Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
File: TTaHdCvs89CAgu0S6fNHC4LafP8.mft (raw, json)
Hash identifier: pO6ZxtNF09wcSbuWHeVOHsSqaQYN7E7fplwOCkA+iq4=
Subject key identifier: D8:9C:20:F3:D5:7A:0F:AD:CC:F8:E6:E7:CD:1B:0F:A5:AD:1E:31:22
Authority key identifier: 4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
Certificate issuer: /CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Certificate serial: 019355E3C38BF9905A2181CCB7CE5EFD8A4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
Manifest number: 0A52
Signing time: Fri 22 Nov 2024 22:00:10 +0000
Manifest this update: Fri 22 Nov 2024 22:00:10 +0000
Manifest next update: Sat 23 Nov 2024 22:00:10 +0000
Files and hashes: 1: TTaHdCvs89CAgu0S6fNHC4LafP8.crl (hash: npp+b+0XqRg3E1ueKOMIPOdd5AuMRVZAsXXFRYNrAt4=)
2: VB8cSABx3bOrxB_znJWjUePZ9jw.roa (hash: bBCSmac88d68t74ZH9L1PlUarKyYRoz1S06T4JBq6tA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:e3:c3:8b:f9:90:5a:21:81:cc:b7:ce:5e:fd:8a:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Validity
Not Before: Nov 22 22:00:10 2024 GMT
Not After : Nov 23 22:00:10 2024 GMT
Subject: CN=d89c20f3d57a0fadccf8e6e7cd1b0fa5ad1e3122
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7e:2c:fe:c8:11:a5:14:1b:be:9a:8d:32:38:
6a:94:69:d5:f3:51:78:24:1f:91:5e:59:e8:76:01:
3a:78:6e:a1:3e:e4:33:64:63:74:08:f3:60:0a:59:
6d:0e:e2:e5:4a:94:69:28:37:41:f1:64:9b:dc:19:
fe:05:e6:da:dc:28:84:be:dd:66:1b:73:51:d8:d1:
4f:7b:cd:af:55:b1:85:fc:06:1a:4f:0c:7e:89:4f:
36:dd:1f:68:3a:8a:d0:df:96:5f:cb:84:43:f0:db:
6b:3b:b8:24:4a:77:d0:6b:b4:69:c8:35:95:4b:ef:
b5:43:e2:94:92:55:57:0e:0c:6a:2a:c8:a5:08:09:
af:d7:26:30:6e:29:fc:08:15:1c:bd:be:5c:a0:d7:
17:32:fc:65:d2:81:11:31:99:bb:3e:51:45:38:a4:
44:67:a8:fe:9e:e5:1f:42:3d:77:c4:19:ad:ce:de:
12:c3:f4:e9:63:39:eb:d7:ad:28:e5:fb:3a:69:e7:
51:cd:0b:ad:f3:ee:19:d3:03:e8:49:62:8a:09:a7:
5d:8e:96:fb:eb:9d:cb:1d:9a:c3:30:bf:a1:9f:56:
36:b3:bb:74:4d:d1:f9:31:aa:ff:eb:4c:0d:21:d0:
19:92:bb:85:8c:72:c0:9b:79:12:6f:b7:38:05:dd:
34:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:9C:20:F3:D5:7A:0F:AD:CC:F8:E6:E7:CD:1B:0F:A5:AD:1E:31:22
X509v3 Authority Key Identifier:
keyid:4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:ea:92:a8:26:54:28:87:9b:9e:6d:cf:22:4c:47:5b:fe:21:
