Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.mft
File: M-okCE9ribBlVZkQ4DEetRS-uxE.mft (raw, json)
Hash identifier: 08ZoN3+wvcFI8ZaJauCRW5rusCgRUmx8XE8N31II/ow=
Subject key identifier: D8:29:C1:E7:74:3D:FF:23:F8:83:5D:2C:4D:7D:79:5F:ED:65:36:8C
Authority key identifier: 33:EA:24:08:4F:6B:89:B0:65:55:99:10:E0:31:1E:B5:14:BE:BB:11
Certificate issuer: /CN=33ea24084f6b89b065559910e0311eb514bebb11
Certificate serial: 0193568B0A22F1EF3DFA2CCA0CC4AB8FE38D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M-okCE9ribBlVZkQ4DEetRS-uxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.mft
Manifest number: 06A8
Signing time: Sat 23 Nov 2024 01:02:52 +0000
Manifest this update: Sat 23 Nov 2024 01:02:52 +0000
Manifest next update: Sun 24 Nov 2024 01:02:52 +0000
Files and hashes: 1: M-okCE9ribBlVZkQ4DEetRS-uxE.crl (hash: rgWihyKgwXQm98GfD/G8ilu9LuL0Z3rM+3c24c82oKA=)
2: u1golxCdnIwv9i_BsPgKmr2g3vI.roa (hash: 0y8aYsZLNzu6J8ZCgkmbf3RhIowBAVptIn8LjGcw7nc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.mft
rsync://rpki.ripe.net/repository/DEFAULT/M-okCE9ribBlVZkQ4DEetRS-uxE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8b:0a:22:f1:ef:3d:fa:2c:ca:0c:c4:ab:8f:e3:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33ea24084f6b89b065559910e0311eb514bebb11
Validity
Not Before: Nov 23 01:02:52 2024 GMT
Not After : Nov 24 01:02:52 2024 GMT
Subject: CN=d829c1e7743dff23f8835d2c4d7d795fed65368c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:93:5f:1e:ba:96:93:8b:21:e2:20:ca:77:f9:
8e:f8:d5:10:b5:b7:63:67:32:d0:41:b6:ce:eb:37:
1a:44:8e:f3:51:d7:45:ae:73:af:d6:6a:5e:bc:52:
d3:fe:4b:bf:0b:26:15:98:1a:30:21:ba:20:cb:3a:
99:e0:75:18:a7:8f:f7:c6:26:97:c2:45:87:2d:82:
25:30:88:e9:b9:d9:f3:cb:22:cb:25:4a:74:1d:8d:
fe:e2:2c:8a:3e:d7:f9:e8:c4:e1:e3:c2:1e:23:11:
23:40:05:ed:79:21:39:8a:bb:ec:20:d1:91:9d:4b:
0e:8b:b9:f1:7e:da:a9:7e:54:dc:b0:2b:2c:d9:ed:
58:6d:ac:da:8b:01:8c:e8:bb:be:83:63:9e:2a:6f:
b5:b9:f2:d9:c9:4d:8e:68:9c:d3:17:e5:e4:ea:27:
5b:93:ac:9d:ad:65:39:af:44:33:47:0e:b1:52:ec:
7b:48:a2:d7:ff:87:cd:05:69:6e:f6:fd:f3:22:0d:
9a:2c:81:b3:b6:c9:8c:82:07:cd:68:c3:75:7a:1f:
34:43:35:e9:54:b9:8c:a2:e6:b0:9d:02:05:84:4c:
ae:08:77:d5:de:9e:0b:3b:59:8d:22:b9:2d:be:7b:
a0:e1:07:f8:08:dd:32:8e:74:4a:58:14:8b:9f:ba:
72:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:29:C1:E7:74:3D:FF:23:F8:83:5D:2C:4D:7D:79:5F:ED:65:36:8C
X509v3 Authority Key Identifier:
keyid:33:EA:24:08:4F:6B:89:B0:65:55:99:10:E0:31:1E:B5:14:BE:BB:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M-okCE9ribBlVZkQ4DEetRS-uxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:3d:db:47:da:2b:3f:43:26:7a:df:2f:94:d6:32:28:a4:6f:
