Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
File: dZxU7z8HSxxmiPmXVM2KONmfbKw.mft (raw, json)
Hash identifier: LicXpDjm+dLduu2wGtIMczWmy2Du/p9XK51eoMmkUPc=
Subject key identifier: 2A:A7:9A:18:D4:18:B1:D7:9B:62:53:50:25:B4:87:83:19:E5:96:5D
Authority key identifier: 75:9C:54:EF:3F:07:4B:1C:66:88:F9:97:54:CD:8A:38:D9:9F:6C:AC
Certificate issuer: /CN=759c54ef3f074b1c6688f99754cd8a38d99f6cac
Certificate serial: 0193572DCBE1D521D6883606E7F383270D3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
Manifest number: 0711
Signing time: Sat 23 Nov 2024 04:00:39 +0000
Manifest this update: Sat 23 Nov 2024 04:00:39 +0000
Manifest next update: Sun 24 Nov 2024 04:00:39 +0000
Files and hashes: 1: dZxU7z8HSxxmiPmXVM2KONmfbKw.crl (hash: K6yQm7n8KFpzZK+MSGbDpBatI97w2ych8ghzTgAMsUY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:cb:e1:d5:21:d6:88:36:06:e7:f3:83:27:0d:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=759c54ef3f074b1c6688f99754cd8a38d99f6cac
Validity
Not Before: Nov 23 04:00:39 2024 GMT
Not After : Nov 24 04:00:39 2024 GMT
Subject: CN=2aa79a18d418b1d79b62535025b4878319e5965d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e3:05:bf:f9:f4:ae:d8:bc:c4:3c:41:8c:ab:
78:81:21:fc:a2:bb:d6:bd:22:ea:f7:c9:0e:94:6c:
27:ca:43:5f:65:68:12:0f:3c:91:c9:9a:10:50:02:
28:fb:fd:af:69:2c:26:c1:97:f8:3c:7a:dc:d9:ac:
69:77:9f:d7:84:a5:31:92:2b:c6:5a:e4:f7:cc:f0:
4d:99:99:8c:75:02:86:ea:a5:5b:2b:6c:10:f6:55:
f6:e2:45:bb:b0:d4:4b:78:e9:59:ab:a3:5e:48:7a:
da:4f:22:15:22:1a:6a:68:f4:70:77:04:b3:0d:60:
d5:68:74:89:4a:be:c1:c7:90:e7:2c:8b:f5:0e:db:
46:3a:ff:57:38:f8:85:de:4b:b4:4f:80:be:df:b6:
a4:5a:00:7b:05:4f:d1:1a:c5:69:cb:55:35:ee:f6:
15:8d:1a:89:ea:d3:f9:43:a5:41:c5:b6:f8:27:24:
67:f7:2d:65:56:9c:05:e8:1c:59:2a:1a:b6:58:62:
05:a2:7e:cf:91:dd:b9:87:2e:f6:ce:7a:1d:75:22:
d5:ee:00:87:6f:ae:13:a1:f9:28:8d:df:64:38:d1:
3a:c5:59:0b:3d:67:28:6a:87:60:07:18:a8:98:08:
7b:c7:02:e3:62:5e:ab:f1:3d:e8:07:25:c0:d2:6a:
05:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:A7:9A:18:D4:18:B1:D7:9B:62:53:50:25:B4:87:83:19:E5:96:5D
X509v3 Authority Key Identifier:
keyid:75:9C:54:EF:3F:07:4B:1C:66:88:F9:97:54:CD:8A:38:D9:9F:6C:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:51:ec:32:b7:57:46:d1:1b:3f:3e:c2:ce:ef:87:b0:46:f1:
7f:9f:f8:b5:a6:8b:f2:fa:e7:b9:6e:6e:68:d8:11:db:68:19:
62:96:91:42:41:28:69:69:95:0b:79:c2:46:7a:13:c3:ed:4c:
