Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
File: 2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft (raw, json)
Hash identifier: Kkdkr8vRBSIgPIGWd6b++e3sH9Vhyj6K3l9JMlBgr+c=
Subject key identifier: FD:57:3D:A6:7C:51:0C:4F:14:C6:9B:DA:43:A9:71:3A:21:1E:FB:96
Authority key identifier: D9:0D:26:81:51:4A:EF:EE:9D:3C:86:E1:EA:E3:57:36:C8:4D:1C:09
Certificate issuer: /CN=d90d2681514aefee9d3c86e1eae35736c84d1c09
Certificate serial: 019369D9C7DC941682B5E4E36959F99AB1C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
Manifest number: 137D
Signing time: Tue 26 Nov 2024 19:01:40 +0000
Manifest this update: Tue 26 Nov 2024 19:01:40 +0000
Manifest next update: Wed 27 Nov 2024 19:01:40 +0000
Files and hashes: 1: 2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl (hash: AHB3c1JpNcnNi3Opy636gaTVV7Oks78A8l7G4/xfwIw=)
2: N4GCRMBxgcgjmOFagbW6SL3DML0.roa (hash: n3PsRSnzHXTDXcfbplvBJ8vScEwSGsuTqHIhyWvZl/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:d9:c7:dc:94:16:82:b5:e4:e3:69:59:f9:9a:b1:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90d2681514aefee9d3c86e1eae35736c84d1c09
Validity
Not Before: Nov 26 19:01:40 2024 GMT
Not After : Nov 27 19:01:40 2024 GMT
Subject: CN=fd573da67c510c4f14c69bda43a9713a211efb96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9e:69:4b:00:c4:4e:c4:f9:72:6b:85:63:24:
1a:b0:58:86:a3:55:9c:b7:1c:11:b1:c1:47:53:e6:
70:70:c9:87:03:51:e5:fa:30:91:87:bf:b5:62:e3:
a0:d7:76:a2:9e:d2:ec:a3:71:6e:5b:82:16:ea:c2:
00:4c:0f:54:41:93:1e:82:c8:67:95:05:16:22:f9:
42:04:67:dd:89:d3:19:33:ab:c9:2b:b9:92:54:4a:
9e:53:58:76:48:88:cd:78:49:c6:30:00:2a:84:39:
83:81:6b:73:26:5e:31:43:10:d3:61:e2:a6:41:33:
d2:46:5b:30:71:5c:b1:bf:5f:34:cc:bf:75:52:e6:
c7:bd:8d:10:c2:0b:9c:c1:c1:3f:ec:92:ca:97:30:
81:a6:88:9a:e0:a1:cb:ac:05:62:be:d4:0c:69:e8:
40:a5:dc:29:b7:ac:ec:ee:70:78:e9:87:6b:e7:6a:
52:9a:07:fc:cc:ea:79:9e:05:fa:b2:fa:39:c8:1a:
2a:1c:0f:c6:f0:37:c2:29:c0:25:06:d1:70:91:d7:
8f:fc:20:ee:a4:98:95:eb:64:a3:32:87:30:b6:a2:
25:d0:ff:46:0c:3e:5a:a3:35:c3:1f:36:42:58:93:
ce:72:82:e9:ef:96:b7:30:c5:f5:ad:89:f1:3c:bd:
eb:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:57:3D:A6:7C:51:0C:4F:14:C6:9B:DA:43:A9:71:3A:21:1E:FB:96
X509v3 Authority Key Identifier:
keyid:D9:0D:26:81:51:4A:EF:EE:9D:3C:86:E1:EA:E3:57:36:C8:4D:1C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:00:ca:30:a5:35:c2:60:23:54:c0:4a:c7:f7:3b:30:ab:36:
