Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/851902-5050-46b2-b452-0599f0b2b09a/1/tMflb0aH6hstd2PQiI0QUCNbV0s.mft
File: tMflb0aH6hstd2PQiI0QUCNbV0s.mft (raw, json)
Hash identifier: 7RuPrZaROrLxPFFU2g/SfKQnyguuzNr8ZTHYtwz39B4=
Subject key identifier: 9F:46:C2:48:84:D8:C8:66:F8:F3:B1:7A:6D:4F:31:CE:0E:AD:D4:4C
Authority key identifier: B4:C7:E5:6F:46:87:EA:1B:2D:77:63:D0:88:8D:10:50:23:5B:57:4B
Certificate issuer: /CN=b4c7e56f4687ea1b2d7763d0888d1050235b574b
Certificate serial: 019369DB073AC6A9076AF446C2C4FE3A183E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tMflb0aH6hstd2PQiI0QUCNbV0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/851902-5050-46b2-b452-0599f0b2b09a/1/tMflb0aH6hstd2PQiI0QUCNbV0s.mft
Manifest number: 130C
Signing time: Tue 26 Nov 2024 19:03:02 +0000
Manifest this update: Tue 26 Nov 2024 19:03:02 +0000
Manifest next update: Wed 27 Nov 2024 19:03:02 +0000
Files and hashes: 1: 5i5A6J44EITcm1rq6lIYbDdEx80.roa (hash: WDVCW3qISvbTqhWiimuBx2qPviVJ2fOFwgH/P10VSsQ=)
2: tMflb0aH6hstd2PQiI0QUCNbV0s.crl (hash: WGJZ1QAlZ5IwMtf7cYzBmEKYiMplq7DGKbG1D9IJlYE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/851902-5050-46b2-b452-0599f0b2b09a/1/tMflb0aH6hstd2PQiI0QUCNbV0s.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/851902-5050-46b2-b452-0599f0b2b09a/1/tMflb0aH6hstd2PQiI0QUCNbV0s.mft
rsync://rpki.ripe.net/repository/DEFAULT/tMflb0aH6hstd2PQiI0QUCNbV0s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:db:07:3a:c6:a9:07:6a:f4:46:c2:c4:fe:3a:18:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4c7e56f4687ea1b2d7763d0888d1050235b574b
Validity
Not Before: Nov 26 19:03:02 2024 GMT
Not After : Nov 27 19:03:02 2024 GMT
Subject: CN=9f46c24884d8c866f8f3b17a6d4f31ce0eadd44c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:85:54:7f:c0:0a:7f:2b:45:bd:9e:7c:b7:b2:
af:22:9a:91:c7:da:98:ba:25:1c:2e:96:b1:02:97:
50:a2:36:84:b1:b8:d6:98:7b:d0:8f:5f:cb:66:54:
a0:a1:0c:e0:e2:a0:b7:4d:de:a3:23:f7:59:50:8f:
e1:de:0d:dc:64:fc:b7:dd:53:eb:1a:d4:df:35:43:
e1:44:79:01:97:b1:6f:82:66:91:ce:4f:a3:e0:ca:
8f:79:ae:97:12:50:a9:82:c9:bd:fa:a9:8a:b6:a5:
64:92:e0:3a:12:a8:05:fa:12:17:4d:24:0a:ce:3e:
3e:1b:11:db:35:c0:57:f6:91:18:a2:e1:e6:d5:13:
10:f8:cf:9a:7f:62:f3:94:d2:b8:f1:6b:14:29:00:
cc:78:54:69:58:3e:f3:a7:7c:69:65:e5:0f:d4:f3:
30:38:b0:b0:97:38:01:c2:8e:95:7f:50:3d:b3:f8:
4f:8e:e2:0b:fa:1d:2b:4d:e8:a8:7d:89:ce:5b:ea:
c9:c4:0d:40:24:bd:9a:76:5c:ec:56:3f:57:71:1b:
bf:cb:35:8e:c9:d9:a2:96:a1:8f:60:c4:3d:cd:2d:
54:37:82:1b:46:fb:c1:c6:11:8b:2d:1d:6d:35:8c:
37:8a:41:61:80:b0:c5:68:25:e8:c9:08:e8:9e:ed:
