Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
File: upcN4SazoLVI2tdvXvqIhVxvH_I.mft (raw, json)
Hash identifier: jQ6J2NhPIsyCHP6bz6yLRP2qQERDCvsHOJxM2tHMEQM=
Subject key identifier: 60:59:CB:FA:73:65:71:AC:B5:D0:3D:BE:79:11:E7:80:B0:0B:E8:F4
Authority key identifier: BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
Certificate issuer: /CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Certificate serial: 019356F6EB0602EFCE0B026E83B89A8C663A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
Manifest number: 06F7
Signing time: Sat 23 Nov 2024 03:00:42 +0000
Manifest this update: Sat 23 Nov 2024 03:00:42 +0000
Manifest next update: Sun 24 Nov 2024 03:00:42 +0000
Files and hashes: 1: 0lrUKabjgHrF6r95__3hqy161dU.roa (hash: JltB8FGl6NI5Di1GHnAExwhAMzq0AeTLZzXVVuEv/xs=)
2: upcN4SazoLVI2tdvXvqIhVxvH_I.crl (hash: o1l7rm7uqMETGIYkBa5AFEhu3IaDkNXdVZnYG18lIIE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:f6:eb:06:02:ef:ce:0b:02:6e:83:b8:9a:8c:66:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Validity
Not Before: Nov 23 03:00:42 2024 GMT
Not After : Nov 24 03:00:42 2024 GMT
Subject: CN=6059cbfa736571acb5d03dbe7911e780b00be8f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f9:59:f5:7e:da:c8:04:20:33:20:92:69:b9:
bc:bd:58:56:75:0d:d6:1a:3f:a4:fe:f4:a2:21:c3:
ee:bd:84:f1:1c:db:14:9c:9b:c6:88:68:60:34:5e:
b0:0e:1c:f6:5a:54:be:12:84:00:74:17:07:bc:ae:
48:21:b5:d5:89:f8:36:74:c3:a4:5b:17:c7:f1:dd:
04:9d:a0:8b:5d:d6:eb:7d:0b:bd:d7:ee:10:1d:42:
67:14:4b:23:25:31:ff:02:fd:be:a4:17:35:3e:17:
89:5d:52:3c:b3:44:3a:93:92:1e:c6:38:f8:77:db:
7a:ba:bb:ed:d1:5f:23:3a:d9:a2:ad:a7:30:ef:ea:
04:5e:19:69:17:b8:7e:1f:3b:79:78:aa:20:d2:de:
12:38:e3:ce:a7:12:a7:f3:ed:f2:e3:36:3d:22:0a:
59:f1:00:22:d1:12:ea:eb:3c:e3:84:fb:6c:31:25:
01:72:15:bd:45:a1:b0:63:3a:50:47:ab:54:ee:ea:
da:e8:a0:0a:9a:d1:e4:98:dc:2d:5b:a4:0d:ec:c0:
a2:fe:22:0e:56:61:1a:0e:ac:53:43:0f:ae:42:5c:
45:8e:81:94:f1:44:ca:4c:0d:7b:ca:73:90:b5:f5:
bf:1d:5f:28:3d:00:2d:fc:78:cf:79:b6:45:8c:87:
72:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:59:CB:FA:73:65:71:AC:B5:D0:3D:BE:79:11:E7:80:B0:0B:E8:F4
X509v3 Authority Key Identifier:
keyid:BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e7:f0:12:85:2d:5f:07:f2:ca:c3:43:85:9c:83:a7:2a:b2:93:
13:c5:ba:ee:21:af:f3:35:dd:ae:06:e0:48:71:1d:39:a0:bb:
7f:e9:eb:b8:21:b1:67:3c:8d:01:74:d6:63:51:e4:19:dc:05:
90:fb:c6:3e:9b:49:12:b5:c3:68:6c:cb:18:36:19:5b:62:48:
cf:7e:ab:b6:21:63:bd:66:8d:72:e7:42:05:2d:ef:18:2a:5f:
64:89:b7:ba:d3:4b:f7:45:29:55:66:65:ad:0b:92:79:78:9d:
18:39:e3:6d:ad:c5:b9:8a:12:43:90:79:16:ec:b7:09:9b:13:
5c:5a:81:a0:9e:8b:47:7c:06:75:ff:b9:21:17:fc:c0:68:4a:
a2:c2:70:d7:b2:e1:c3:c7:0f:f7:63:3e:44:1f:f5:f0:70:d7:
cc:27:81:01:73:87:54:4f:5c:07:97:e1:b0:28:d0:46:8d:fc:
73:04:fa:79:19:46:de:b6:8d:79:e6:18:97:7f:29:07:ec:2e:
13:7b:69:a9:24:da:69:aa:47:25:82:f0:21:1f:eb:89:af:a5:
01:12:e2:e9:84:c4:04:44:c3:6e:a9:2d:2e:c2:a2:19:47:6b:
70:87:df:5e:5a:f4:39:93:8b:78:6d:6f:94:3d:16:18:d8:3b:
63:86:f1:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNW9usGAu/OCwJug7iajGY6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhOTcwZGUxMjZiM2EwYjU0OGRhZDc2ZjVlZmE4ODg1NWM2
ZjFmZjIwHhcNMjQxMTIzMDMwMDQyWhcNMjQxMTI0MDMwMDQyWjAzMTEwLwYDVQQD
Eyg2MDU5Y2JmYTczNjU3MWFjYjVkMDNkYmU3OTExZTc4MGIwMGJlOGY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwflZ9X7ayAQgMyCSabm8vVhWdQ3W
Gj+k/vSiIcPuvYTxHNsUnJvGiGhgNF6wDhz2WlS+EoQAdBcHvK5IIbXVifg2dMOk
WxfH8d0EnaCLXdbrfQu91+4QHUJnFEsjJTH/Av2+pBc1PheJXVI8s0Q6k5Iexjj4
d9t6urvt0V8jOtmiracw7+oEXhlpF7h+Hzt5eKog0t4SOOPOpxKn8+3y4zY9IgpZ
8QAi0RLq6zzjhPtsMSUBchW9RaGwYzpQR6tU7ura6KAKmtHkmNwtW6QN7MCi/iIO
VmEaDqxTQw+uQlxFjoGU8UTKTA17ynOQtfW/HV8oPQAt/HjPebZFjIdyLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGBZy/pzZXGstdA9vnkR54CwC+j0MB8GA1UdIwQY
MBaAFLqXDeEms6C1SNrXb176iIVcbx/yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXBjTjRTYXpvTFZJMnRkdlh2cUloVnh2SF9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9hZjcyZTgtZjBkMi00ZDY2LWI1MjAt
M2FiYTU5NWI1OGE4LzEvdXBjTjRTYXpvTFZJMnRkdlh2cUloVnh2SF9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC9hZjcyZTgtZjBkMi00ZDY2LWI1MjAtM2FiYTU5NWI1OGE4
LzEvdXBjTjRTYXpvTFZJMnRkdlh2cUloVnh2SF9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA5/AShS1f
B/LKw0OFnIOnKrKTE8W67iGv8zXdrgbgSHEdOaC7f+nruCGxZzyNAXTWY1HkGdwF
kPvGPptJErXDaGzLGDYZW2JIz36rtiFjvWaNcudCBS3vGCpfZIm3utNL90UpVWZl
rQuSeXidGDnjba3FuYoSQ5B5Fuy3CZsTXFqBoJ6LR3wGdf+5IRf8wGhKosJw17Lh
w8cP92M+RB/18HDXzCeBAXOHVE9cB5fhsCjQRo38cwT6eRlG3raNeeYYl38pB+wu
E3tpqSTaaapHJYLwIR/ria+lARLi6YTEBETDbqktLsKiGUdrcIffXlr0OZOLeG1v
lD0WGNg7Y4bxNg==
-----END CERTIFICATE-----
Generated at Sat Nov 23 09:59:36 2024 by rpki-client on console-fra.rpki-client.org