Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.mft
File: GDDmA-nKjAXUwbxisLdue9nRiQk.mft (raw, json)
Hash identifier: SysLAd44pqHM95o86CxsGgkZ61/Ik/Pu0UboZc4GE4E=
Subject key identifier: 78:DF:55:A0:28:EA:13:02:9B:16:73:F0:CB:D7:2B:43:58:A5:FF:DB
Authority key identifier: 18:30:E6:03:E9:CA:8C:05:D4:C1:BC:62:B0:B7:6E:7B:D9:D1:89:09
Certificate issuer: /CN=1830e603e9ca8c05d4c1bc62b0b76e7bd9d18909
Certificate serial: 019358404568800EEBDCD6ACB0CE0FC2DC27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GDDmA-nKjAXUwbxisLdue9nRiQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.mft
Manifest number: 1376
Signing time: Sat 23 Nov 2024 09:00:27 +0000
Manifest this update: Sat 23 Nov 2024 09:00:27 +0000
Manifest next update: Sun 24 Nov 2024 09:00:27 +0000
Files and hashes: 1: GDDmA-nKjAXUwbxisLdue9nRiQk.crl (hash: nLpSULYKqNe8hR/607lBS1qxzgImtjSBOlOCHl6UfIM=)
2: edql84I1AEY1kF155bhcAdOFE1k.roa (hash: HSpe0C8iJr88BJogkWmLvdTVgaLoHlydz66zKcMAvY8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/GDDmA-nKjAXUwbxisLdue9nRiQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:40:45:68:80:0e:eb:dc:d6:ac:b0:ce:0f:c2:dc:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1830e603e9ca8c05d4c1bc62b0b76e7bd9d18909
Validity
Not Before: Nov 23 09:00:27 2024 GMT
Not After : Nov 24 09:00:27 2024 GMT
Subject: CN=78df55a028ea13029b1673f0cbd72b4358a5ffdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:8a:d9:95:79:41:a3:dd:c7:92:e9:15:61:f7:
27:3d:d9:cf:a5:1c:59:43:b6:5f:f2:d3:5e:d2:ea:
62:a1:ed:50:ea:b5:17:14:19:0f:69:bd:f5:be:6b:
64:c0:a0:45:65:96:d2:50:b6:55:87:24:52:76:0e:
98:ba:6d:51:72:f7:19:c8:ce:c5:9b:8a:0f:bd:19:
77:05:01:bf:32:2b:5c:e2:8f:c9:70:9f:ad:0f:45:
27:26:72:64:42:cf:e8:02:81:e3:12:a2:95:f8:71:
a0:c3:2e:2e:28:fb:d8:36:77:b0:c1:5e:e3:19:28:
63:63:d7:63:d4:01:22:33:80:8c:e5:ce:76:5f:65:
1d:c8:c7:27:e9:3f:e0:82:82:39:e6:e8:62:a4:03:
3f:ad:6b:67:4e:f9:dd:ba:3b:19:6d:95:43:d0:da:
2c:d6:36:b8:7a:e6:60:9f:a8:c7:57:b5:1b:6f:b1:
d9:be:ff:8d:5b:93:37:94:78:71:2d:73:4d:c9:09:
b1:62:c8:b7:bb:83:72:74:ad:f9:b4:52:dd:a2:ba:
6d:63:ab:b7:28:1b:65:ec:2a:08:f8:4c:5a:ce:b1:
89:a2:18:de:bb:9f:22:32:41:f2:3f:57:d5:e7:d5:
2f:3c:96:0b:1f:56:c9:a3:33:56:c0:75:00:75:71:
63:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:DF:55:A0:28:EA:13:02:9B:16:73:F0:CB:D7:2B:43:58:A5:FF:DB
X509v3 Authority Key Identifier:
keyid:18:30:E6:03:E9:CA:8C:05:D4:C1:BC:62:B0:B7:6E:7B:D9:D1:89:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GDDmA-nKjAXUwbxisLdue9nRiQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:e6:da:00:f5:2e:d2:3c:81:f7:0f:f2:a0:d9:e2:7e:d6:4f:
4f:61:67:35:88:f7:a9:eb:2c:75:9b:6c:8b:9f:84:c6:83:84:
93:80:9b:10:69:10:b4:08:15:38:87:dc:e7:0f:22:cf:a0:67:
75:1f:ef:6d:a0:55:5e:7e:55:65:e0:98:f3:6f:a2:2e:83:84:
99:45:38:94:b0:79:48:ec:c2:43:17:ea:ed:d9:c5:46:80:aa:
a1:76:9b:21:0e:cb:3c:3c:c7:dd:90:aa:29:82:ed:54:ec:9e:
17:05:c5:65:2a:6e:21:ea:c0:8a:5b:17:bb:98:b1:8e:02:f9:
a5:b9:29:25:14:27:bf:9d:a6:ae:13:af:d5:e3:ca:1a:c9:a1:
63:94:c7:84:ba:66:f7:72:ac:03:2f:e8:fb:da:d9:ab:37:34:
b2:49:0d:50:65:d8:33:9a:09:bc:16:20:b1:e7:a9:4d:b1:84:
9f:37:78:b9:b8:cc:eb:de:05:86:86:02:4a:d1:28:61:4c:8a:
a0:4e:1b:c7:e9:5a:0e:69:21:e7:d7:08:d3:8a:24:f2:cd:64:
07:7d:ae:d8:32:c4:5d:16:3f:29:76:e1:84:94:eb:67:b9:bc:
ed:b5:92:b5:b1:22:f4:37:5c:44:73:c7:4d:62:b9:75:66:af:
01:ed:7a:85
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNYQEVogA7r3NassM4PwtwnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4MzBlNjAzZTljYThjMDVkNGMxYmM2MmIwYjc2ZTdiZDlk
MTg5MDkwHhcNMjQxMTIzMDkwMDI3WhcNMjQxMTI0MDkwMDI3WjAzMTEwLwYDVQQD
Eyg3OGRmNTVhMDI4ZWExMzAyOWIxNjczZjBjYmQ3MmI0MzU4YTVmZmRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkYrZlXlBo93HkukVYfcnPdnPpRxZ
Q7Zf8tNe0upioe1Q6rUXFBkPab31vmtkwKBFZZbSULZVhyRSdg6Yum1RcvcZyM7F
m4oPvRl3BQG/Mitc4o/JcJ+tD0UnJnJkQs/oAoHjEqKV+HGgwy4uKPvYNnewwV7j
GShjY9dj1AEiM4CM5c52X2UdyMcn6T/ggoI55uhipAM/rWtnTvndujsZbZVD0Nos
1ja4euZgn6jHV7Ubb7HZvv+NW5M3lHhxLXNNyQmxYsi3u4NydK35tFLdorptY6u3
KBtl7CoI+ExazrGJohjeu58iMkHyP1fV59UvPJYLH1bJozNWwHUAdXFjXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHjfVaAo6hMCmxZz8MvXK0NYpf/bMB8GA1UdIwQY
MBaAFBgw5gPpyowF1MG8YrC3bnvZ0YkJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0REbUEtbktqQVhVd2J4aXNMZHVlOW5SaVFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni8yMTkxZDctZmRhMC00YjA3LThhOGYt
MTc4OWU2NGQzMjEwLzEvR0REbUEtbktqQVhVd2J4aXNMZHVlOW5SaVFrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ni8yMTkxZDctZmRhMC00YjA3LThhOGYtMTc4OWU2NGQzMjEw
LzEvR0REbUEtbktqQVhVd2J4aXNMZHVlOW5SaVFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsubaAPUu
0jyB9w/yoNniftZPT2FnNYj3qessdZtsi5+ExoOEk4CbEGkQtAgVOIfc5w8iz6Bn
dR/vbaBVXn5VZeCY82+iLoOEmUU4lLB5SOzCQxfq7dnFRoCqoXabIQ7LPDzH3ZCq
KYLtVOyeFwXFZSpuIerAilsXu5ixjgL5pbkpJRQnv52mrhOv1ePKGsmhY5THhLpm
93KsAy/o+9rZqzc0skkNUGXYM5oJvBYgseepTbGEnzd4ubjM694FhoYCStEoYUyK
oE4bx+laDmkh59cI04ok8s1kB32u2DLEXRY/KXbhhJTrZ7m87bWStbEi9DdcRHPH
TWK5dWavAe16hQ==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:01:04 2024 by rpki-client on console-fra.rpki-client.org