Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.mft
File: xT4qugUV7JDRCREGD88pI2123d8.mft (raw, json)
Hash identifier: w/hNxgW7wq8DOOwj8KFIVpx35r4ZghFqAfTOms0HiPo=
Subject key identifier: 32:7B:8E:44:BD:C5:1E:90:A4:1B:E0:EE:15:BE:9F:CE:D9:85:D0:D7
Authority key identifier: C5:3E:2A:BA:05:15:EC:90:D1:09:11:06:0F:CF:29:23:6D:76:DD:DF
Certificate issuer: /CN=c53e2aba0515ec90d10911060fcf29236d76dddf
Certificate serial: 019211742727B50E2F32C4ED6B0CDA2667AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xT4qugUV7JDRCREGD88pI2123d8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.mft
Manifest number: 0A7E
Signing time: Fri 20 Sep 2024 22:01:17 +0000
Manifest this update: Fri 20 Sep 2024 22:01:17 +0000
Manifest next update: Sat 21 Sep 2024 22:01:17 +0000
Files and hashes: 1: iuWkfXwjXD_7YyWp7uAyhX0IyUc.roa (hash: rVp+niFW4FSrz2mQrmbT1GislFki4CWw3yQo/5fMTPM=)
2: xT4qugUV7JDRCREGD88pI2123d8.crl (hash: tqMgqzZg7rBrwNYZEk9jp4bmGE8ZFVPvzHmQStFkQFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xT4qugUV7JDRCREGD88pI2123d8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Sep 2024 16:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:11:74:27:27:b5:0e:2f:32:c4:ed:6b:0c:da:26:67:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c53e2aba0515ec90d10911060fcf29236d76dddf
Validity
Not Before: Sep 20 22:01:17 2024 GMT
Not After : Sep 21 22:01:17 2024 GMT
Subject: CN=327b8e44bdc51e90a41be0ee15be9fced985d0d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:14:66:5b:92:4a:cc:92:a6:2e:36:f0:72:15:
79:05:57:d1:87:cb:3a:3d:13:e0:4b:db:6e:d9:cc:
6f:b2:5e:90:e8:16:3a:4c:9e:5f:20:e3:73:21:89:
8e:4b:ca:fa:8f:b8:c4:e1:3e:4c:cd:34:b2:2a:76:
0c:96:43:f2:82:fe:a2:6a:dd:c4:a2:3e:7f:91:78:
39:7b:e6:0f:9e:ee:3c:c3:68:73:b5:3d:ef:1f:d2:
fc:29:79:a8:62:9e:43:9c:03:94:e3:f9:99:25:25:
20:44:35:78:a2:57:2e:25:36:c3:83:e8:bd:fb:65:
cb:31:5f:3b:c7:94:32:39:7e:88:b0:d5:ba:90:c7:
6e:43:f5:6c:35:25:05:60:00:59:72:44:df:2a:ff:
03:6e:4d:c9:f9:30:6a:3d:ce:72:4c:46:4c:3f:81:
7b:88:3f:aa:16:bd:7b:e5:ba:3e:26:a1:1a:3e:8c:
80:02:e6:3e:f6:cf:83:fc:57:b8:c6:56:48:78:22:
68:b5:80:5c:c3:ea:b7:66:c8:b4:45:92:f6:56:c1:
fb:c7:d2:62:d2:28:16:76:3c:e8:95:5c:49:f9:da:
a9:7c:02:48:f0:b4:5b:30:85:a7:54:eb:2b:4e:cb:
bf:9d:89:6b:4b:0a:0f:c5:df:d0:0f:71:61:14:3c:
07:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:7B:8E:44:BD:C5:1E:90:A4:1B:E0:EE:15:BE:9F:CE:D9:85:D0:D7
X509v3 Authority Key Identifier:
keyid:C5:3E:2A:BA:05:15:EC:90:D1:09:11:06:0F:CF:29:23:6D:76:DD:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xT4qugUV7JDRCREGD88pI2123d8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:d6:3c:93:2a:ac:4b:df:2d:91:22:a0:06:d7:ce:e0:72:7c:
cb:97:89:60:8b:9a:87:11:44:b2:28:ee:63:0e:0d:59:5d:ed:
31:2d:27:ed:5f:62:1a:35:c2:4b:94:5a:8f:54:bc:f8:49:96:
87:e7:85:70:fe:c9:91:27:f6:17:25:ed:05:21:a3:c8:74:2f:
a8:a1:74:8b:e5:f0:15:8c:c9:8a:6b:bc:56:9f:e3:f8:cc:7d:
e4:01:0e:58:7b:c9:5d:a3:4d:ec:a6:a1:a8:82:27:ec:9a:8c:
3d:d5:71:09:aa:96:6e:de:48:f4:b7:ac:a2:62:d5:46:64:8f:
08:4e:d8:f5:c5:45:0c:f4:0d:66:c7:58:2b:a9:98:77:da:3f:
19:38:f5:4b:42:77:6d:af:c0:84:50:54:d0:be:92:8b:7e:2a:
08:13:61:99:06:30:39:06:f5:99:77:55:85:d1:53:9f:5f:bf:
78:dc:1c:b9:65:22:95:9a:fc:b0:3f:14:e7:8d:a2:64:3a:9d:
ff:99:10:1a:37:ca:60:44:ef:cc:7d:40:71:28:77:e6:0a:68:
f4:46:7a:76:88:23:ad:c0:d3:64:c4:c9:0b:1a:88:1b:f4:d7:
4d:a0:fd:30:00:aa:33:ea:91:b2:9e:91:f6:05:d4:57:e0:e8:
7c:02:c4:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZIRdCcntQ4vMsTtawzaJmerMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1M2UyYWJhMDUxNWVjOTBkMTA5MTEwNjBmY2YyOTIzNmQ3
NmRkZGYwHhcNMjQwOTIwMjIwMTE3WhcNMjQwOTIxMjIwMTE3WjAzMTEwLwYDVQQD
EygzMjdiOGU0NGJkYzUxZTkwYTQxYmUwZWUxNWJlOWZjZWQ5ODVkMGQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzRRmW5JKzJKmLjbwchV5BVfRh8s6
PRPgS9tu2cxvsl6Q6BY6TJ5fIONzIYmOS8r6j7jE4T5MzTSyKnYMlkPygv6iat3E
oj5/kXg5e+YPnu48w2hztT3vH9L8KXmoYp5DnAOU4/mZJSUgRDV4olcuJTbDg+i9
+2XLMV87x5QyOX6IsNW6kMduQ/VsNSUFYABZckTfKv8Dbk3J+TBqPc5yTEZMP4F7
iD+qFr175bo+JqEaPoyAAuY+9s+D/Fe4xlZIeCJotYBcw+q3Zsi0RZL2VsH7x9Ji
0igWdjzolVxJ+dqpfAJI8LRbMIWnVOsrTsu/nYlrSwoPxd/QD3FhFDwHUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDJ7jkS9xR6QpBvg7hW+n87ZhdDXMB8GA1UdIwQY
MBaAFMU+KroFFeyQ0QkRBg/PKSNtdt3fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveFQ0cXVnVVY3SkRSQ1JFR0Q4OHBJMjEyM2Q4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi85MDhhNjItZjRlMC00OTg1LTllMzQt
MTIwNTNhZGU5ZmFmLzEveFQ0cXVnVVY3SkRSQ1JFR0Q4OHBJMjEyM2Q4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi85MDhhNjItZjRlMC00OTg1LTllMzQtMTIwNTNhZGU5ZmFm
LzEveFQ0cXVnVVY3SkRSQ1JFR0Q4OHBJMjEyM2Q4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVdY8kyqs
S98tkSKgBtfO4HJ8y5eJYIuahxFEsijuYw4NWV3tMS0n7V9iGjXCS5Raj1S8+EmW
h+eFcP7JkSf2FyXtBSGjyHQvqKF0i+XwFYzJimu8Vp/j+Mx95AEOWHvJXaNN7Kah
qIIn7JqMPdVxCaqWbt5I9LesomLVRmSPCE7Y9cVFDPQNZsdYK6mYd9o/GTj1S0J3
ba/AhFBU0L6Si34qCBNhmQYwOQb1mXdVhdFTn1+/eNwcuWUilZr8sD8U542iZDqd
/5kQGjfKYETvzH1AcSh35gpo9EZ6dogjrcDTZMTJCxqIG/TXTaD9MACqM+qRsp6R
9gXUV+DofALE/Q==
-----END CERTIFICATE-----
Generated at Sat Sep 21 00:28:15 2024 by rpki-client on console-fra.rpki-client.org