Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
File: vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft (raw, json)
Hash identifier: VysxkrJ8SkSiDq33H5C8plmIcWqryEeQQDO8DREAEYI=
Subject key identifier: 41:EE:23:8E:E2:B0:A5:A9:65:8F:C9:8E:66:DB:3C:F1:75:2F:6B:9C
Authority key identifier: BE:72:2A:99:73:2C:9C:3C:BC:20:B0:A4:72:92:A8:23:78:26:03:AC
Certificate issuer: /CN=be722a99732c9c3cbc20b0a47292a823782603ac
Certificate serial: 019355E3EE4920CA5CDCE506CF437F495AC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
Manifest number: 1301
Signing time: Fri 22 Nov 2024 22:00:21 +0000
Manifest this update: Fri 22 Nov 2024 22:00:21 +0000
Manifest next update: Sat 23 Nov 2024 22:00:21 +0000
Files and hashes: 1: 1M0fs8Ru2Vxpmw5C7pVWGaVK7xI.roa (hash: xzzsuqqg/1GhRDZ5kHqyxkZvbkKgqULisM9EADRyrG0=)
2: vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl (hash: 7kK4eFcJziE6i1YRnOpMa+dI4QJdidPmOUmF9WKiSP8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:e3:ee:49:20:ca:5c:dc:e5:06:cf:43:7f:49:5a:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be722a99732c9c3cbc20b0a47292a823782603ac
Validity
Not Before: Nov 22 22:00:21 2024 GMT
Not After : Nov 23 22:00:21 2024 GMT
Subject: CN=41ee238ee2b0a5a9658fc98e66db3cf1752f6b9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:49:b5:f9:20:10:74:60:a4:be:ff:8d:37:6c:
b0:2c:48:ef:f7:31:65:26:3f:94:1e:47:a4:e3:6b:
25:e0:f4:20:50:3b:e7:6e:61:29:01:b4:5c:95:8a:
7b:ac:a5:60:55:a3:48:3d:78:13:1c:42:9f:49:ab:
b4:08:b9:15:28:dc:f7:23:57:f3:0f:10:0c:ba:76:
ae:59:53:7d:51:9e:79:81:4c:d8:88:0c:43:9b:9d:
7f:6d:70:f2:f2:a0:f8:99:e2:4c:d6:b2:ae:4e:36:
99:95:78:69:8d:d6:17:c1:8e:26:0b:c5:e4:04:a0:
6d:9c:5e:27:c2:16:72:69:60:39:3e:c2:f6:c2:1b:
42:7e:a4:2d:3c:e5:43:49:dd:46:2c:ac:1c:8b:06:
e6:82:1a:ac:32:9e:a4:df:e1:7e:57:c5:a0:a8:83:
f2:b8:5d:f6:4d:53:75:74:3d:03:60:bc:db:b5:28:
37:01:da:a7:cb:13:e1:1c:b5:85:cf:98:df:76:78:
53:d7:4a:97:b3:45:f4:f6:1a:02:6b:74:21:9a:25:
5b:cd:c5:62:17:fb:fb:64:d5:03:ed:c7:ba:09:2a:
ea:64:dc:62:5f:1c:2d:3b:53:48:c6:d6:6a:12:ff:
6f:86:f8:75:7e:cf:e0:62:9e:ae:7f:54:1a:84:4b:
cf:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:EE:23:8E:E2:B0:A5:A9:65:8F:C9:8E:66:DB:3C:F1:75:2F:6B:9C
X509v3 Authority Key Identifier:
keyid:BE:72:2A:99:73:2C:9C:3C:BC:20:B0:A4:72:92:A8:23:78:26:03:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:68:95:e8:25:5e:72:19:83:6f:30:df:b9:e1:53:12:aa:13:
a1:85:3e:b6:6c:e4:52:aa:cb:1b:9e:df:9c:9c:2f:33:04:99:
1a:f6:72:d0:e7:78:c0:cf:b3:ec:03:f3:6a:98:a1:8a:1f:35:
6e:22:3f:d5:81:b3:40:dd:19:e8:f2:3f:b5:6a:f7:7e:08:12:
3c:97:90:fd:18:c9:12:49:80:69:41:e7:5f:de:8f:37:fe:ed:
5f:03:7e:9d:34:b5:bf:83:50:24:31:ea:09:33:f7:94:45:c1:
67:17:26:7e:f7:ca:56:06:7b:d1:aa:88:52:6f:86:64:46:f2:
91:6b:d2:da:c2:ac:4a:fc:b4:8a:34:ba:1e:5a:19:d5:7b:b0:
ca:79:29:6c:4c:59:bc:30:ae:75:a3:53:56:36:7d:ad:a0:25:
7b:f0:13:d9:07:d8:5f:2e:b3:69:89:76:ab:ea:65:31:fb:c3:
d5:f8:f0:03:a5:83:f2:82:a3:bc:4d:99:08:ea:c1:0d:e0:9b:
d2:8e:47:f8:92:ae:2d:c6:96:ab:05:a2:87:97:9b:71:25:18:
f4:5c:4b:73:fd:6d:43:36:96:31:46:26:65:8a:bf:d5:80:fc:
dd:96:e6:0d:66:8f:24:99:55:2f:f7:af:c7:dd:47:ea:d6:93:
f9:ca:81:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNV4+5JIMpc3OUGz0N/SVrIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlNzIyYTk5NzMyYzljM2NiYzIwYjBhNDcyOTJhODIzNzgy
NjAzYWMwHhcNMjQxMTIyMjIwMDIxWhcNMjQxMTIzMjIwMDIxWjAzMTEwLwYDVQQD
Eyg0MWVlMjM4ZWUyYjBhNWE5NjU4ZmM5OGU2NmRiM2NmMTc1MmY2YjljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlkm1+SAQdGCkvv+NN2ywLEjv9zFl
Jj+UHkek42sl4PQgUDvnbmEpAbRclYp7rKVgVaNIPXgTHEKfSau0CLkVKNz3I1fz
DxAMunauWVN9UZ55gUzYiAxDm51/bXDy8qD4meJM1rKuTjaZlXhpjdYXwY4mC8Xk
BKBtnF4nwhZyaWA5PsL2whtCfqQtPOVDSd1GLKwciwbmghqsMp6k3+F+V8WgqIPy
uF32TVN1dD0DYLzbtSg3AdqnyxPhHLWFz5jfdnhT10qXs0X09hoCa3QhmiVbzcVi
F/v7ZNUD7ce6CSrqZNxiXxwtO1NIxtZqEv9vhvh1fs/gYp6uf1QahEvPlQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEHuI47isKWpZY/JjmbbPPF1L2ucMB8GA1UdIwQY
MBaAFL5yKplzLJw8vCCwpHKSqCN4JgOsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdm5JcW1YTXNuRHk4SUxDa2NwS29JM2dtQTZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8wNDFiOWYtMWEwNy00MmU1LWI0ODct
MjliOTdhMTg3N2ZiLzEvdm5JcW1YTXNuRHk4SUxDa2NwS29JM2dtQTZ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy8wNDFiOWYtMWEwNy00MmU1LWI0ODctMjliOTdhMTg3N2Zi
LzEvdm5JcW1YTXNuRHk4SUxDa2NwS29JM2dtQTZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGWiV6CVe
chmDbzDfueFTEqoToYU+tmzkUqrLG57fnJwvMwSZGvZy0Od4wM+z7APzapihih81
biI/1YGzQN0Z6PI/tWr3fggSPJeQ/RjJEkmAaUHnX96PN/7tXwN+nTS1v4NQJDHq
CTP3lEXBZxcmfvfKVgZ70aqIUm+GZEbykWvS2sKsSvy0ijS6HloZ1XuwynkpbExZ
vDCudaNTVjZ9raAle/AT2QfYXy6zaYl2q+plMfvD1fjwA6WD8oKjvE2ZCOrBDeCb
0o5H+JKuLcaWqwWih5ebcSUY9FxLc/1tQzaWMUYmZYq/1YD83ZbmDWaPJJlVL/ev
x91H6taT+cqBSg==
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:21:09 2024 by rpki-client on console-fra.rpki-client.org