Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
File: XYHR_0WxVHwAqEtG75nsot-9Rbw.mft (raw, json)
Hash identifier: 32phQaQaalR+MWlHiGZJpjOdGyvsLoCJLnrBuedIsIU=
Subject key identifier: 23:C9:E4:C8:83:E0:24:61:18:C9:C7:09:62:66:18:4E:B3:46:7B:30
Authority key identifier: 5D:81:D1:FF:45:B1:54:7C:00:A8:4B:46:EF:99:EC:A2:DF:BD:45:BC
Certificate issuer: /CN=5d81d1ff45b1547c00a84b46ef99eca2dfbd45bc
Certificate serial: 01935BAEF867041D1C18B53A0E4288C5521C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
Manifest number: 1376
Signing time: Sun 24 Nov 2024 01:00:13 +0000
Manifest this update: Sun 24 Nov 2024 01:00:13 +0000
Manifest next update: Mon 25 Nov 2024 01:00:13 +0000
Files and hashes: 1: XYHR_0WxVHwAqEtG75nsot-9Rbw.crl (hash: W0bH7Dv9ucRedvuyboDRCTlSqekNPDz/1pFxvIJDgs4=)
2: iXXd8e4H4uKUMR-fVg7tJ7jM8eU.roa (hash: hhAEDnQ5yHrDhawpXxYpzBBSjZ7yZxt3Ga17s4BgjQA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 18:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:5b:ae:f8:67:04:1d:1c:18:b5:3a:0e:42:88:c5:52:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d81d1ff45b1547c00a84b46ef99eca2dfbd45bc
Validity
Not Before: Nov 24 01:00:13 2024 GMT
Not After : Nov 25 01:00:13 2024 GMT
Subject: CN=23c9e4c883e0246118c9c7096266184eb3467b30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e9:32:93:fd:39:04:3d:20:cd:fb:6b:5e:de:
46:b7:42:a3:41:b4:9d:2e:48:30:1c:35:76:9f:21:
66:13:26:3f:ed:1a:33:9b:06:c3:5e:ca:e2:71:ca:
9f:61:bc:b3:43:f1:ed:0f:46:e2:8d:3e:ec:c2:6b:
5a:a1:1b:5b:c1:8a:39:bd:29:ae:ca:c1:fb:c2:49:
68:bd:67:fe:01:c3:8e:c2:75:de:07:1e:16:f4:39:
dc:8f:eb:e8:d1:75:a9:1a:23:6d:03:9a:6d:33:01:
ee:cf:5a:94:26:20:5b:40:b6:ce:3f:12:db:f1:ed:
84:07:b8:10:88:1d:06:35:c8:4a:04:a3:93:c8:21:
ee:78:05:cb:ce:dd:5c:8f:aa:99:83:f8:3e:bb:10:
e9:7e:fd:2b:e3:65:38:09:64:80:6e:a4:7e:42:e3:
64:35:cd:c9:d5:2c:b4:6a:c8:ce:64:e5:43:44:b2:
00:3a:9e:08:a5:13:fa:fc:4f:37:8b:6a:ac:02:08:
89:7b:e6:8b:f6:c5:a3:00:8b:d8:c5:7f:3c:86:09:
8f:af:f6:5c:ff:97:05:1e:cd:a9:ef:be:23:ef:12:
69:ab:eb:37:ad:27:f4:fd:6b:79:d3:54:2b:b0:ff:
bc:8d:56:e3:01:71:69:f1:1d:7b:92:8d:bd:94:b2:
60:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:C9:E4:C8:83:E0:24:61:18:C9:C7:09:62:66:18:4E:B3:46:7B:30
X509v3 Authority Key Identifier:
keyid:5D:81:D1:FF:45:B1:54:7C:00:A8:4B:46:EF:99:EC:A2:DF:BD:45:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:7b:5d:1d:bc:a1:96:04:55:4d:8a:da:85:c6:d7:20:8f:b5:
