Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
File: D5otI3SqascUtfim7duA3GlnnMY.mft (raw, json)
Hash identifier: stkON/wPHXZ7WkIFGyptGi8ulhFouFYAf4QaJun65tI=
Subject key identifier: 43:54:39:58:98:21:34:CC:DE:78:C8:28:99:89:71:44:FC:EB:4D:22
Authority key identifier: 0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
Certificate issuer: /CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Certificate serial: 019367ECB7E3C758A6EE0BF570F40369C611
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
Manifest number: 09DD
Signing time: Tue 26 Nov 2024 10:03:06 +0000
Manifest this update: Tue 26 Nov 2024 10:03:06 +0000
Manifest next update: Wed 27 Nov 2024 10:03:06 +0000
Files and hashes: 1: D5otI3SqascUtfim7duA3GlnnMY.crl (hash: mon6mjl2iI8coyGf54ug6+e9QKkzC1VEwo4SmJKcBD4=)
2: pBV1LMvSPF2FSFxd5vm1nXwn5I4.roa (hash: 7XyeAfpY48CgosvvIDB9K1x72+yG8DunTlnEuqRmBgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:67:ec:b7:e3:c7:58:a6:ee:0b:f5:70:f4:03:69:c6:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Validity
Not Before: Nov 26 10:03:06 2024 GMT
Not After : Nov 27 10:03:06 2024 GMT
Subject: CN=43543958982134ccde78c82899897144fceb4d22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:43:5e:10:f3:4c:5e:a5:b8:3a:8e:7d:a1:fd:
12:78:f6:cb:ae:63:a2:c3:19:15:27:91:55:b8:6d:
c1:a9:cf:09:4c:b1:e9:a5:53:ae:d7:13:13:69:c8:
06:48:60:93:13:58:5e:3c:73:be:14:5f:48:83:97:
98:e4:c5:65:1d:ba:3a:6d:3e:83:39:a1:09:2a:28:
e1:b8:0a:54:ca:6c:33:69:be:63:6a:f5:62:e9:b8:
6e:09:de:a8:9e:db:d6:eb:1e:01:93:28:60:e8:2a:
4d:77:c2:ba:31:db:20:5d:d3:95:c2:f5:2c:d3:10:
a7:b5:0e:75:55:63:f0:bb:bd:99:f9:2d:ab:2d:d9:
18:c2:94:9e:1c:64:c2:2f:04:67:c6:c1:3c:3e:cc:
23:6a:b3:50:82:3b:8a:92:c8:48:42:36:7e:03:86:
3f:25:5c:17:6e:d9:24:cf:22:5a:b9:bc:c6:aa:d0:
98:2e:f3:3b:a9:13:37:b5:9b:a6:ea:43:23:e7:b0:
08:c9:17:db:bc:00:d5:e4:38:7f:3d:af:85:21:c6:
85:f4:06:3b:89:af:11:e5:f9:f0:03:7d:16:b1:fc:
7c:8a:48:18:ab:41:cc:cd:7a:8a:57:b4:f2:e6:1c:
55:77:99:3e:43:62:75:a2:0f:6b:f4:ca:0e:f8:0f:
63:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:54:39:58:98:21:34:CC:DE:78:C8:28:99:89:71:44:FC:EB:4D:22
X509v3 Authority Key Identifier:
keyid:0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:3b:84:78:91:57:14:d9:51:85:c2:b3:ac:db:0d:20:f2:2b:
11:b7:fc:4a:5f:ad:95:43:bc:dc:06:a3:06:f2:b9:46:18:10:
5d:25:33:b4:5b:37:e7:7a:95:0b:30:31:4d:e8:dc:60:94:f1:
