Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.mft
File: z6ExZhMNKdWtimB9gUmNpmAm0DY.mft (raw, json)
Hash identifier: z78vTFiZfZ+41I+PY0cjPG+sCGiyN+K7BkZnMtE14XA=
Subject key identifier: 9B:74:FE:27:42:E3:05:64:91:33:5A:5B:B7:94:45:64:73:70:19:01
Authority key identifier: CF:A1:31:66:13:0D:29:D5:AD:8A:60:7D:81:49:8D:A6:60:26:D0:36
Certificate issuer: /CN=cfa13166130d29d5ad8a607d81498da66026d036
Certificate serial: 0193580948363AC1D3A54AF72C412D847E62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z6ExZhMNKdWtimB9gUmNpmAm0DY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.mft
Manifest number: 7F
Signing time: Sat 23 Nov 2024 08:00:23 +0000
Manifest this update: Sat 23 Nov 2024 08:00:23 +0000
Manifest next update: Sun 24 Nov 2024 08:00:23 +0000
Files and hashes: 1: TmJOrIGJNThyNRteNEafZAmT3CE.roa (hash: iPn48QdCUh0/T+gJx8RC7P1LMA7e9mHlXIU7W6/codU=)
2: z6ExZhMNKdWtimB9gUmNpmAm0DY.crl (hash: trDE/+u08I7TQ42UqQBIY3O5yy7f0VVGnWyyVSxMNZY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.mft
rsync://rpki.ripe.net/repository/DEFAULT/z6ExZhMNKdWtimB9gUmNpmAm0DY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:09:48:36:3a:c1:d3:a5:4a:f7:2c:41:2d:84:7e:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfa13166130d29d5ad8a607d81498da66026d036
Validity
Not Before: Nov 23 08:00:23 2024 GMT
Not After : Nov 24 08:00:23 2024 GMT
Subject: CN=9b74fe2742e3056491335a5bb794456473701901
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b6:34:f2:9f:47:c1:42:8e:d7:38:39:0c:4c:
91:61:7d:b1:94:a5:bb:7c:c3:89:86:c7:8e:75:9f:
76:1c:70:ba:ba:a3:4f:fa:97:78:c8:d7:65:19:1b:
f1:66:9c:d9:5b:90:23:d8:49:9b:9b:f5:10:ab:9d:
23:ae:c9:55:d7:e7:3c:bd:83:f4:03:f3:da:3d:26:
4c:3c:cb:c2:26:df:18:e2:f5:4d:fb:7d:a5:fb:bd:
8e:83:84:e5:4e:14:60:9a:a0:f8:b3:27:80:71:62:
1d:a8:79:cd:58:61:55:71:0c:c4:b3:8c:16:a7:12:
0d:b7:53:95:91:b0:59:50:84:e1:04:5a:fb:0c:7a:
90:bd:29:92:24:bb:10:30:49:b2:84:6a:8a:e9:62:
7e:6f:52:d1:c0:d5:b3:ae:10:da:2f:5f:25:06:ba:
d3:53:49:08:28:2c:7b:28:49:1a:04:72:c3:86:bc:
4d:18:11:d8:b0:e1:44:75:9a:a3:a5:f5:5f:03:3d:
55:ff:10:80:d6:d2:b8:6d:7d:60:f4:e2:f4:ea:c8:
fd:cb:db:0e:ab:cc:36:cd:7a:89:7b:3f:72:9e:fd:
a4:43:c3:f9:30:e7:98:84:42:7c:1d:6c:ea:da:cf:
22:fb:b7:84:df:2c:a0:83:a2:0a:5f:db:42:b0:36:
46:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:74:FE:27:42:E3:05:64:91:33:5A:5B:B7:94:45:64:73:70:19:01
X509v3 Authority Key Identifier:
keyid:CF:A1:31:66:13:0D:29:D5:AD:8A:60:7D:81:49:8D:A6:60:26:D0:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z6ExZhMNKdWtimB9gUmNpmAm0DY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:0f:8a:88:18:25:07:ce:50:76:4b:6c:3c:58:06:fb:d4:f1:
fb:0d:9f:71:c6:87:25:c8:f1:12:95:f6:b8:f5:1d:25:ad:a4:
f8:df:d2:e8:5e:d5:18:b1:4a:66:95:02:5f:24:46:f5:5b:39:
60:a1:9a:e8:cc:a2:59:a6:12:14:80:50:60:09:9f:41:32:04:
8d:56:9f:9f:a1:76:57:ac:a9:a2:69:a0:66:d7:f7:85:79:ac:
50:83:88:6c:69:e2:4b:b6:02:4a:19:f0:8e:70:f0:72:bc:e9:
a9:1e:27:46:5a:4b:9e:d6:f5:85:3d:44:c1:86:0c:dc:94:48:
dc:aa:37:17:18:c6:dc:57:be:ae:d3:43:b5:9f:13:7d:d7:86:
d6:c1:fe:6d:7a:7e:ef:50:4a:31:cc:2f:3b:93:44:9b:39:75:
6b:39:9a:3a:63:a8:70:ee:a3:db:c8:25:40:b6:11:ca:be:23:
09:77:d8:00:bf:30:9f:e2:fd:27:b1:a3:40:ae:40:83:e3:71:
08:2e:9e:70:15:9f:ee:04:be:fa:d4:27:f6:ee:1a:f8:ee:ef:
a6:9f:9f:7e:77:a4:3a:28:5d:b9:9c:03:33:6b:21:92:c8:91:
a0:b6:29:1f:08:9c:b2:3d:6e:b4:25:09:5d:d0:24:75:fc:1c:
c9:c4:f6:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNYCUg2OsHTpUr3LEEthH5iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmYTEzMTY2MTMwZDI5ZDVhZDhhNjA3ZDgxNDk4ZGE2NjAy
NmQwMzYwHhcNMjQxMTIzMDgwMDIzWhcNMjQxMTI0MDgwMDIzWjAzMTEwLwYDVQQD
Eyg5Yjc0ZmUyNzQyZTMwNTY0OTEzMzVhNWJiNzk0NDU2NDczNzAxOTAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsLY08p9HwUKO1zg5DEyRYX2xlKW7
fMOJhseOdZ92HHC6uqNP+pd4yNdlGRvxZpzZW5Aj2Embm/UQq50jrslV1+c8vYP0
A/PaPSZMPMvCJt8Y4vVN+32l+72Og4TlThRgmqD4syeAcWIdqHnNWGFVcQzEs4wW
pxINt1OVkbBZUIThBFr7DHqQvSmSJLsQMEmyhGqK6WJ+b1LRwNWzrhDaL18lBrrT
U0kIKCx7KEkaBHLDhrxNGBHYsOFEdZqjpfVfAz1V/xCA1tK4bX1g9OL06sj9y9sO
q8w2zXqJez9ynv2kQ8P5MOeYhEJ8HWzq2s8i+7eE3yygg6IKX9tCsDZGTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJt0/idC4wVkkTNaW7eURWRzcBkBMB8GA1UdIwQY
MBaAFM+hMWYTDSnVrYpgfYFJjaZgJtA2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvejZFeFpoTU5LZFd0aW1COWdVbU5wbUFtMERZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni80NmVkOGQtM2YyZi00NzNkLWJlZDUt
MGM2NmJkMzQwMTlhLzEvejZFeFpoTU5LZFd0aW1COWdVbU5wbUFtMERZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ni80NmVkOGQtM2YyZi00NzNkLWJlZDUtMGM2NmJkMzQwMTlh
LzEvejZFeFpoTU5LZFd0aW1COWdVbU5wbUFtMERZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACw+KiBgl
B85QdktsPFgG+9Tx+w2fccaHJcjxEpX2uPUdJa2k+N/S6F7VGLFKZpUCXyRG9Vs5
YKGa6MyiWaYSFIBQYAmfQTIEjVafn6F2V6ypommgZtf3hXmsUIOIbGniS7YCShnw
jnDwcrzpqR4nRlpLntb1hT1EwYYM3JRI3Ko3FxjG3Fe+rtNDtZ8TfdeG1sH+bXp+
71BKMcwvO5NEmzl1azmaOmOocO6j28glQLYRyr4jCXfYAL8wn+L9J7GjQK5Ag+Nx
CC6ecBWf7gS++tQn9u4a+O7vpp+ffnekOihduZwDM2shksiRoLYpHwicsj1utCUJ
XdAkdfwcycT2sQ==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:01:04 2024 by rpki-client on console-fra.rpki-client.org