df:73:d4:13:38:ae:78:a8:6a:35:4a:65:a4:e6:c5:16:db:1e:
23:4d:5c:dc:72:e5:a9:95:0f:e6:3f:93:02:d7:f1:13:91:71:
ff:56:b7:82:3d:7b:03:cf:06:2b:df:62:7a:9e:86:c5:f5:5c:
f4:bf:f8:7d:ef:72:4c:46:79:ac:40:18:c6:07:32:6e:9d:79:
d7:4f:dd:08:7e:43:4a:d0:c4:7a:3d:60:80:c1:b7:fc:0a:08:
98:ff:d7:04:c7:03:ae:5f:0e:96:ca:54:e8:7a:e7:87:0b:bb:
6d:c3:c0:d9:ae:08:aa:df:59:dc:63:eb:ef:c5:7a:6f:64:95:
7a:84:7e:e0:54:ad:97:39:29:98:c7:6c:ff:84:87:5d:a7:43:
84:4c:3e:43:dd:10:12:d9:2c:09:70:dd:ba:7c:32:01:9a:39:
05:6a:46:0d:68:dc:be:06:39:44:cc:59:28:6b:e4:af:e2:a5:
3e:45:a9:cd:d0:26:41:89:b1:a2:e2:9b:74:fd:20:ce:ef:b1:
a1:22:c3:8a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNXLcvh1SHWiDYG5/ODJw08MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1OWM1NGVmM2YwNzRiMWM2Njg4Zjk5NzU0Y2Q4YTM4ZDk5
ZjZjYWMwHhcNMjQxMTIzMDQwMDM5WhcNMjQxMTI0MDQwMDM5WjAzMTEwLwYDVQQD
EygyYWE3OWExOGQ0MThiMWQ3OWI2MjUzNTAyNWI0ODc4MzE5ZTU5NjVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0+MFv/n0rti8xDxBjKt4gSH8orvW
vSLq98kOlGwnykNfZWgSDzyRyZoQUAIo+/2vaSwmwZf4PHrc2axpd5/XhKUxkivG
WuT3zPBNmZmMdQKG6qVbK2wQ9lX24kW7sNRLeOlZq6NeSHraTyIVIhpqaPRwdwSz
DWDVaHSJSr7Bx5DnLIv1DttGOv9XOPiF3ku0T4C+37akWgB7BU/RGsVpy1U17vYV
jRqJ6tP5Q6VBxbb4JyRn9y1lVpwF6BxZKhq2WGIFon7Pkd25hy72znoddSLV7gCH
b64Tofkojd9kONE6xVkLPWcoaodgBxiomAh7xwLjYl6r8T3oByXA0moFOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCqnmhjUGLHXm2JTUCW0h4MZ5ZZdMB8GA1UdIwQY
MBaAFHWcVO8/B0scZoj5l1TNijjZn2ysMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFp4VTd6OEhTeHhtaVBtWFZNMktPTm1mYkt3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi81YmVhYTAtNGEzMS00MTY4LTk5YjQt
NDRkMjk2NTdiYWI3LzEvZFp4VTd6OEhTeHhtaVBtWFZNMktPTm1mYkt3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi81YmVhYTAtNGEzMS00MTY4LTk5YjQtNDRkMjk2NTdiYWI3
LzEvZFp4VTd6OEhTeHhtaVBtWFZNMktPTm1mYkt3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATVHsMrdX
RtEbPz7Czu+HsEbxf5/4taaL8vrnuW5uaNgR22gZYpaRQkEoaWmVC3nCRnoTw+1M
33PUEziueKhqNUplpObFFtseI01c3HLlqZUP5j+TAtfxE5Fx/1a3gj17A88GK99i
ep6GxfVc9L/4fe9yTEZ5rEAYxgcybp1510/dCH5DStDEej1ggMG3/AoImP/XBMcD
rl8OlspU6Hrnhwu7bcPA2a4Iqt9Z3GPr78V6b2SVeoR+4FStlzkpmMds/4SHXadD
hEw+Q90QEtksCXDdunwyAZo5BWpGDWjcvgY5RMxZKGvkr+KlPkWpzdAmQYmxouKb
dP0gzu+xoSLDig==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:00:49 2024 by rpki-client on console-fra.rpki-client.org