Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
File: CNXrapaGTfosUbLiVsUYCrkiKc0.mft (raw, json)
Hash identifier: P5Gm1GUkwDjRMT5ZBnw4JV3cbmXy9eItNrST1IkwT8I=
Subject key identifier: 90:80:3E:4A:5A:71:F3:10:54:80:22:B1:6D:2F:1C:65:25:DA:D3:5B
Authority key identifier: 08:D5:EB:6A:96:86:4D:FA:2C:51:B2:E2:56:C5:18:0A:B9:22:29:CD
Certificate issuer: /CN=08d5eb6a96864dfa2c51b2e256c5180ab92229cd
Certificate serial: 019365FC91D7ACC9706597C7E474392408B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNXrapaGTfosUbLiVsUYCrkiKc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
Manifest number: 6D
Signing time: Tue 26 Nov 2024 01:01:11 +0000
Manifest this update: Tue 26 Nov 2024 01:01:11 +0000
Manifest next update: Wed 27 Nov 2024 01:01:11 +0000
Files and hashes: 1: CNXrapaGTfosUbLiVsUYCrkiKc0.crl (hash: pM0nLWlgT8ECzf9n9Y/YjiFaaDISViSf/4SmXVBj3GM=)
2: dG6Jr8HrIWtkghFpG4hSQOEmweI.roa (hash: CAyuHZjM2s//51/8hRx73yZrM4eYNj60qh336Ot5BIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CNXrapaGTfosUbLiVsUYCrkiKc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 23:23:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:65:fc:91:d7:ac:c9:70:65:97:c7:e4:74:39:24:08:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08d5eb6a96864dfa2c51b2e256c5180ab92229cd
Validity
Not Before: Nov 26 01:01:11 2024 GMT
Not After : Nov 27 01:01:11 2024 GMT
Subject: CN=90803e4a5a71f310548022b16d2f1c6525dad35b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:21:71:c6:ed:38:99:33:c2:ef:83:91:7f:fe:
f0:28:e9:c7:b3:55:76:ad:96:42:d1:29:48:31:26:
13:83:7c:c6:8e:aa:2c:78:83:09:af:6e:f3:e0:d4:
d0:4a:84:ae:34:76:63:3c:22:f2:43:ef:a1:aa:f9:
e9:e6:bf:8f:6e:9d:c2:9f:5d:3b:87:8c:6a:1a:88:
09:32:53:ee:c7:f9:0b:cd:41:b0:0e:81:35:89:ef:
65:1d:54:a2:ad:29:46:b3:e9:b9:d3:bf:27:e7:c3:
a7:22:6c:43:cf:f4:02:a7:f3:9a:a6:3d:fd:1e:d0:
65:e5:3a:6b:b1:a1:a2:ed:a0:b1:be:47:7b:a0:d6:
e4:ab:24:3a:aa:bc:d6:11:f6:da:ad:7a:8d:d9:94:
71:56:bb:cb:8d:47:f7:d1:60:fc:5b:7f:33:bb:a8:
f2:ed:63:f5:01:d2:6b:90:4c:2c:da:18:47:3c:56:
b5:b2:23:6a:c4:58:1e:a3:ce:33:8c:99:cd:ab:83:
e7:64:4c:99:f5:46:c2:b5:4c:7d:39:81:2e:f2:0c:
ff:cd:e6:2a:0a:c9:4b:6a:51:39:e5:78:67:72:f5:
0e:71:aa:8c:c1:60:e1:31:8d:7e:58:64:ad:f2:1a:
0d:7c:8e:04:6c:a1:4f:b5:f2:55:16:e3:79:54:1b:
09:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:80:3E:4A:5A:71:F3:10:54:80:22:B1:6D:2F:1C:65:25:DA:D3:5B
X509v3 Authority Key Identifier:
keyid:08:D5:EB:6A:96:86:4D:FA:2C:51:B2:E2:56:C5:18:0A:B9:22:29:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNXrapaGTfosUbLiVsUYCrkiKc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:6b:a4:6f:dc:0e:76:ca:a1:b4:59:19:74:3a:02:6d:1f:9b:
bf:0d:ed:b6:b1:19:96:e0:06:bf:70:aa:21:b2:0e:20:d7:c3:
c2:a1:38:5a:58:60:75:89:4d:04:f6:84:11:d4:44:9d:83:b0:
85:06:e9:58:72:d4:16:ea:01:f9:b1:15:7d:78:17:35:23:cb:
09:e2:38:75:48:11:56:a2:da:35:9c:76:f7:0f:0d:20:b3:72:
9d:ef:d2:98:a8:af:ae:cc:05:c1:27:9a:21:50:db:bd:c3:af:
36:31:9b:f6:e8:43:db:ca:9e:6f:bb:68:d6:d7:2b:54:c2:f1:
c1:0d:1d:06:5e:0d:1c:f1:6f:54:85:8c:c0:a6:86:5b:51:7d:
83:48:3c:0a:5e:2e:e1:10:23:c9:40:cd:93:17:f5:be:c2:9a:
93:94:33:7b:71:f2:f0:60:70:df:3f:a4:ba:ff:12:33:78:f1:
32:7b:2e:7b:3f:3a:19:94:be:9f:84:a5:94:15:6a:6f:e4:9c:
06:1a:4e:ef:5c:1e:76:dd:f6:d7:3c:a2:c2:f4:cd:45:a8:d3:
c1:8c:2b:ca:36:27:e8:19:f0:83:a4:6c:a3:98:d2:c6:af:be:
ae:4b:a3:26:82:c4:5d:b0:a8:ae:75:b8:e7:29:2e:6a:64:23:
b6:a8:3d:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNl/JHXrMlwZZfH5HQ5JAi4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4ZDVlYjZhOTY4NjRkZmEyYzUxYjJlMjU2YzUxODBhYjky
MjI5Y2QwHhcNMjQxMTI2MDEwMTExWhcNMjQxMTI3MDEwMTExWjAzMTEwLwYDVQQD
Eyg5MDgwM2U0YTVhNzFmMzEwNTQ4MDIyYjE2ZDJmMWM2NTI1ZGFkMzViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzSFxxu04mTPC74ORf/7wKOnHs1V2
rZZC0SlIMSYTg3zGjqoseIMJr27z4NTQSoSuNHZjPCLyQ++hqvnp5r+Pbp3Cn107
h4xqGogJMlPux/kLzUGwDoE1ie9lHVSirSlGs+m5078n58OnImxDz/QCp/Oapj39
HtBl5TprsaGi7aCxvkd7oNbkqyQ6qrzWEfbarXqN2ZRxVrvLjUf30WD8W38zu6jy
7WP1AdJrkEws2hhHPFa1siNqxFgeo84zjJnNq4PnZEyZ9UbCtUx9OYEu8gz/zeYq
CslLalE55XhncvUOcaqMwWDhMY1+WGSt8hoNfI4EbKFPtfJVFuN5VBsJtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJCAPkpacfMQVIAisW0vHGUl2tNbMB8GA1UdIwQY
MBaAFAjV62qWhk36LFGy4lbFGAq5IinNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ05YcmFwYUdUZm9zVWJMaVZzVVlDcmtpS2MwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi80YTU4YmMtMjQwMy00MTQ0LWJiNWUt
YmI2ODI5MzYwY2VlLzEvQ05YcmFwYUdUZm9zVWJMaVZzVVlDcmtpS2MwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Zi80YTU4YmMtMjQwMy00MTQ0LWJiNWUtYmI2ODI5MzYwY2Vl
LzEvQ05YcmFwYUdUZm9zVWJMaVZzVVlDcmtpS2MwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI2ukb9wO
dsqhtFkZdDoCbR+bvw3ttrEZluAGv3CqIbIOINfDwqE4WlhgdYlNBPaEEdREnYOw
hQbpWHLUFuoB+bEVfXgXNSPLCeI4dUgRVqLaNZx29w8NILNyne/SmKivrswFwSea
IVDbvcOvNjGb9uhD28qeb7to1tcrVMLxwQ0dBl4NHPFvVIWMwKaGW1F9g0g8Cl4u
4RAjyUDNkxf1vsKak5Qze3Hy8GBw3z+kuv8SM3jxMnsuez86GZS+n4SllBVqb+Sc
BhpO71wedt321zyiwvTNRajTwYwryjYn6Bnwg6Rso5jSxq++rkujJoLEXbCornW4
5ykuamQjtqg9gw==
-----END CERTIFICATE-----
Generated at Tue Nov 26 03:00:05 2024 by rpki-client on console-fra.rpki-client.org