Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
File: OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft (raw, json)
Hash identifier: GBhJqp0INfUEBL+jHwsCalOhi51oIvnNe6aPDUVaSuc=
Subject key identifier: 02:10:86:51:7A:14:E0:86:28:A5:9F:3A:6C:69:CE:66:83:E8:C5:60
Authority key identifier: 38:5C:F4:93:9B:EE:EA:EA:F4:40:9C:28:40:EB:34:4C:AB:08:50:E0
Certificate issuer: /CN=385cf4939beeeaeaf4409c2840eb344cab0850e0
Certificate serial: 01935878A5E9AC2141D898FE40F544BA91BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
Manifest number: 08B8
Signing time: Sat 23 Nov 2024 10:02:01 +0000
Manifest this update: Sat 23 Nov 2024 10:02:01 +0000
Manifest next update: Sun 24 Nov 2024 10:02:01 +0000
Files and hashes: 1: 3wDQdXWW-RPqBxe9JJ_tbcZYRwY.roa (hash: 6FpfyEua8oeKWr61vWSYnWWtcw88eHGxKmS6WFmk3Uw=)
2: OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl (hash: QEBl2W+Cs0PtstulLjGc3mAEMAwxvqi/xe3g1anm0YM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:78:a5:e9:ac:21:41:d8:98:fe:40:f5:44:ba:91:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385cf4939beeeaeaf4409c2840eb344cab0850e0
Validity
Not Before: Nov 23 10:02:01 2024 GMT
Not After : Nov 24 10:02:01 2024 GMT
Subject: CN=021086517a14e08628a59f3a6c69ce6683e8c560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:dd:60:72:92:d8:ec:f2:4c:6a:89:2c:60:15:
8b:d3:d3:5e:c6:cf:a6:13:4b:81:a2:60:0f:aa:39:
17:fc:03:66:26:ac:e4:d3:a3:e1:0d:16:eb:45:72:
34:49:1a:40:6e:da:50:fd:5d:0c:5e:77:fa:4b:78:
dd:bc:66:2b:84:ca:d7:a6:f5:95:f9:72:26:bc:3f:
ee:0d:b9:dc:f5:04:74:2e:1e:c9:a0:aa:59:10:cc:
85:91:be:3b:9d:6c:83:94:f4:52:cf:95:75:66:90:
40:8b:81:9c:25:d4:18:e1:ed:7d:23:a8:b3:2b:91:
6c:e2:36:ee:39:85:e1:c1:6c:43:ed:5b:59:e9:99:
cd:31:35:00:f2:db:af:96:7c:79:13:bb:34:45:92:
3c:dc:6e:1a:f7:c4:db:46:fe:dc:20:a7:12:aa:9d:
bb:ae:38:80:81:53:3e:4b:5f:e0:27:2e:8c:87:1e:
34:52:f5:d7:1e:b6:29:ad:00:da:ad:5e:af:2f:aa:
88:dc:66:33:5c:27:92:a6:aa:86:aa:1c:8b:f7:70:
f9:77:c0:a1:bc:b5:1a:33:d8:d5:6c:14:c7:8e:6f:
97:15:b4:0e:de:f9:42:bb:14:fd:13:01:94:ef:30:
65:6b:40:91:aa:7d:5f:8e:2a:5e:a1:25:5c:44:54:
0e:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:10:86:51:7A:14:E0:86:28:A5:9F:3A:6C:69:CE:66:83:E8:C5:60
X509v3 Authority Key Identifier:
keyid:38:5C:F4:93:9B:EE:EA:EA:F4:40:9C:28:40:EB:34:4C:AB:08:50:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:03:8c:3d:db:60:a6:c6:b7:83:c6:16:c2:0d:c3:98:d8:9a:
a8:8e:23:85:0f:e2:10:d7:67:88:44:46:81:98:8c:bc:33:9f:
09:3b:da:16:4a:74:8e:05:cb:fc:eb:49:fa:36:46:d6:dc:e9:
f1:19:e2:a1:0a:26:d7:76:b3:44:23:7e:2d:6e:f1:c0:bd:b5:
ee:5a:69:a3:ef:66:54:5e:bf:4a:f1:3f:54:cc:a9:a8:a1:22:
fd:56:84:ac:f0:14:1d:2b:0e:b1:62:e2:f6:b7:3f:df:47:ba:
ec:99:ec:7e:34:1c:ac:0d:d7:c2:a4:72:f3:22:2e:2a:ee:09:
aa:db:ba:b5:75:7d:5b:d8:86:75:0f:82:38:e5:14:ef:14:c5:
3e:15:63:fb:82:a3:94:a1:58:ec:8c:d0:7a:b0:1a:6c:76:fb:
16:b9:03:44:48:25:57:ba:66:d4:d5:be:33:b6:2f:e4:70:ec:
69:38:c1:a8:2c:f9:26:a2:58:75:9c:ef:96:84:d0:bf:a7:da:
b6:2d:0e:72:5d:5d:49:1f:a1:d0:6c:29:7a:dd:03:7e:88:26:
19:62:d4:01:c0:e6:a3:0d:6c:35:f8:84:b1:b0:e9:d4:ee:48:
bf:10:75:90:0b:eb:ff:97:3c:96:84:f2:27:6d:8a:22:da:d4:
a7:51:80:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNYeKXprCFB2Jj+QPVEupG/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4NWNmNDkzOWJlZWVhZWFmNDQwOWMyODQwZWIzNDRjYWIw
ODUwZTAwHhcNMjQxMTIzMTAwMjAxWhcNMjQxMTI0MTAwMjAxWjAzMTEwLwYDVQQD
EygwMjEwODY1MTdhMTRlMDg2MjhhNTlmM2E2YzY5Y2U2NjgzZThjNTYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr91gcpLY7PJMaoksYBWL09Nexs+m
E0uBomAPqjkX/ANmJqzk06PhDRbrRXI0SRpAbtpQ/V0MXnf6S3jdvGYrhMrXpvWV
+XImvD/uDbnc9QR0Lh7JoKpZEMyFkb47nWyDlPRSz5V1ZpBAi4GcJdQY4e19I6iz
K5Fs4jbuOYXhwWxD7VtZ6ZnNMTUA8tuvlnx5E7s0RZI83G4a98TbRv7cIKcSqp27
rjiAgVM+S1/gJy6Mhx40UvXXHrYprQDarV6vL6qI3GYzXCeSpqqGqhyL93D5d8Ch
vLUaM9jVbBTHjm+XFbQO3vlCuxT9EwGU7zBla0CRqn1fjipeoSVcRFQOaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAIQhlF6FOCGKKWfOmxpzmaD6MVgMB8GA1UdIwQY
MBaAFDhc9JOb7urq9ECcKEDrNEyrCFDgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0Z6MGs1dnU2dXIwUUp3b1FPczBUS3NJVU9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8zNWI2YmQtMTRiNi00M2RjLTgzODQt
N2I3NjE1ZmYwZTk2LzEvT0Z6MGs1dnU2dXIwUUp3b1FPczBUS3NJVU9BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi8zNWI2YmQtMTRiNi00M2RjLTgzODQtN2I3NjE1ZmYwZTk2
LzEvT0Z6MGs1dnU2dXIwUUp3b1FPczBUS3NJVU9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWQOMPdtg
psa3g8YWwg3DmNiaqI4jhQ/iENdniERGgZiMvDOfCTvaFkp0jgXL/OtJ+jZG1tzp
8RnioQom13azRCN+LW7xwL217lppo+9mVF6/SvE/VMypqKEi/VaErPAUHSsOsWLi
9rc/30e67JnsfjQcrA3XwqRy8yIuKu4Jqtu6tXV9W9iGdQ+COOUU7xTFPhVj+4Kj
lKFY7IzQerAabHb7FrkDREglV7pm1NW+M7Yv5HDsaTjBqCz5JqJYdZzvloTQv6fa
ti0Ocl1dSR+h0Gwpet0DfogmGWLUAcDmow1sNfiEsbDp1O5IvxB1kAvr/5c8loTy
J22KItrUp1GAsg==
-----END CERTIFICATE-----
Generated at Sat Nov 23 12:02:03 2024 by rpki-client on console-fra.rpki-client.org