Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
File: XiZI8SkNRHG821C4K-TtkyADCU0.mft (raw, json)
Hash identifier: mD60FJsAl1n4h2K5j8SRuTHaxO4yIumcvCIXiutKttU=
Subject key identifier: B6:3A:30:18:84:79:CD:81:95:01:30:4D:E9:2C:58:2A:BF:D5:2C:80
Authority key identifier: 5E:26:48:F1:29:0D:44:71:BC:DB:50:B8:2B:E4:ED:93:20:03:09:4D
Certificate issuer: /CN=5e2648f1290d4471bcdb50b82be4ed932003094d
Certificate serial: 01936331B34C86552FCD8C14ACA8C8598E79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
Manifest number: 1309
Signing time: Mon 25 Nov 2024 12:00:21 +0000
Manifest this update: Mon 25 Nov 2024 12:00:21 +0000
Manifest next update: Tue 26 Nov 2024 12:00:21 +0000
Files and hashes: 1: XiZI8SkNRHG821C4K-TtkyADCU0.crl (hash: G/HQ54UtF59xmkEGAz5QmZyl8g46IoebpQfIPJfQDiQ=)
2: i3wlXcSZ2_ouzG5q_aD23L0jpsI.roa (hash: 9re+I1Awy0rUgcI+wPmrdrmx748sxYuNwfXRkgED2HA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 12:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:63:31:b3:4c:86:55:2f:cd:8c:14:ac:a8:c8:59:8e:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e2648f1290d4471bcdb50b82be4ed932003094d
Validity
Not Before: Nov 25 12:00:21 2024 GMT
Not After : Nov 26 12:00:21 2024 GMT
Subject: CN=b63a30188479cd819501304de92c582abfd52c80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:86:0f:a9:98:45:84:b6:74:72:d2:f6:6b:1d:
94:91:54:80:8d:89:9e:aa:d6:3f:ba:8d:90:3f:96:
0c:a0:96:b8:69:2e:06:3c:b9:37:70:be:07:65:29:
74:de:c0:29:bd:93:b3:b7:2e:98:4b:8b:49:c3:ca:
c8:a3:13:92:b5:53:83:3d:00:c9:1d:6d:ea:ac:b2:
71:8c:6c:fc:e6:21:1d:4c:65:a2:ec:4d:40:d9:a7:
d6:e3:e8:4f:5d:f2:01:66:13:91:d9:fb:dd:91:37:
5b:40:09:34:54:34:eb:11:d2:c7:e4:66:05:a2:50:
2d:16:b4:75:95:2f:6a:6a:48:ec:b1:78:44:a0:7d:
a6:75:4d:a8:49:9e:b8:b8:94:21:15:8e:6f:16:8f:
61:e0:27:ad:7b:59:c9:fc:3c:63:9e:2c:82:0a:c7:
a6:11:ad:77:07:3b:44:8f:7c:93:cb:cf:84:fc:76:
04:bb:05:33:02:8b:43:f9:b7:2b:00:91:4d:26:d8:
e8:81:75:64:81:dc:04:d8:0c:20:dc:10:c8:13:a5:
cc:40:5f:ef:60:00:1b:7d:d6:d0:57:cd:4b:34:08:
4c:cc:e8:6b:1a:fb:75:75:f0:4c:7e:99:7d:bb:df:
fd:04:43:00:95:f8:71:a8:2c:98:d7:61:98:db:71:
4f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:3A:30:18:84:79:CD:81:95:01:30:4D:E9:2C:58:2A:BF:D5:2C:80
X509v3 Authority Key Identifier:
keyid:5E:26:48:F1:29:0D:44:71:BC:DB:50:B8:2B:E4:ED:93:20:03:09:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:ce:5e:ac:f9:94:ee:43:c3:18:ed:62:1a:d3:b2:77:e6:91:
