Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft
File: Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft (raw, json)
Hash identifier: +DV66Esjm296eFRhhcU53ZBYqHJNxjNXaWPlouviTR4=
Subject key identifier: 82:7E:11:C3:21:49:79:A0:FE:AD:D9:7E:11:28:1F:92:E3:01:6B:FC
Authority key identifier: 3A:DF:D4:8A:97:72:0C:D8:54:02:9D:DB:26:6C:51:F9:1F:07:67:0D
Certificate issuer: /CN=3adfd48a97720cd854029ddb266c51f91f07670d
Certificate serial: 0193568AE2713E091A743086DFF13D91B84B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ot_UipdyDNhUAp3bJmxR-R8HZw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft
Manifest number: 0970
Signing time: Sat 23 Nov 2024 01:02:42 +0000
Manifest this update: Sat 23 Nov 2024 01:02:42 +0000
Manifest next update: Sun 24 Nov 2024 01:02:42 +0000
Files and hashes: 1: Ot_UipdyDNhUAp3bJmxR-R8HZw0.crl (hash: Zntoe/oDC1jaoksDCJO98ktNMON3VELQdHzOWy+x+OI=)
2: kmT9vKDg-ZuYopgyKiTX56h8h54.roa (hash: B8GxHIVHTgi3dSmXFXHWyN+1u3TxYo/Tg6iekU4ks6E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ot_UipdyDNhUAp3bJmxR-R8HZw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:e2:71:3e:09:1a:74:30:86:df:f1:3d:91:b8:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3adfd48a97720cd854029ddb266c51f91f07670d
Validity
Not Before: Nov 23 01:02:42 2024 GMT
Not After : Nov 24 01:02:42 2024 GMT
Subject: CN=827e11c3214979a0feadd97e11281f92e3016bfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:01:9b:55:14:f3:45:e8:2b:b0:9a:7d:d3:2c:
da:54:9d:d1:bf:01:89:63:c0:96:c4:fb:b8:84:a2:
d7:7f:12:27:28:6d:ca:bc:92:c8:d7:fb:ba:1a:75:
f2:e1:2e:88:f0:d5:29:57:ad:8b:5a:5d:02:37:9c:
42:b8:4c:ed:03:c3:b7:cd:37:1f:f1:f2:d5:c9:63:
f2:ea:a5:18:3d:a0:52:95:90:69:ff:40:3b:17:a5:
e0:08:9f:d1:9c:2d:04:0c:35:6c:fc:1e:80:fe:75:
93:4e:e8:29:9a:81:95:19:2b:8f:cf:c3:a5:f4:1b:
ec:01:8a:33:b3:95:0d:80:41:28:54:19:9f:11:53:
08:77:c8:c7:8a:25:0f:cd:27:7d:42:49:21:3c:bb:
a3:24:48:ca:ba:49:75:bd:97:72:38:92:43:1f:72:
6d:fe:f7:9e:9e:47:09:ea:77:21:e3:e2:c1:ea:50:
23:77:21:ce:ec:44:24:2d:b2:d3:02:2e:68:11:24:
df:35:ee:52:62:9f:ff:77:95:97:62:37:9b:89:24:
d8:38:a9:28:69:7f:08:f6:80:e6:1a:32:21:df:e8:
14:00:24:a2:97:29:bf:10:26:fe:09:06:bc:f1:16:
f9:17:81:bd:91:03:9f:a4:68:cc:e1:f7:9a:6f:b5:
7e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:7E:11:C3:21:49:79:A0:FE:AD:D9:7E:11:28:1F:92:E3:01:6B:FC
X509v3 Authority Key Identifier:
keyid:3A:DF:D4:8A:97:72:0C:D8:54:02:9D:DB:26:6C:51:F9:1F:07:67:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ot_UipdyDNhUAp3bJmxR-R8HZw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:57:0f:e0:19:97:8d:ec:a1:08:88:f0:18:62:6e:43:a7:11:
3d:18:13:7d:41:c4:3e:c5:4a:f4:28:3d:2e:31:1e:a1:21:eb:
8b:70:60:cc:3f:e2:f8:ff:0f:03:29:b2:2b:c2:21:56:e6:fc:
ae:95:7a:42:e7:c1:33:95:e6:e4:ee:a7:c9:f8:76:29:b1:12:
b8:c4:da:7f:a0:48:d7:d3:2a:ae:96:b9:1b:90:78:3c:45:70:
b4:01:c8:72:18:75:44:e0:19:5e:e0:aa:33:1b:34:df:4a:43:
a1:e7:5e:b8:bc:07:8d:6d:3b:5a:b8:e4:d7:f0:d8:48:7f:73:
bb:1c:eb:69:c1:98:8f:49:46:9e:c5:9c:ae:6f:eb:ea:4d:47:
ed:42:79:09:c8:08:7d:9b:0c:4e:a4:de:82:4b:59:25:88:7c:
56:d1:06:8a:72:13:9a:eb:9a:eb:3b:6b:78:53:35:ae:8d:45:
d9:1e:34:0f:82:61:a7:7b:02:e3:7a:02:96:bf:a5:84:b1:d0:
a6:d4:d5:cd:50:e3:89:29:f5:5a:2a:e5:a8:9e:28:26:2b:24:
b0:3f:eb:1e:5f:9d:25:cc:49:ef:5a:3e:ca:ae:19:87:85:4e:
ad:80:93:40:55:9c:27:7b:d3:c6:04:e1:07:4b:37:16:f2:8a:
30:6e:3f:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNWiuJxPgkadDCG3/E9kbhLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhZGZkNDhhOTc3MjBjZDg1NDAyOWRkYjI2NmM1MWY5MWYw
NzY3MGQwHhcNMjQxMTIzMDEwMjQyWhcNMjQxMTI0MDEwMjQyWjAzMTEwLwYDVQQD
Eyg4MjdlMTFjMzIxNDk3OWEwZmVhZGQ5N2UxMTI4MWY5MmUzMDE2YmZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqgGbVRTzRegrsJp90yzaVJ3RvwGJ
Y8CWxPu4hKLXfxInKG3KvJLI1/u6GnXy4S6I8NUpV62LWl0CN5xCuEztA8O3zTcf
8fLVyWPy6qUYPaBSlZBp/0A7F6XgCJ/RnC0EDDVs/B6A/nWTTugpmoGVGSuPz8Ol
9BvsAYozs5UNgEEoVBmfEVMId8jHiiUPzSd9QkkhPLujJEjKukl1vZdyOJJDH3Jt
/veenkcJ6nch4+LB6lAjdyHO7EQkLbLTAi5oESTfNe5SYp//d5WXYjebiSTYOKko
aX8I9oDmGjIh3+gUACSilym/ECb+CQa88Rb5F4G9kQOfpGjM4feab7V+kQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIJ+EcMhSXmg/q3ZfhEoH5LjAWv8MB8GA1UdIwQY
MBaAFDrf1IqXcgzYVAKd2yZsUfkfB2cNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3RfVWlwZHlETmhVQXAzYkpteFItUjhIWncwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9hMmViNWEtMDk2Mi00NWJjLWE2Mzct
ZjAxMDRkZGYyODExLzEvT3RfVWlwZHlETmhVQXAzYkpteFItUjhIWncwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My9hMmViNWEtMDk2Mi00NWJjLWE2MzctZjAxMDRkZGYyODEx
LzEvT3RfVWlwZHlETmhVQXAzYkpteFItUjhIWncwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP1cP4BmX
jeyhCIjwGGJuQ6cRPRgTfUHEPsVK9Cg9LjEeoSHri3BgzD/i+P8PAymyK8IhVub8
rpV6QufBM5Xm5O6nyfh2KbESuMTaf6BI19Mqrpa5G5B4PEVwtAHIchh1ROAZXuCq
Mxs030pDoedeuLwHjW07Wrjk1/DYSH9zuxzracGYj0lGnsWcrm/r6k1H7UJ5CcgI
fZsMTqTegktZJYh8VtEGinITmuua6ztreFM1ro1F2R40D4Jhp3sC43oClr+lhLHQ
ptTVzVDjiSn1WirlqJ4oJisksD/rHl+dJcxJ71o+yq4Zh4VOrYCTQFWcJ3vTxgTh
B0s3FvKKMG4/kA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:00:53 2024 by rpki-client on console-fra.rpki-client.org