Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
File: lHMg0DCTAXjm987vkdKrh4TT3BY.mft (raw, json)
Hash identifier: 0tncjhqY0dgzNqgN2xzNtOoZEvkzthz1DCKaX0jA6qU=
Subject key identifier: D5:29:C7:0F:E1:63:F9:1B:31:E4:1D:EE:63:F8:CC:C1:A5:CF:24:21
Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Certificate serial: 0193512BCFC64A266533A2B31E448ADCB033
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
Manifest number: 0F99
Signing time: Fri 22 Nov 2024 00:00:45 +0000
Manifest this update: Fri 22 Nov 2024 00:00:45 +0000
Manifest next update: Sat 23 Nov 2024 00:00:45 +0000
Files and hashes: 1: O6la6v66tJUK1nvrXYuEyNEX52w.roa (hash: 5sIqpnuSrG+CKokkaCSwpP4vl/V7xzFw4GLj2V2lGsI=)
2: RMChs2fNq_joitEhMfCp1crAR0g.roa (hash: JGMIUji+jtOkbrxSwFnZYVpcTRA+YM3YLGtTOasQVZA=)
3: ekXAJs9ln0KogD5rZelScpzpKw0.roa (hash: z7wdq5m/icdZPGNgM/tFXqTButN0DAyz2YqjxEBbDrc=)
4: lHMg0DCTAXjm987vkdKrh4TT3BY.crl (hash: BvZSMUbwxn/KXzaVGg1a+k2k/1y5aNgEr+QkT4uwS+c=)
5: u5Bk7xPnoALFxBbED2etkry3Cvw.roa (hash: +itpzD98siuZhuRtaDrEzGRrzyplcWdRZU98OvZKBQs=)
6: uaEB4-lTmaTjqs5M5wB5QXYtgSI.roa (hash: MIkS+VNSrNsz8TgRMmQNoTDvCDL+nRHCyaH79hCqt7U=)
7: zkzr2l1aP0Uzlf7G7ROTnD5S774.roa (hash: CYTLmjqCLjv28b2fBHu9e2JY/s6S3Lw+3COyJhVmoFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:51:2b:cf:c6:4a:26:65:33:a2:b3:1e:44:8a:dc:b0:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Validity
Not Before: Nov 22 00:00:45 2024 GMT
Not After : Nov 23 00:00:45 2024 GMT
Subject: CN=d529c70fe163f91b31e41dee63f8ccc1a5cf2421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:63:2e:61:e7:66:50:68:0a:0c:aa:a1:f5:00:
69:13:ea:db:68:db:88:ae:a2:fa:8b:84:dd:75:47:
c2:02:68:84:7e:ea:a0:5f:84:48:4a:14:57:b8:24:
c8:3d:d6:da:e7:6f:dd:5a:2d:e7:eb:80:3f:17:1f:
47:5e:96:cf:a6:68:c5:c5:66:59:3c:95:f9:84:1a:
db:39:de:24:19:77:0c:d1:76:50:30:eb:45:47:46:
d5:df:fb:2d:ee:7c:68:aa:c0:e0:51:09:34:9e:7d:
06:3d:51:e8:4e:ae:e7:a1:a2:a3:0e:ab:98:11:40:
dd:98:f3:3f:64:ad:83:07:60:77:e2:f9:aa:a1:bf:
1a:01:0b:d8:0a:03:ad:a6:e9:73:cd:80:12:4c:a8:
50:5b:0e:30:ce:ce:2a:dd:21:3b:f7:b2:b2:cc:4f:
e6:7e:e6:ce:c1:5c:2f:38:c6:6f:c4:9f:41:cc:46:
da:7e:ed:f6:28:78:af:83:9a:64:33:7c:38:9d:7b:
27:ad:c5:0b:c0:70:f7:1e:b0:e1:ed:08:d9:78:44:
35:12:dd:33:52:bf:42:08:5c:40:54:64:e1:43:66:
d2:9b:6b:e7:23:82:99:0e:16:65:fb:24:cd:ee:7f:
7f:e0:59:9c:34:66:7c:62:22:c5:c4:0c:da:5c:76:
d8:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:29:C7:0F:E1:63:F9:1B:31:E4:1D:EE:63:F8:CC:C1:A5:CF:24:21
X509v3 Authority Key Identifier:
keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:03:94:60:fc:b3:d3:b4:48:bb:3e:da:07:c6:ac:59:16:4d:
dc:85:27:18:62:a7:53:24:7b:c5:3a:54:39:f8:e4:0c:0b:6f:
83:2e:66:3f:5e:9b:a9:81:f9:af:4f:d1:d2:d9:25:e3:27:1d:
4c:49:50:ba:e8:6e:14:4d:7d:82:97:4c:12:e4:c3:ba:48:da:
e1:0d:68:e6:a8:2e:0e:d2:a7:21:b7:46:12:d1:37:2d:de:6c:
af:36:74:c1:5d:5b:49:94:45:79:4c:d4:5a:0c:1b:88:3e:c9:
a8:c3:d9:50:10:73:b4:56:49:33:e7:f5:40:12:52:cb:82:fd:
77:47:7b:71:14:59:12:5c:64:ac:86:a6:90:7b:fa:5f:27:8b:
9c:7d:ae:76:e5:69:d6:9a:98:00:fd:bf:a5:25:e2:39:10:4e:
e5:bb:b6:db:84:e2:bf:83:86:83:04:ad:66:a6:b6:18:2d:73:
77:36:1f:d0:25:7a:f8:a6:b7:c7:bf:ac:e9:fc:2a:03:8c:17:
3e:a9:45:d5:9d:12:95:65:61:71:0e:e3:1a:34:4f:be:87:18:
a4:d0:4f:1e:22:96:10:76:f4:da:e7:5f:cd:35:c4:45:0d:8b:
bd:b5:76:3b:f8:e9:89:19:22:47:4f:19:43:b6:ba:bc:10:4b:
c5:00:0a:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNRK8/GSiZlM6KzHkSK3LAzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0NzMyMGQwMzA5MzAxNzhlNmY3Y2VlZjkxZDJhYjg3ODRk
M2RjMTYwHhcNMjQxMTIyMDAwMDQ1WhcNMjQxMTIzMDAwMDQ1WjAzMTEwLwYDVQQD
EyhkNTI5YzcwZmUxNjNmOTFiMzFlNDFkZWU2M2Y4Y2NjMWE1Y2YyNDIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAymMuYedmUGgKDKqh9QBpE+rbaNuI
rqL6i4TddUfCAmiEfuqgX4RIShRXuCTIPdba52/dWi3n64A/Fx9HXpbPpmjFxWZZ
PJX5hBrbOd4kGXcM0XZQMOtFR0bV3/st7nxoqsDgUQk0nn0GPVHoTq7noaKjDquY
EUDdmPM/ZK2DB2B34vmqob8aAQvYCgOtpulzzYASTKhQWw4wzs4q3SE797KyzE/m
fubOwVwvOMZvxJ9BzEbafu32KHivg5pkM3w4nXsnrcULwHD3HrDh7QjZeEQ1Et0z
Ur9CCFxAVGThQ2bSm2vnI4KZDhZl+yTN7n9/4FmcNGZ8YiLFxAzaXHbYDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNUpxw/hY/kbMeQd7mP4zMGlzyQhMB8GA1UdIwQY
MBaAFJRzINAwkwF45vfO75HSq4eE09wWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbEhNZzBEQ1RBWGptOTg3dmtkS3JoNFRUM0JZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC84MmU4NzYtYzk5Ny00NjA1LTg3YWEt
OGFjNGEyMTkzOGI0LzEvbEhNZzBEQ1RBWGptOTg3dmtkS3JoNFRUM0JZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC84MmU4NzYtYzk5Ny00NjA1LTg3YWEtOGFjNGEyMTkzOGI0
LzEvbEhNZzBEQ1RBWGptOTg3dmtkS3JoNFRUM0JZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANQOUYPyz
07RIuz7aB8asWRZN3IUnGGKnUyR7xTpUOfjkDAtvgy5mP16bqYH5r0/R0tkl4ycd
TElQuuhuFE19gpdMEuTDukja4Q1o5qguDtKnIbdGEtE3Ld5srzZ0wV1bSZRFeUzU
WgwbiD7JqMPZUBBztFZJM+f1QBJSy4L9d0d7cRRZElxkrIamkHv6XyeLnH2uduVp
1pqYAP2/pSXiORBO5bu224Tiv4OGgwStZqa2GC1zdzYf0CV6+Ka3x7+s6fwqA4wX
PqlF1Z0SlWVhcQ7jGjRPvocYpNBPHiKWEHb02udfzTXERQ2LvbV2O/jpiRkiR08Z
Q7a6vBBLxQAKjg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:16:56 2024 by rpki-client on console-ams.rpki-client.org