f:13:a3:32:75:a4:54:07:fa:30:6d:07:ce:1f:32:
9c:23:c5:e9:a8:31:29:08:47:02:0a:39:81:65:b5:43:a4:80:
1a:8e:82:4a:ce:90:c1:17:aa:f9:bf:8f:fc:7a:5f:6c:9b:e4:
6d:b9:b4:4b:62:60:43:d6:5c:aa:66:aa:62:01:c8:82:b1:68:
e3:34:69:94:46:32:19:4b:99:23:91:68:a1:d8:e4:9d:36:81:
44:f2:7b:6e:e1:3f:f0:1c:95:75:9d:41:16:3f:8e:ad:43:78:
bc:b3:a0:e1:14:77:4b:da:8e:90:f9:fa:3c:44:8f:db:e5:f5:
84:54:89:a7:0e:17:68:79:c2:af:51:7d:16:17:0d:ab:83:6d:
bb:73:a1:a3:0b:e4:93:7a:bf:8d:ab:ba:f7:5b:de:be:aa:28:
1f:e2:08:4c:03:1b:dc:cd:27:49:a4:10:0c:7e:50:47:95:14:
ae:01:54:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNqtKoPe0T32PfWyUGhjyzmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJjZDgzMzdhODc0OGFlNTg2MjZlYTkzZDliMmY1ODk4ZDAx
OGRkZjEwHhcNMjQxMTI2MjMwMDQ1WhcNMjQxMTI3MjMwMDQ1WjAzMTEwLwYDVQQD
EygyMDg1NTE1NGU0ODJiNzExYjhiOGY0NjE4ZmZjZjUwYzM3OTAzZTlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkR1StoVdOVHPP1b0lBDVwcrEqSH0
7e9JETQSN7hf8KKrNO6BmNtINyEU44eZFtn0reVT7wtxRjPUYjiJ9DS2SMLo5ptP
UbLiZ5UKka2wL58rFv5y4WRlRygXHxYQJyVLiDoybNL4Y1YSJeqLmQzrRNOziH1j
SijeV6xD7ZqO+cZQaDYW9j3ZXdHRJdDBNFiDYLw28qhaitAGPVKy1U7vY130Rybq
J8mmIfRYdGR5M+Muy2AAlZLD+Ec6ySKADqUzmEO5dgx82VatyizuLq+diq3S+VrA
w9sMuXZ4ZaMRArh21SK20WeAOLvzkiwd4gWTF6tAtHHOD4SaFZrFsDsU1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCCFUVTkgrcRuLj0YY/89Qw3kD6fMB8GA1UdIwQY
MBaAFLzYM3qHSK5YYm6pPZsvWJjQGN3xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdk5nemVvZElybGhpYnFrOW15OVltTkFZM2ZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni84ZDYwNjgtYWNjYS00Nzc3LTk0NDgt
YjdjZjZhN2IyYTI5LzEvdk5nemVvZElybGhpYnFrOW15OVltTkFZM2ZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni84ZDYwNjgtYWNjYS00Nzc3LTk0NDgtYjdjZjZhN2IyYTI5
LzEvdk5nemVvZElybGhpYnFrOW15OVltTkFZM2ZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFoBlJK1I
me5POkg4RyZ6RMLKXBwYoeu8kWZilCzxFTjMeD/I/kIXlS+w+jgCjB4bwQCUPhFD
oDEqCuCxCbSQxc6bbpjZglgn4xT9TxOjMnWkVAf6MG0Hzh8ynCPF6agxKQhHAgo5
gWW1Q6SAGo6CSs6QwReq+b+P/HpfbJvkbbm0S2JgQ9ZcqmaqYgHIgrFo4zRplEYy
GUuZI5FoodjknTaBRPJ7buE/8ByVdZ1BFj+OrUN4vLOg4RR3S9qOkPn6PESP2+X1
hFSJpw4XaHnCr1F9FhcNq4Ntu3Ohowvkk3q/jau691vevqooH+IITAMb3M0nSaQQ
DH5QR5UUrgFUtA==
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:42:26 2024 by rpki-client on console-fra.rpki-client.org