3d:3f:b4:57:a8:18:fd:94:60:a3:5e:e0:4c:60:e5:ca:fe:4a:
fc:ea:88:9e:c1:7d:c1:00:d8:71:30:56:6f:eb:6a:3e:52:96:
9f:28:b2:e2:20:69:aa:2a:31:d3:cd:1c:13:10:6c:0d:92:06:
3b:39:2f:b2:69:67:b0:b9:91:1b:eb:09:78:01:66:58:76:40:
27:11:31:68:53:1c:4b:d9:7f:d0:0a:d2:95:e2:bf:c0:cb:4c:
d7:94:95:33:bf:7b:ca:de:89:bc:d3:8a:ab:b8:65:83:39:75:
15:41:5f:98:30:ac:43:c8:20:a5:01:24:34:63:58:0a:39:29:
28:e3:ff:0b:ea:d4:02:95:65:89:b2:df:93:44:c3:ed:9c:db:
e4:35:20:6f:5a:6d:62:48:f0:7d:ba:4c:de:45:f1:5e:03:20:
00:da:5a:9a:53:f7:99:4c:e9:f2:6c:50:22:51:c7:be:2f:db:
2f:42:9a:41:a8:a7:5b:da:c0:2c:a0:44:ed:48:bd:b5:82:18:
68:f9:66:1b:80:ef:cf:72:a4:74:e5:69:a2:14:d3:3c:36:de:
83:a4:c8:04:34:80:25:61:d6:b3:ce:0d:aa:09:dc:86:c2:b3:
bc:c8:1a:a5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNbrvhnBB0cGLU6DkKIxVIcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkODFkMWZmNDViMTU0N2MwMGE4NGI0NmVmOTllY2EyZGZi
ZDQ1YmMwHhcNMjQxMTI0MDEwMDEzWhcNMjQxMTI1MDEwMDEzWjAzMTEwLwYDVQQD
EygyM2M5ZTRjODgzZTAyNDYxMThjOWM3MDk2MjY2MTg0ZWIzNDY3YjMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtOkyk/05BD0gzftrXt5Gt0KjQbSd
LkgwHDV2nyFmEyY/7RozmwbDXsriccqfYbyzQ/HtD0bijT7swmtaoRtbwYo5vSmu
ysH7wklovWf+AcOOwnXeBx4W9Dncj+vo0XWpGiNtA5ptMwHuz1qUJiBbQLbOPxLb
8e2EB7gQiB0GNchKBKOTyCHueAXLzt1cj6qZg/g+uxDpfv0r42U4CWSAbqR+QuNk
Nc3J1Sy0asjOZOVDRLIAOp4IpRP6/E83i2qsAgiJe+aL9sWjAIvYxX88hgmPr/Zc
/5cFHs2p774j7xJpq+s3rSf0/Wt501QrsP+8jVbjAXFp8R17ko29lLJgTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCPJ5MiD4CRhGMnHCWJmGE6zRnswMB8GA1UdIwQY
MBaAFF2B0f9FsVR8AKhLRu+Z7KLfvUW8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFlIUl8wV3hWSHdBcUV0Rzc1bnNvdC05UmJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9hY2Q3ZTMtOWM3Ni00ZmY2LWI1YWUt
ZWU4MGEyZDI5NTJkLzEvWFlIUl8wV3hWSHdBcUV0Rzc1bnNvdC05UmJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi9hY2Q3ZTMtOWM3Ni00ZmY2LWI1YWUtZWU4MGEyZDI5NTJk
LzEvWFlIUl8wV3hWSHdBcUV0Rzc1bnNvdC05UmJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlntdHbyh
lgRVTYrahcbXII+1PT+0V6gY/ZRgo17gTGDlyv5K/OqInsF9wQDYcTBWb+tqPlKW
nyiy4iBpqiox080cExBsDZIGOzkvsmlnsLmRG+sJeAFmWHZAJxExaFMcS9l/0ArS
leK/wMtM15SVM797yt6JvNOKq7hlgzl1FUFfmDCsQ8ggpQEkNGNYCjkpKOP/C+rU
ApVlibLfk0TD7Zzb5DUgb1ptYkjwfbpM3kXxXgMgANpamlP3mUzp8mxQIlHHvi/b
L0KaQainW9rALKBE7Ui9tYIYaPlmG4Dvz3KkdOVpohTTPDbeg6TIBDSAJWHWs84N
qgnchsKzvMgapQ==
-----END CERTIFICATE-----
Generated at Sun Nov 24 03:16:17 2024 by rpki-client on console-fra.rpki-client.org