Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.mft
File: rkopxhOOLZPVSjYyi5TLH4o4Kms.mft (raw, json)
Hash identifier: HVve0+0d/isq+FcLkuwtAcb0ZvZoUIpB/310uw0FEAs=
Subject key identifier: 77:85:63:35:13:14:4B:FF:FD:1A:A0:98:B9:55:62:00:F1:7C:49:B2
Authority key identifier: AE:4A:29:C6:13:8E:2D:93:D5:4A:36:32:8B:94:CB:1F:8A:38:2A:6B
Certificate issuer: /CN=ae4a29c6138e2d93d54a36328b94cb1f8a382a6b
Certificate serial: 0193622127AE12D84ABB0B1FAB07E7A8C593
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rkopxhOOLZPVSjYyi5TLH4o4Kms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.mft
Manifest number: 0834
Signing time: Mon 25 Nov 2024 07:02:40 +0000
Manifest this update: Mon 25 Nov 2024 07:02:40 +0000
Manifest next update: Tue 26 Nov 2024 07:02:40 +0000
Files and hashes: 1: bcW0EoeX7-Of9clGC00O3N70dqk.roa (hash: HYqxRKhOyMF81Mf2C2f854WllrwLqMMxNiK1yIzEIsg=)
2: rkopxhOOLZPVSjYyi5TLH4o4Kms.crl (hash: Y1vsvyjZ8poDHhmt/ahhfOepJ69F+vJ8wWvcSaDOguE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.mft
rsync://rpki.ripe.net/repository/DEFAULT/rkopxhOOLZPVSjYyi5TLH4o4Kms.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 07:02:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:62:21:27:ae:12:d8:4a:bb:0b:1f:ab:07:e7:a8:c5:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae4a29c6138e2d93d54a36328b94cb1f8a382a6b
Validity
Not Before: Nov 25 07:02:40 2024 GMT
Not After : Nov 26 07:02:40 2024 GMT
Subject: CN=7785633513144bfffd1aa098b9556200f17c49b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:68:3f:81:a7:b5:70:f1:b0:0e:1d:6c:e9:4f:
e0:f9:d4:da:64:62:54:b6:77:0e:5b:c0:26:91:d8:
24:a0:7a:f0:b6:1f:b5:69:99:4f:18:26:86:7f:55:
df:d6:2f:d0:8d:96:61:7d:5c:46:51:bf:bc:8b:58:
9f:73:00:13:1a:a1:46:7d:a8:cd:f0:0b:2d:74:7c:
ec:32:4a:9d:fa:f4:d1:7d:d0:db:03:10:ea:bd:8a:
d2:ac:66:7b:73:28:30:2f:ae:0a:6c:e0:19:47:a5:
f0:99:f6:d1:05:54:47:ae:8b:6a:74:7e:50:81:89:
b4:bc:08:c8:de:74:fa:07:a0:61:5a:60:2a:b8:05:
86:9c:f1:19:eb:ef:c3:0b:6a:c0:67:37:f4:03:ee:
33:a7:d9:c6:db:e5:83:fa:1f:47:73:ea:ea:64:10:
28:24:fe:12:b9:4a:fc:ac:62:dc:1e:8c:a8:19:45:
b4:25:35:f0:37:bf:cf:eb:3d:f3:7c:cd:59:d9:f1:
19:3a:a7:44:ce:da:d6:e0:e8:bd:57:25:f3:b1:fa:
2d:86:45:3a:38:3d:e5:0b:02:ce:15:6f:7a:54:53:
c8:aa:1f:99:12:8b:27:9c:0b:28:b2:66:c3:ac:21:
ff:38:c1:d6:af:5d:a8:e6:7a:21:62:cc:88:01:4c:
5c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:85:63:35:13:14:4B:FF:FD:1A:A0:98:B9:55:62:00:F1:7C:49:B2
X509v3 Authority Key Identifier:
keyid:AE:4A:29:C6:13:8E:2D:93:D5:4A:36:32:8B:94:CB:1F:8A:38:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rkopxhOOLZPVSjYyi5TLH4o4Kms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:e3:e6:67:64:53:9b:e4:df:93:0f:fa:47:e8:b7:84:d9:35:
63:66:1c:93:ef:93:cc:aa:f3:3b:1d:20:66:16:b6:c6:7b:28:
ca:64:62:f6:b8:ec:7e:eb:a0:a7:12:2f:13:d1:ae:45:9f:1b:
04:54:3b:a6:46:86:84:2d:b3:85:14:9c:e0:95:83:d6:8f:94:
d0:65:10:90:8f:56:95:29:26:28:8f:57:79:d4:e2:a4:98:32:
fe:52:81:3a:ef:35:ec:af:03:b9:d4:5a:7e:f7:52:0d:98:4b:
06:65:de:a1:12:02:ff:b6:e4:14:e6:09:e9:95:a7:33:de:d6:
d0:c2:35:23:d0:46:ef:66:a4:fa:69:3b:79:8c:64:56:9a:40:
e3:d1:61:3e:ef:93:81:ec:38:6a:20:26:91:9d:2a:e5:d6:f4:
e3:0e:8e:22:40:03:a2:44:cc:73:41:02:b5:48:0d:fa:c5:71:
19:2f:cf:49:76:55:2f:f3:19:8d:57:6e:29:8e:50:ca:ab:5e:
63:66:d0:d7:10:6f:f8:de:e3:7c:7b:0f:24:cc:bd:6c:7c:63:
bb:5d:9d:1c:92:02:67:2b:d3:43:53:4f:0a:91:5c:dd:76:fa:
79:f0:64:e5:52:47:1e:2e:97:cd:7b:ae:1d:b1:7b:e0:88:99:
52:4f:bd:ea
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNiISeuEthKuwsfqwfnqMWTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlNGEyOWM2MTM4ZTJkOTNkNTRhMzYzMjhiOTRjYjFmOGEz
ODJhNmIwHhcNMjQxMTI1MDcwMjQwWhcNMjQxMTI2MDcwMjQwWjAzMTEwLwYDVQQD
Eyg3Nzg1NjMzNTEzMTQ0YmZmZmQxYWEwOThiOTU1NjIwMGYxN2M0OWIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg2g/gae1cPGwDh1s6U/g+dTaZGJU
tncOW8AmkdgkoHrwth+1aZlPGCaGf1Xf1i/QjZZhfVxGUb+8i1ifcwATGqFGfajN
8AstdHzsMkqd+vTRfdDbAxDqvYrSrGZ7cygwL64KbOAZR6XwmfbRBVRHrotqdH5Q
gYm0vAjI3nT6B6BhWmAquAWGnPEZ6+/DC2rAZzf0A+4zp9nG2+WD+h9Hc+rqZBAo
JP4SuUr8rGLcHoyoGUW0JTXwN7/P6z3zfM1Z2fEZOqdEztrW4Oi9VyXzsfothkU6
OD3lCwLOFW96VFPIqh+ZEosnnAsosmbDrCH/OMHWr12o5nohYsyIAUxcwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHeFYzUTFEv//RqgmLlVYgDxfEmyMB8GA1UdIwQY
MBaAFK5KKcYTji2T1Uo2MouUyx+KOCprMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmtvcHhoT09MWlBWU2pZeWk1VExING80S21zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi8zNWJlMDQtZDViNy00NGFhLWFkZTQt
MTM0MDFkMWYyMmQyLzEvcmtvcHhoT09MWlBWU2pZeWk1VExING80S21zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Zi8zNWJlMDQtZDViNy00NGFhLWFkZTQtMTM0MDFkMWYyMmQy
LzEvcmtvcHhoT09MWlBWU2pZeWk1VExING80S21zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjePmZ2RT
m+Tfkw/6R+i3hNk1Y2Yck++TzKrzOx0gZha2xnsoymRi9rjsfuugpxIvE9GuRZ8b
BFQ7pkaGhC2zhRSc4JWD1o+U0GUQkI9WlSkmKI9XedTipJgy/lKBOu817K8DudRa
fvdSDZhLBmXeoRIC/7bkFOYJ6ZWnM97W0MI1I9BG72ak+mk7eYxkVppA49FhPu+T
gew4aiAmkZ0q5db04w6OIkADokTMc0ECtUgN+sVxGS/PSXZVL/MZjVduKY5Qyqte
Y2bQ1xBv+N7jfHsPJMy9bHxju12dHJICZyvTQ1NPCpFc3Xb6efBk5VJHHi6XzXuu
HbF74IiZUk+96g==
-----END CERTIFICATE-----
Generated at Mon Nov 25 16:19:13 2024 by rpki-client on console-fra.rpki-client.org