Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
File: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft (raw, json)
Hash identifier: hUQpLDjB+nzOJKcGBPHD5jTdXBdrNLKe8076sosMyJo=
Subject key identifier: 9F:3E:01:E2:B4:F7:B5:64:A8:4B:63:FE:2E:77:25:9F:9D:84:83:31
Authority key identifier: DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
Certificate issuer: /CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Certificate serial: 0193598A4028F3B9DEACDFBD6470E8D3B4A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
Manifest number: 0B01
Signing time: Sat 23 Nov 2024 15:00:52 +0000
Manifest this update: Sat 23 Nov 2024 15:00:52 +0000
Manifest next update: Sun 24 Nov 2024 15:00:52 +0000
Files and hashes: 1: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl (hash: lnTw0KsRLDFQh2UNR38AVHoYtMIzIijRtOBbZPLp7TU=)
2: _okLsSWcMbS96PXkiZ06tGdd-CM.roa (hash: 8PA7n6BjrsHCz67BujMVIT1+55lp0qo6wzbCDBy9pXY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:59:8a:40:28:f3:b9:de:ac:df:bd:64:70:e8:d3:b4:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Validity
Not Before: Nov 23 15:00:52 2024 GMT
Not After : Nov 24 15:00:52 2024 GMT
Subject: CN=9f3e01e2b4f7b564a84b63fe2e77259f9d848331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d3:ff:8e:e9:12:41:85:ea:c2:93:07:19:ea:
e6:f5:9f:6d:7a:b9:13:79:f6:bd:ee:75:1e:d6:98:
cd:44:72:45:f0:34:10:01:fb:fb:5f:81:c1:71:b5:
f8:a8:0b:63:8b:ba:e4:10:b7:16:30:43:99:b6:42:
a4:2d:28:2c:96:7c:d0:37:6e:58:bd:4a:51:a7:98:
ff:64:ea:3e:96:7b:d1:b2:54:eb:3f:9b:b6:09:5a:
4c:80:88:a5:7a:63:09:ae:4a:ed:fe:3b:88:55:b5:
e7:6d:72:22:c8:71:9b:08:85:f9:21:e5:ec:2e:c6:
77:04:e5:a4:01:e2:3f:74:24:86:01:32:2f:53:0a:
59:26:8c:f7:5a:7e:0e:52:27:fd:5c:7a:42:ba:3b:
d6:77:61:f6:c5:0d:f4:4e:a7:aa:49:0c:5e:db:29:
a0:f4:05:7a:d4:3d:f9:e1:3f:39:87:21:78:5c:fe:
07:14:be:17:d9:af:b1:e7:c3:b7:fe:fe:c3:4b:d5:
e1:e6:4d:e6:e2:93:1a:71:ad:9e:7a:f5:90:65:bc:
8f:c5:36:f6:8e:18:37:dc:0e:40:e8:72:41:aa:a8:
89:fb:94:23:7a:2d:b8:b2:ec:b2:42:57:ee:e6:0f:
6f:5f:fe:39:71:19:21:86:11:19:0d:b0:48:e6:11:
51:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:3E:01:E2:B4:F7:B5:64:A8:4B:63:FE:2E:77:25:9F:9D:84:83:31
X509v3 Authority Key Identifier:
keyid:DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:bd:5a:80:2d:62:ab:15:c4:89:9b:bc:6b:30:da:fc:db:94:
74:f4:cd:69:81:ca:3f:bf:e5:ae:25:c4:a0:16:d4:7b:e9:f9:
3d:7d:2f:a6:cc:b5:9e:4f:83:31:c5:8e:14:63:19:9a:64:8b:
f5:41:bd:95:fe:47:34:c3:d9:07:7a:09:11:3b:9d:87:e1:60:
ca:ad:9e:a3:4a:d6:39:3a:4a:7c:20:fc:15:83:b9:09:8c:4a:
33:1f:56:39:42:a6:6f:a7:df:24:92:bd:c8:79:da:22:91:15:
4b:9f:e3:db:7e:55:07:53:4c:7f:92:fa:6b:12:ca:d1:68:7b:
c5:70:d5:67:c9:1d:a0:fb:4e:6c:9b:b8:44:72:94:60:d8:13:
63:0f:ea:b2:31:73:a2:59:bd:0f:61:fd:c6:0c:80:58:43:6a:
db:ec:2a:8c:92:d5:06:47:0a:f5:a7:6a:bb:db:cc:ce:4a:a6:
e4:80:39:1e:39:a5:78:3f:7f:f7:7c:66:6b:30:75:a8:0e:bd:
23:32:28:00:c9:41:d2:aa:c6:77:8c:3b:c1:3c:7d:1f:6b:9e:
1e:d7:07:67:f4:f9:3e:0c:df:07:b1:67:b2:6e:5a:74:a7:0f:
41:a3:b0:39:05:c4:a5:a2:4b:4e:26:31:78:92:17:e3:9b:7e:
c9:02:a7:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNZikAo87nerN+9ZHDo07SjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhNzNhMzlhMGUwNDVkZGZhZWY1MDJmMWZkOTFjNmNjMTY1
MDk0NTkwHhcNMjQxMTIzMTUwMDUyWhcNMjQxMTI0MTUwMDUyWjAzMTEwLwYDVQQD
Eyg5ZjNlMDFlMmI0ZjdiNTY0YTg0YjYzZmUyZTc3MjU5ZjlkODQ4MzMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoNP/jukSQYXqwpMHGerm9Z9terkT
efa97nUe1pjNRHJF8DQQAfv7X4HBcbX4qAtji7rkELcWMEOZtkKkLSgslnzQN25Y
vUpRp5j/ZOo+lnvRslTrP5u2CVpMgIilemMJrkrt/juIVbXnbXIiyHGbCIX5IeXs
LsZ3BOWkAeI/dCSGATIvUwpZJoz3Wn4OUif9XHpCujvWd2H2xQ30TqeqSQxe2ymg
9AV61D354T85hyF4XP4HFL4X2a+x58O3/v7DS9Xh5k3m4pMaca2eevWQZbyPxTb2
jhg33A5A6HJBqqiJ+5Qjei24suyyQlfu5g9vX/45cRkhhhEZDbBI5hFRFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ8+AeK097VkqEtj/i53JZ+dhIMxMB8GA1UdIwQY
MBaAFNpzo5oOBF3frvUC8f2RxswWUJRZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMm5Pam1nNEVYZC11OVFMeF9aSEd6QlpRbEZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi8xNzM3ZmMtYjIyMS00ZmYwLWJmYTct
NWQ2NzRjYWRkZDZmLzEvMm5Pam1nNEVYZC11OVFMeF9aSEd6QlpRbEZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi8xNzM3ZmMtYjIyMS00ZmYwLWJmYTctNWQ2NzRjYWRkZDZm
LzEvMm5Pam1nNEVYZC11OVFMeF9aSEd6QlpRbEZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV71agC1i
qxXEiZu8azDa/NuUdPTNaYHKP7/lriXEoBbUe+n5PX0vpsy1nk+DMcWOFGMZmmSL
9UG9lf5HNMPZB3oJETudh+Fgyq2eo0rWOTpKfCD8FYO5CYxKMx9WOUKmb6ffJJK9
yHnaIpEVS5/j235VB1NMf5L6axLK0Wh7xXDVZ8kdoPtObJu4RHKUYNgTYw/qsjFz
olm9D2H9xgyAWENq2+wqjJLVBkcK9adqu9vMzkqm5IA5HjmleD9/93xmazB1qA69
IzIoAMlB0qrGd4w7wTx9H2ueHtcHZ/T5PgzfB7Fnsm5adKcPQaOwOQXEpaJLTiYx
eJIX45t+yQKntQ==
-----END CERTIFICATE-----
Generated at Sat Nov 23 20:38:34 2024 by rpki-client on console-ams.rpki-client.org