78:20:d0:29:67:96:31:92:49:0d:57:ee:3b:4a:34:fe:53:bc:
98:41:11:8c:17:bd:40:1f:dd:81:c7:ae:08:46:ed:6f:49:d1:
14:c0:5f:cf:a7:db:c4:22:62:06:04:e6:8e:64:fb:26:22:d8:
e5:fa:82:d1:9c:fa:3c:47:ee:0a:eb:4c:f5:94:26:40:87:cf:
6c:05:ac:6a:a1:f3:26:0b:9d:a0:85:50:62:b8:82:eb:0d:01:
e1:65:1c:07:d0:57:84:a2:97:b1:b5:f2:07:b1:68:b6:31:fa:
c1:30:ed:2c:e2:d0:d7:61:ff:ec:fc:1f:8b:5e:57:1e:29:95:
82:e0:1e:36:1c:67:0d:c5:28:c9:69:7e:dd:b3:79:9a:bf:86:
5c:42:5e:91:f3:2a:ce:99:23:c4:59:6e:0d:ca:1c:fb:29:1c:
6d:17:16:b7:e0:b8:99:d3:de:01:0b:b0:bf:6e:3e:98:75:3e:
29:f1:b2:18:4f:02:a0:c7:ac:d1:d0:6f:c4:3c:7a:79:e3:08:
b2:0b:40:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNn7Lfjx1im7gv1cPQDacYRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmOWEyZDIzNzRhYTZhYzcxNGI1ZjhhNmVkZGI4MGRjNjk2
NzljYzYwHhcNMjQxMTI2MTAwMzA2WhcNMjQxMTI3MTAwMzA2WjAzMTEwLwYDVQQD
Eyg0MzU0Mzk1ODk4MjEzNGNjZGU3OGM4Mjg5OTg5NzE0NGZjZWI0ZDIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9ENeEPNMXqW4Oo59of0SePbLrmOi
wxkVJ5FVuG3Bqc8JTLHppVOu1xMTacgGSGCTE1hePHO+FF9Ig5eY5MVlHbo6bT6D
OaEJKijhuApUymwzab5javVi6bhuCd6ontvW6x4Bkyhg6CpNd8K6MdsgXdOVwvUs
0xCntQ51VWPwu72Z+S2rLdkYwpSeHGTCLwRnxsE8PswjarNQgjuKkshIQjZ+A4Y/
JVwXbtkkzyJaubzGqtCYLvM7qRM3tZum6kMj57AIyRfbvADV5Dh/Pa+FIcaF9AY7
ia8R5fnwA30Wsfx8ikgYq0HMzXqKV7Ty5hxVd5k+Q2J1og9r9MoO+A9j/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFENUOViYITTM3njIKJmJcUT8600iMB8GA1UdIwQY
MBaAFA+aLSN0qmrHFLX4pu3bgNxpZ5zGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDVvdEkzU3Fhc2NVdGZpbTdkdUEzR2xubk1ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi8wMDI0OGMtMzc5MS00NjI5LWE2YzYt
NmQ5NzE5OTJjMzQ5LzEvRDVvdEkzU3Fhc2NVdGZpbTdkdUEzR2xubk1ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi8wMDI0OGMtMzc5MS00NjI5LWE2YzYtNmQ5NzE5OTJjMzQ5
LzEvRDVvdEkzU3Fhc2NVdGZpbTdkdUEzR2xubk1ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUTuEeJFX
FNlRhcKzrNsNIPIrEbf8Sl+tlUO83AajBvK5RhgQXSUztFs353qVCzAxTejcYJTx
eCDQKWeWMZJJDVfuO0o0/lO8mEERjBe9QB/dgceuCEbtb0nRFMBfz6fbxCJiBgTm
jmT7JiLY5fqC0Zz6PEfuCutM9ZQmQIfPbAWsaqHzJgudoIVQYriC6w0B4WUcB9BX
hKKXsbXyB7FotjH6wTDtLOLQ12H/7Pwfi15XHimVguAeNhxnDcUoyWl+3bN5mr+G
XEJekfMqzpkjxFluDcoc+ykcbRcWt+C4mdPeAQuwv24+mHU+KfGyGE8CoMes0dBv
xDx6eeMIsgtA1Q==
-----END CERTIFICATE-----
Generated at Tue Nov 26 19:21:53 2024 by rpki-client on console-fra.rpki-client.org