7f:91:3b:37:37:23:5d:6e:dc:cf:69:7b:ed:0c:2e:f8:46:27:
16:62:76:27:56:24:61:65:71:58:ed:35:2a:2b:6b:47:42:9e:
65:79:9c:75:8c:64:29:20:30:7d:2a:ad:e3:71:a4:01:f9:39:
ac:b7:e1:73:2f:30:01:41:1e:5b:97:ea:3d:4e:03:fc:2a:ab:
4a:19:56:91:7f:19:65:53:71:42:c2:3e:9f:bd:7f:a4:7c:16:
68:6c:02:74:af:ec:86:b4:9b:66:a4:7d:0f:84:98:98:34:97:
f4:09:91:06:b8:33:34:57:39:c8:35:47:62:05:ea:48:97:a7:
61:cc:88:5a:1a:01:1a:49:9b:0f:7b:d2:8b:cc:b1:2b:ee:b9:
d7:99:79:c6:91:f3:6a:46:7e:f8:05:eb:d8:a5:77:e1:ff:f6:
52:5a:c3:98:c6:ec:1f:ea:0a:88:45:e5:86:36:8b:3a:d0:26:
fe:c9:07:40:e7:1d:e7:87:a8:ff:89:e7:78:bd:c5:cd:9e:d4:
f4:43:95:e3:c0:54:c8:3a:dd:75:d2:b5:5c:d1:40:e6:67:ab:
6c:6a:50:e5:be:52:15:b4:6f:d5:62:4e:1b:fc:1f:05:d8:47:
23:90:b9:58
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNV48OL+ZBaIYHMt85e/YpPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkMzY4Nzc0MmJlY2YzZDA4MDgyZWQxMmU5ZjM0NzBiODJk
YTdjZmYwHhcNMjQxMTIyMjIwMDEwWhcNMjQxMTIzMjIwMDEwWjAzMTEwLwYDVQQD
EyhkODljMjBmM2Q1N2EwZmFkY2NmOGU2ZTdjZDFiMGZhNWFkMWUzMTIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwX4s/sgRpRQbvpqNMjhqlGnV81F4
JB+RXlnodgE6eG6hPuQzZGN0CPNgClltDuLlSpRpKDdB8WSb3Bn+Beba3CiEvt1m
G3NR2NFPe82vVbGF/AYaTwx+iU823R9oOorQ35Zfy4RD8NtrO7gkSnfQa7RpyDWV
S++1Q+KUklVXDgxqKsilCAmv1yYwbin8CBUcvb5coNcXMvxl0oERMZm7PlFFOKRE
Z6j+nuUfQj13xBmtzt4Sw/TpYznr160o5fs6aedRzQut8+4Z0wPoSWKKCaddjpb7
653LHZrDML+hn1Y2s7t0TdH5Mar/60wNIdAZkruFjHLAm3kSb7c4Bd00XQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNicIPPVeg+tzPjm580bD6WtHjEiMB8GA1UdIwQY
MBaAFE02h3Qr7PPQgILtEunzRwuC2nz/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9kODg1YmItYTNkYy00MzkwLWJmMjQt
MTAzYjE3ZDNlYjQ1LzEvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny9kODg1YmItYTNkYy00MzkwLWJmMjQtMTAzYjE3ZDNlYjQ1
LzEvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuuqSqCZU
KIebnm3PIkxHW/4hf5E7NzcjXW7cz2l77Qwu+EYnFmJ2J1YkYWVxWO01KitrR0Ke
ZXmcdYxkKSAwfSqt43GkAfk5rLfhcy8wAUEeW5fqPU4D/CqrShlWkX8ZZVNxQsI+
n71/pHwWaGwCdK/shrSbZqR9D4SYmDSX9AmRBrgzNFc5yDVHYgXqSJenYcyIWhoB
GkmbD3vSi8yxK+6515l5xpHzakZ++AXr2KV34f/2UlrDmMbsH+oKiEXlhjaLOtAm
/skHQOcd54eo/4nneL3FzZ7U9EOV48BUyDrdddK1XNFA5merbGpQ5b5SFbRv1WJO
G/wfBdhHI5C5WA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 02:05:41 2024 by rpki-client on console-ams.rpki-client.org