67:3c:23:b4:8a:43:9f:c3:33:66:61:16:ab:d3:74:48:19:3a:
65:19:00:25:ab:31:92:48:f9:b0:88:1a:76:53:a9:55:9f:2e:
9e:96:87:75:79:59:dd:53:9d:5f:06:49:20:81:64:9f:02:43:
28:0f:55:fb:4e:6b:e2:f6:79:6d:ed:06:6b:a0:1b:b0:7c:b0:
93:55:f0:41:a9:d3:2e:a9:47:3f:d0:2e:41:1e:e5:61:2d:e7:
86:2d:a8:bd:f8:95:bd:67:d9:f7:b5:1a:fb:c2:ed:a7:7e:ce:
3a:53:90:38:6b:1b:d9:a4:b9:79:ac:0a:40:0c:97:30:92:b5:
20:da:3e:c0:2a:6f:a5:be:1e:86:33:8f:0e:ed:7d:2a:93:8f:
65:0c:93:de:10:95:12:ed:a8:07:6a:dc:12:dc:27:b9:e0:f4:
ce:f4:bf:c9:c8:83:6a:42:b3:18:a0:22:ab:e1:50:63:93:85:
22:e8:eb:6d:19:e2:07:bc:8a:0a:87:15:f5:bb:17:ce:8d:11:
7f:95:85:79:e7:b6:2e:f7:ce:1f:59:e9:76:38:ba:3b:59:7d:
8b:0a:d3:d0:33:2f:7d:52:4b:b8:7c:13:88:f3:bf:a3:1a:f2:
d4:45:16:0f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNWiwoi8e89+izKDMSrj+ONMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMzZWEyNDA4NGY2Yjg5YjA2NTU1OTkxMGUwMzExZWI1MTRi
ZWJiMTEwHhcNMjQxMTIzMDEwMjUyWhcNMjQxMTI0MDEwMjUyWjAzMTEwLwYDVQQD
EyhkODI5YzFlNzc0M2RmZjIzZjg4MzVkMmM0ZDdkNzk1ZmVkNjUzNjhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx5NfHrqWk4sh4iDKd/mO+NUQtbdj
ZzLQQbbO6zcaRI7zUddFrnOv1mpevFLT/ku/CyYVmBowIbogyzqZ4HUYp4/3xiaX
wkWHLYIlMIjpudnzyyLLJUp0HY3+4iyKPtf56MTh48IeIxEjQAXteSE5irvsINGR
nUsOi7nxftqpflTcsCss2e1YbazaiwGM6Lu+g2OeKm+1ufLZyU2OaJzTF+Xk6idb
k6ydrWU5r0QzRw6xUux7SKLX/4fNBWlu9v3zIg2aLIGztsmMggfNaMN1eh80QzXp
VLmMouawnQIFhEyuCHfV3p4LO1mNIrktvnug4Qf4CN0yjnRKWBSLn7pyGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNgpwed0Pf8j+INdLE19eV/tZTaMMB8GA1UdIwQY
MBaAFDPqJAhPa4mwZVWZEOAxHrUUvrsRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTS1va0NFOXJpYkJsVlprUTRERWV0UlMtdXhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9mZTNmZWYtZTE3Ni00NTFhLTk1ZDUt
OTA1MTk2ZWJhMGJlLzEvTS1va0NFOXJpYkJsVlprUTRERWV0UlMtdXhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9mZTNmZWYtZTE3Ni00NTFhLTk1ZDUtOTA1MTk2ZWJhMGJl
LzEvTS1va0NFOXJpYkJsVlprUTRERWV0UlMtdXhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXD3bR9or
P0Mmet8vlNYyKKRvZzwjtIpDn8MzZmEWq9N0SBk6ZRkAJasxkkj5sIgadlOpVZ8u
npaHdXlZ3VOdXwZJIIFknwJDKA9V+05r4vZ5be0Ga6AbsHywk1XwQanTLqlHP9Au
QR7lYS3nhi2ovfiVvWfZ97Ua+8Ltp37OOlOQOGsb2aS5eawKQAyXMJK1INo+wCpv
pb4ehjOPDu19KpOPZQyT3hCVEu2oB2rcEtwnueD0zvS/yciDakKzGKAiq+FQY5OF
IujrbRniB7yKCocV9bsXzo0Rf5WFeee2LvfOH1npdji6O1l9iwrT0DMvfVJLuHwT
iPO/oxry1EUWDw==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:41:37 2024 by rpki-client on console-ams.rpki-client.org