Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft
File: 2Znl1k5EsXM8YXNzN86CtKaUOkY.mft (raw, json)
Hash identifier: hKVN6dLh61WzlnyRICLbrThji1jCRFeeNqF629EpF0c=
Subject key identifier: 97:AA:B7:50:A6:C4:C3:32:A8:C4:53:B0:66:9E:BA:A0:9E:C6:27:C3
Authority key identifier: D9:99:E5:D6:4E:44:B1:73:3C:61:73:73:37:CE:82:B4:A6:94:3A:46
Certificate issuer: /CN=d999e5d64e44b1733c61737337ce82b4a6943a46
Certificate serial: 0191FAEED61621A30FE17822A5A2369E7254
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Znl1k5EsXM8YXNzN86CtKaUOkY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft
Manifest number: FB
Signing time: Mon 16 Sep 2024 13:04:01 +0000
Manifest this update: Mon 16 Sep 2024 13:04:01 +0000
Manifest next update: Tue 17 Sep 2024 13:04:01 +0000
Files and hashes: 1: 2Znl1k5EsXM8YXNzN86CtKaUOkY.crl (hash: NXmpm5aiNCXo7C6vigATZ/OHCZ0FJXMU70xxl+tJ+oQ=)
2: QkLyjSan_Ah_fesckd4LqSyPgfk.roa (hash: ymTIWKGFTWO+20GWHBiAGFGeKKHl13LireTe8tZ6XD4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Znl1k5EsXM8YXNzN86CtKaUOkY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 13:04:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fa:ee:d6:16:21:a3:0f:e1:78:22:a5:a2:36:9e:72:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d999e5d64e44b1733c61737337ce82b4a6943a46
Validity
Not Before: Sep 16 13:04:01 2024 GMT
Not After : Sep 17 13:04:01 2024 GMT
Subject: CN=97aab750a6c4c332a8c453b0669ebaa09ec627c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:09:a1:95:7f:0c:ca:80:8c:e9:83:ea:b7:c3:
dd:0e:b6:cb:a3:a8:23:45:5e:bc:17:c4:cb:ce:00:
17:86:75:cb:7d:6d:1f:ee:09:89:8b:05:3f:93:9f:
ee:77:01:83:6e:a5:15:b3:d0:67:94:31:ae:4a:27:
0c:85:fc:72:f9:a7:11:d9:3d:84:53:38:b3:ec:b9:
01:7f:29:4d:ea:e4:ec:6d:c3:29:76:22:bd:19:0e:
6e:86:cd:29:06:0c:b1:95:bb:7f:53:ba:ab:88:12:
54:af:84:9b:ba:16:6b:6b:30:15:f7:d9:3e:85:72:
b0:fd:b7:fe:1e:47:c4:4f:fc:f8:47:55:76:41:86:
ba:f7:54:5d:c3:30:9c:5d:81:52:01:84:ab:4e:a4:
cc:4b:5f:a2:20:f6:a4:39:78:4a:31:29:46:3c:04:
cc:f4:0b:ef:87:80:f7:98:23:42:31:1d:ab:97:e3:
86:32:88:b5:05:58:b5:ad:2c:1a:6d:1d:c3:f0:4f:
09:41:b3:c6:fc:13:08:e7:89:8a:bc:d7:1d:5e:e1:
6f:d1:27:d7:da:e5:f6:bc:98:26:b9:02:49:a4:46:
63:a2:de:f8:61:05:2d:0e:8f:21:c7:da:8d:8c:b4:
e6:45:84:ed:ee:0b:a9:0c:7c:8e:5d:63:ab:4d:84:
3e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:AA:B7:50:A6:C4:C3:32:A8:C4:53:B0:66:9E:BA:A0:9E:C6:27:C3
X509v3 Authority Key Identifier:
keyid:D9:99:E5:D6:4E:44:B1:73:3C:61:73:73:37:CE:82:B4:A6:94:3A:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Znl1k5EsXM8YXNzN86CtKaUOkY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:bd:88:94:65:da:e7:02:83:44:d1:f8:f9:63:44:ca:33:07:
e9:5e:ea:ac:de:e6:ac:75:aa:35:57:9d:e7:4d:ee:b0:c4:e3:
9f:8e:21:6c:c2:8f:57:f5:20:f4:5f:89:68:e8:af:6c:42:4b:
09:65:e9:20:ce:34:af:fe:78:ff:71:42:26:69:e8:e0:8f:56:
97:88:05:b2:22:4b:bf:ac:91:19:b6:07:d0:35:77:3f:e9:be:
f9:b6:48:9f:01:97:9e:33:55:7f:c5:38:6d:7c:b3:00:80:fc:
a5:82:c0:29:e3:ff:61:7b:e8:3d:98:60:bd:6c:47:c5:05:16:
c0:92:b2:ea:75:d0:4b:ea:56:2a:19:a5:af:f9:64:d3:ae:86:
62:ff:a8:ba:e2:20:ca:f7:68:cc:91:b8:b8:9c:e5:00:24:cb:
6a:86:b0:fe:a1:82:10:20:53:ad:de:ed:f7:2b:be:10:52:46:
3f:49:db:b4:a0:46:47:40:c0:90:4a:48:8e:ed:1c:c0:d4:60:
d0:79:70:7d:b4:c2:07:57:02:36:dc:49:0a:83:70:ca:24:a8:
b2:f5:61:06:df:1f:63:a4:17:cf:8e:e8:25:6a:41:65:02:83:
6b:13:92:3f:28:cc:73:e5:ff:f9:a6:74:46:05:58:91:7d:00:
3c:20:09:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZH67tYWIaMP4XgipaI2nnJUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5OTllNWQ2NGU0NGIxNzMzYzYxNzM3MzM3Y2U4MmI0YTY5
NDNhNDYwHhcNMjQwOTE2MTMwNDAxWhcNMjQwOTE3MTMwNDAxWjAzMTEwLwYDVQQD
Eyg5N2FhYjc1MGE2YzRjMzMyYThjNDUzYjA2NjllYmFhMDllYzYyN2MzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQmhlX8MyoCM6YPqt8PdDrbLo6gj
RV68F8TLzgAXhnXLfW0f7gmJiwU/k5/udwGDbqUVs9BnlDGuSicMhfxy+acR2T2E
Uziz7LkBfylN6uTsbcMpdiK9GQ5uhs0pBgyxlbt/U7qriBJUr4SbuhZrazAV99k+
hXKw/bf+HkfET/z4R1V2QYa691RdwzCcXYFSAYSrTqTMS1+iIPakOXhKMSlGPATM
9Avvh4D3mCNCMR2rl+OGMoi1BVi1rSwabR3D8E8JQbPG/BMI54mKvNcdXuFv0SfX
2uX2vJgmuQJJpEZjot74YQUtDo8hx9qNjLTmRYTt7gupDHyOXWOrTYQ+9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJeqt1CmxMMyqMRTsGaeuqCexifDMB8GA1UdIwQY
MBaAFNmZ5dZORLFzPGFzczfOgrSmlDpGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlpubDFrNUVzWE04WVhOek44NkN0S2FVT2tZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC9mMDFmOTktYmMwMS00YjM5LTkzNjIt
OWY0N2M3NDEwZDQxLzEvMlpubDFrNUVzWE04WVhOek44NkN0S2FVT2tZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC9mMDFmOTktYmMwMS00YjM5LTkzNjItOWY0N2M3NDEwZDQx
LzEvMlpubDFrNUVzWE04WVhOek44NkN0S2FVT2tZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcb2IlGXa
5wKDRNH4+WNEyjMH6V7qrN7mrHWqNVed503usMTjn44hbMKPV/Ug9F+JaOivbEJL
CWXpIM40r/54/3FCJmno4I9Wl4gFsiJLv6yRGbYH0DV3P+m++bZInwGXnjNVf8U4
bXyzAID8pYLAKeP/YXvoPZhgvWxHxQUWwJKy6nXQS+pWKhmlr/lk066GYv+ouuIg
yvdozJG4uJzlACTLaoaw/qGCECBTrd7t9yu+EFJGP0nbtKBGR0DAkEpIju0cwNRg
0HlwfbTCB1cCNtxJCoNwyiSosvVhBt8fY6QXz47oJWpBZQKDaxOSPyjMc+X/+aZ0
RgVYkX0APCAJNg==
-----END CERTIFICATE-----
Generated at Mon Sep 16 16:18:35 2024 by rpki-client on console-fra.rpki-client.org