fe:11:d2:68:bb:08:6b:d5:2d:28:5e:54:72:c1:5c:e2:4e:1e:
e7:7c:d3:ea:04:ed:76:99:41:a2:a0:1a:7f:0f:82:28:42:6b:
a1:f2:1a:c2:ae:62:97:62:bc:b0:ca:fa:41:b2:ee:48:98:19:
a4:4e:de:91:b9:ca:86:77:ae:bd:8e:ad:a9:66:5b:83:7d:67:
93:fe:f7:43:3e:71:38:ae:26:7a:fa:a3:06:98:95:c0:e1:ce:
d1:87:d4:1b:cc:07:5f:c6:c9:29:43:47:86:fc:b5:77:13:aa:
9d:7e:d8:8d:63:9b:fb:f4:aa:6f:04:9c:d2:51:77:ca:c2:28:
b2:53:d9:59:56:93:aa:93:a8:e1:4b:4c:03:e3:7e:d1:57:ce:
37:88:31:74:a0:18:19:8d:50:59:14:60:35:19:10:f4:36:f1:
d9:a6:56:81:29:4a:79:de:01:e9:48:0a:80:14:a4:0f:45:9a:
e5:b0:69:2f:2e:24:be:99:c4:03:7d:51:6e:ac:e2:f1:e6:90:
dd:3c:ce:97:76:4c:e3:24:ce:43:f2:1f:1b:ab:a3:d3:9d:a4:
7f:8a:b8:95:23:7b:df:6a:91:78:3c:3d:e7:55:5f:4b:28:0d:
77:cc:30:54
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNjMbNMhlUvzYwUrKjIWY55MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlMjY0OGYxMjkwZDQ0NzFiY2RiNTBiODJiZTRlZDkzMjAw
MzA5NGQwHhcNMjQxMTI1MTIwMDIxWhcNMjQxMTI2MTIwMDIxWjAzMTEwLwYDVQQD
EyhiNjNhMzAxODg0NzljZDgxOTUwMTMwNGRlOTJjNTgyYWJmZDUyYzgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0oYPqZhFhLZ0ctL2ax2UkVSAjYme
qtY/uo2QP5YMoJa4aS4GPLk3cL4HZSl03sApvZOzty6YS4tJw8rIoxOStVODPQDJ
HW3qrLJxjGz85iEdTGWi7E1A2afW4+hPXfIBZhOR2fvdkTdbQAk0VDTrEdLH5GYF
olAtFrR1lS9qakjssXhEoH2mdU2oSZ64uJQhFY5vFo9h4Cete1nJ/DxjniyCCsem
Ea13BztEj3yTy8+E/HYEuwUzAotD+bcrAJFNJtjogXVkgdwE2Awg3BDIE6XMQF/v
YAAbfdbQV81LNAhMzOhrGvt1dfBMfpl9u9/9BEMAlfhxqCyY12GY23FPUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLY6MBiEec2BlQEwTeksWCq/1SyAMB8GA1UdIwQY
MBaAFF4mSPEpDURxvNtQuCvk7ZMgAwlNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGlaSThTa05SSEc4MjFDNEstVHRreUFEQ1UwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9iYzRjNTMtMGRiNS00ZjExLTg0ZjYt
ZjU1ZmNkZjk3ODQ2LzEvWGlaSThTa05SSEc4MjFDNEstVHRreUFEQ1UwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9iYzRjNTMtMGRiNS00ZjExLTg0ZjYtZjU1ZmNkZjk3ODQ2
LzEvWGlaSThTa05SSEc4MjFDNEstVHRreUFEQ1UwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj85erPmU
7kPDGO1iGtOyd+aR/hHSaLsIa9UtKF5UcsFc4k4e53zT6gTtdplBoqAafw+CKEJr
ofIawq5il2K8sMr6QbLuSJgZpE7ekbnKhneuvY6tqWZbg31nk/73Qz5xOK4mevqj
BpiVwOHO0YfUG8wHX8bJKUNHhvy1dxOqnX7YjWOb+/SqbwSc0lF3ysIoslPZWVaT
qpOo4UtMA+N+0VfON4gxdKAYGY1QWRRgNRkQ9Dbx2aZWgSlKed4B6UgKgBSkD0Wa
5bBpLy4kvpnEA31Rbqzi8eaQ3TzOl3ZM4yTOQ/IfG6uj052kf4q4lSN732qReDw9
51VfSygNd8wwVA==
-----END CERTIFICATE-----
Generated at Mon Nov 25 18:14:34 2024 by rpki-client on console-fra.rpki-client.org