b0:36:37:96:fb:c8:98:49:58:1d:25:51:21:2c:cd:bc:fc:7d:
5b:73:b9:e4:1d:0d:b8:9e:d0:56:7d:40:7a:0b:75:d8:95:a1:
90:c9:a9:f7:61:fc:4b:ad:e6:d2:a5:c4:2e:af:b9:3d:f4:b8:
97:ec:9e:c0:7d:54:e7:73:32:da:d2:23:69:a6:83:e3:81:25:
31:0a:f2:78:5d:26:92:5b:84:5b:c4:54:b3:f9:d5:a4:70:4c:
ad:cd:52:ed:9d:24:d7:e3:ed:03:ba:6f:74:76:0a:73:d1:cf:
b2:af:f5:d9:d8:e7:78:1f:d5:35:0d:62:76:1e:f0:69:a7:1b:
6b:35:bf:09:d4:e0:da:d5:02:9f:53:3b:29:2b:a3:48:04:5d:
e0:cd:63:92:60:37:ec:db:76:3d:a1:04:e6:ca:3c:b5:4b:b1:
88:49:0e:7c:bc:76:99:24:d3:a1:32:b9:b5:d7:55:84:bb:16:
af:97:70:43:04:02:0d:c1:73:55:95:b9:36:0a:f9:89:52:8e:
14:38:8c:bd:e1:65:16:9c:d7:7a:46:99:92:47:a5:a3:78:98:
4b:f6:14:51:4d:37:ef:fd:25:2a:d6:1c:71:52:6c:a1:73:a6:
53:23:bb:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNp2cfclBaCteTjaVn5mrHCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5MGQyNjgxNTE0YWVmZWU5ZDNjODZlMWVhZTM1NzM2Yzg0
ZDFjMDkwHhcNMjQxMTI2MTkwMTQwWhcNMjQxMTI3MTkwMTQwWjAzMTEwLwYDVQQD
EyhmZDU3M2RhNjdjNTEwYzRmMTRjNjliZGE0M2E5NzEzYTIxMWVmYjk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyp5pSwDETsT5cmuFYyQasFiGo1Wc
txwRscFHU+ZwcMmHA1Hl+jCRh7+1YuOg13aintLso3FuW4IW6sIATA9UQZMegshn
lQUWIvlCBGfdidMZM6vJK7mSVEqeU1h2SIjNeEnGMAAqhDmDgWtzJl4xQxDTYeKm
QTPSRlswcVyxv180zL91UubHvY0QwgucwcE/7JLKlzCBpoia4KHLrAVivtQMaehA
pdwpt6zs7nB46Ydr52pSmgf8zOp5ngX6svo5yBoqHA/G8DfCKcAlBtFwkdeP/CDu
pJiV62SjMocwtqIl0P9GDD5aozXDHzZCWJPOcoLp75a3MMX1rYnxPL3rowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP1XPaZ8UQxPFMab2kOpcTohHvuWMB8GA1UdIwQY
MBaAFNkNJoFRSu/unTyG4erjVzbITRwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlEwbWdWRks3LTZkUEliaDZ1TlhOc2hOSEFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC9lMGQ5NTYtN2I4Ny00ZWRkLWI5NDQt
MWQwZjI5YjRiOTdmLzEvMlEwbWdWRks3LTZkUEliaDZ1TlhOc2hOSEFrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC9lMGQ5NTYtN2I4Ny00ZWRkLWI5NDQtMWQwZjI5YjRiOTdm
LzEvMlEwbWdWRks3LTZkUEliaDZ1TlhOc2hOSEFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdgDKMKU1
wmAjVMBKx/c7MKs2sDY3lvvImElYHSVRISzNvPx9W3O55B0NuJ7QVn1Aegt12JWh
kMmp92H8S63m0qXELq+5PfS4l+yewH1U53My2tIjaaaD44ElMQryeF0mkluEW8RU
s/nVpHBMrc1S7Z0k1+PtA7pvdHYKc9HPsq/12djneB/VNQ1idh7waacbazW/CdTg
2tUCn1M7KSujSARd4M1jkmA37Nt2PaEE5so8tUuxiEkOfLx2mSTToTK5tddVhLsW
r5dwQwQCDcFzVZW5Ngr5iVKOFDiMveFlFpzXekaZkkelo3iYS/YUUU037/0lKtYc
cVJsoXOmUyO7oA==
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:45:22 2024 by rpki-client on console-fra.rpki-client.org