Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
File: 2sedKFW4l0GCCNR7puUUYAFbXXs.mft (raw, json)
Hash identifier: ugZA2FWGNQyo8YL64cCEtnCsTNvhHTZe7vhlC07uIFE=
Subject key identifier: A1:3E:18:F5:F8:C4:18:5A:E9:4D:C2:C4:62:CE:E8:97:E1:24:1E:D0
Authority key identifier: DA:C7:9D:28:55:B8:97:41:82:08:D4:7B:A6:E5:14:60:01:5B:5D:7B
Certificate issuer: /CN=dac79d2855b897418208d47ba6e51460015b5d7b
Certificate serial: 019352AE07463B760B46460BCD67DC872868
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
Manifest number: 136F
Signing time: Fri 22 Nov 2024 07:02:36 +0000
Manifest this update: Fri 22 Nov 2024 07:02:36 +0000
Manifest next update: Sat 23 Nov 2024 07:02:36 +0000
Files and hashes: 1: 2sedKFW4l0GCCNR7puUUYAFbXXs.crl (hash: bOomxPI/8MbId40CYgkj5Rrg5T7XpBb5svVbFICvo98=)
2: RKWaBJlrRKZLhWRWq8U29Mmn89g.roa (hash: SzuQIGPldwwtZKcKFlwiJQddqi+nsxzZOmIZ2R2bcxU=)
3: ezgTr0JNt3AWLdngxhJQGMv8Kuo.roa (hash: V2Qz1qtTvo3vVmwftQNU0rS8eJ+z5sLzUc8QzMJjRs0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:ae:07:46:3b:76:0b:46:46:0b:cd:67:dc:87:28:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac79d2855b897418208d47ba6e51460015b5d7b
Validity
Not Before: Nov 22 07:02:36 2024 GMT
Not After : Nov 23 07:02:36 2024 GMT
Subject: CN=a13e18f5f8c4185ae94dc2c462cee897e1241ed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2f:3a:66:2a:77:3e:8e:ba:1a:4c:0e:aa:96:
95:8f:c9:c3:63:73:4e:54:5b:2f:71:72:17:48:92:
5a:21:07:d8:28:c6:e1:3a:7e:1d:c4:0c:70:f4:15:
e0:fb:28:f0:c4:61:5b:32:df:84:33:b7:70:a4:47:
5c:3d:bf:91:9e:05:1b:19:b1:e5:68:60:df:9f:51:
de:f5:3e:74:90:8c:a1:6b:c1:58:a7:35:10:3c:89:
ab:10:ff:2b:bb:4d:90:f5:99:07:e9:5a:6c:2e:67:
11:85:48:f9:84:47:e2:77:61:68:2e:37:ca:29:7c:
15:22:9b:2a:84:85:13:92:9e:28:a8:b3:d8:3d:7f:
62:c2:9a:7a:12:cf:ea:a2:c8:3f:13:b9:75:fa:94:
9c:ea:fa:49:d9:b9:06:f6:d3:6f:73:57:f0:7b:c6:
de:cc:61:38:f9:53:f2:0f:8d:4f:4c:90:fa:57:9b:
ca:1e:db:34:ba:df:35:be:02:44:76:67:6a:41:84:
f0:19:50:d9:d4:ad:fe:c9:9b:27:e9:5f:54:54:a7:
74:6b:b5:72:94:62:6a:33:d3:2c:85:45:55:c9:f4:
97:14:c4:92:29:23:02:eb:35:ca:21:a9:f1:f0:fa:
52:2d:26:56:02:50:f2:c5:4d:5d:06:74:a4:a5:eb:
c3:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:3E:18:F5:F8:C4:18:5A:E9:4D:C2:C4:62:CE:E8:97:E1:24:1E:D0
X509v3 Authority Key Identifier:
keyid:DA:C7:9D:28:55:B8:97:41:82:08:D4:7B:A6:E5:14:60:01:5B:5D:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:02:a0:cf:18:8f:d0:b4:d8:4d:8c:f9:5c:4d:de:b3:b5:85:
7c:7f:cd:50:cc:6d:7e:64:73:18:a0:41:9a:25:5b:8e:33:ca:
16:5b:b2:10:3e:e9:ad:63:35:f4:ca:4d:1e:3b:18:07:05:b9:
76:ea:f8:c0:ab:4a:46:98:cc:f6:84:0b:46:68:5a:54:08:fd:
f9:28:8a:c3:9d:5a:3f:83:b6:cc:79:73:2f:36:d1:5b:7a:2c:
b5:b2:1d:df:18:3d:01:67:6d:82:09:c9:8f:94:45:ef:8c:ef:
6c:ff:d0:77:a2:43:55:ac:47:0c:e1:31:42:02:b9:57:6d:e6:
f9:30:a6:dd:ec:51:94:78:3d:c7:35:7c:9b:f7:56:ca:d5:27:
35:cd:cb:2e:07:b8:b3:0b:89:b4:84:aa:23:4c:46:bf:c2:45:
98:67:4d:ad:eb:27:df:91:f9:e2:09:95:7d:6d:4a:86:96:be:
61:0b:da:c9:2f:d7:06:d9:c7:43:2f:f2:ae:16:e2:b7:34:c3:
0a:1d:3b:9a:85:17:bf:5c:56:82:b7:ba:8e:aa:1f:b3:c7:eb:
2f:c9:66:9f:00:7f:e7:4c:92:f7:7b:8a:db:ac:31:4c:97:12:
c0:2c:4e:a0:9f:42:8d:a6:32:4a:d8:11:87:4a:b6:c3:4d:10:
23:11:63:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNSrgdGO3YLRkYLzWfchyhoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhYzc5ZDI4NTViODk3NDE4MjA4ZDQ3YmE2ZTUxNDYwMDE1
YjVkN2IwHhcNMjQxMTIyMDcwMjM2WhcNMjQxMTIzMDcwMjM2WjAzMTEwLwYDVQQD
EyhhMTNlMThmNWY4YzQxODVhZTk0ZGMyYzQ2MmNlZTg5N2UxMjQxZWQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuC86Zip3Po66GkwOqpaVj8nDY3NO
VFsvcXIXSJJaIQfYKMbhOn4dxAxw9BXg+yjwxGFbMt+EM7dwpEdcPb+RngUbGbHl
aGDfn1He9T50kIyha8FYpzUQPImrEP8ru02Q9ZkH6VpsLmcRhUj5hEfid2FoLjfK
KXwVIpsqhIUTkp4oqLPYPX9iwpp6Es/qosg/E7l1+pSc6vpJ2bkG9tNvc1fwe8be
zGE4+VPyD41PTJD6V5vKHts0ut81vgJEdmdqQYTwGVDZ1K3+yZsn6V9UVKd0a7Vy
lGJqM9MshUVVyfSXFMSSKSMC6zXKIanx8PpSLSZWAlDyxU1dBnSkpevDkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKE+GPX4xBha6U3CxGLO6JfhJB7QMB8GA1UdIwQY
MBaAFNrHnShVuJdBggjUe6blFGABW117MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnNlZEtGVzRsMEdDQ05SN3B1VVVZQUZiWFhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny81YjExNDktNjQ3ZC00MDY3LTk4MDct
NDQ1ZDQ1ODhjMzEyLzEvMnNlZEtGVzRsMEdDQ05SN3B1VVVZQUZiWFhzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny81YjExNDktNjQ3ZC00MDY3LTk4MDctNDQ1ZDQ1ODhjMzEy
LzEvMnNlZEtGVzRsMEdDQ05SN3B1VVVZQUZiWFhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVQKgzxiP
0LTYTYz5XE3es7WFfH/NUMxtfmRzGKBBmiVbjjPKFluyED7prWM19MpNHjsYBwW5
dur4wKtKRpjM9oQLRmhaVAj9+SiKw51aP4O2zHlzLzbRW3ostbId3xg9AWdtggnJ
j5RF74zvbP/Qd6JDVaxHDOExQgK5V23m+TCm3exRlHg9xzV8m/dWytUnNc3LLge4
swuJtISqI0xGv8JFmGdNresn35H54gmVfW1Khpa+YQvayS/XBtnHQy/yrhbitzTD
Ch07moUXv1xWgre6jqofs8frL8lmnwB/50yS93uK26wxTJcSwCxOoJ9CjaYyStgR
h0q2w00QIxFjfQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 08:18:26 2024 by rpki-client on console-fra.rpki-client.org