f3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:46:C2:48:84:D8:C8:66:F8:F3:B1:7A:6D:4F:31:CE:0E:AD:D4:4C
X509v3 Authority Key Identifier:
keyid:B4:C7:E5:6F:46:87:EA:1B:2D:77:63:D0:88:8D:10:50:23:5B:57:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tMflb0aH6hstd2PQiI0QUCNbV0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/851902-5050-46b2-b452-0599f0b2b09a/1/tMflb0aH6hstd2PQiI0QUCNbV0s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/851902-5050-46b2-b452-0599f0b2b09a/1/tMflb0aH6hstd2PQiI0QUCNbV0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:c3:2b:3d:c7:eb:92:23:f0:9d:5c:21:66:4b:78:f5:ba:5a:
b3:da:c7:8f:d5:42:07:7c:bd:ef:ef:a8:65:5f:77:fe:d8:a1:
98:2d:09:7c:56:91:11:74:00:f6:b2:e3:a3:05:97:c3:46:9a:
d2:92:c8:d9:53:b8:7a:eb:ae:43:20:0e:fe:16:71:11:b6:ca:
38:8e:2f:d8:c5:79:b5:90:6c:c1:ba:c8:a8:d5:92:04:47:78:
92:f2:6e:22:77:11:4f:a4:55:50:a5:39:28:21:dc:9d:07:c7:
6e:1e:37:fe:7b:35:ac:2a:0f:1b:2e:3e:1f:6c:11:10:ab:b5:
4f:52:82:1d:e7:b8:81:be:47:bb:40:73:96:a4:92:1a:84:b0:
f5:b6:38:15:92:7a:78:65:d6:66:ed:42:43:5f:22:08:16:b8:
7b:e3:d2:69:85:1d:ae:4a:1a:e3:f1:7f:51:7e:68:13:4c:d8:
44:15:11:32:e2:3d:1f:9d:14:e5:b0:62:c8:da:52:f7:21:b1:
5b:77:e5:c8:77:ac:80:ed:16:99:ee:17:00:8a:06:24:44:06:
21:72:d9:a6:b4:7a:5c:49:00:00:eb:05:fb:15:24:91:fd:db:
63:ea:51:c0:a0:58:fd:1a:97:ba:e8:8b:fe:60:f6:24:06:54:
39:86:9e:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNp2wc6xqkHavRGwsT+Ohg+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0YzdlNTZmNDY4N2VhMWIyZDc3NjNkMDg4OGQxMDUwMjM1
YjU3NGIwHhcNMjQxMTI2MTkwMzAyWhcNMjQxMTI3MTkwMzAyWjAzMTEwLwYDVQQD
Eyg5ZjQ2YzI0ODg0ZDhjODY2ZjhmM2IxN2E2ZDRmMzFjZTBlYWRkNDRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjIVUf8AKfytFvZ58t7KvIpqRx9qY
uiUcLpaxApdQojaEsbjWmHvQj1/LZlSgoQzg4qC3Td6jI/dZUI/h3g3cZPy33VPr
GtTfNUPhRHkBl7FvgmaRzk+j4MqPea6XElCpgsm9+qmKtqVkkuA6EqgF+hIXTSQK
zj4+GxHbNcBX9pEYouHm1RMQ+M+af2LzlNK48WsUKQDMeFRpWD7zp3xpZeUP1PMw
OLCwlzgBwo6Vf1A9s/hPjuIL+h0rTeiofYnOW+rJxA1AJL2adlzsVj9XcRu/yzWO
ydmilqGPYMQ9zS1UN4IbRvvBxhGLLR1tNYw3ikFhgLDFaCXoyQjonu3z7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ9GwkiE2Mhm+POxem1PMc4OrdRMMB8GA1UdIwQY
MBaAFLTH5W9Gh+obLXdj0IiNEFAjW1dLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdE1mbGIwYUg2aHN0ZDJQUWlJMFFVQ05iVjBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC84NTE5MDItNTA1MC00NmIyLWI0NTIt
MDU5OWYwYjJiMDlhLzEvdE1mbGIwYUg2aHN0ZDJQUWlJMFFVQ05iVjBzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC84NTE5MDItNTA1MC00NmIyLWI0NTItMDU5OWYwYjJiMDlh
LzEvdE1mbGIwYUg2aHN0ZDJQUWlJMFFVQ05iVjBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOcMrPcfr
kiPwnVwhZkt49bpas9rHj9VCB3y97++oZV93/tihmC0JfFaREXQA9rLjowWXw0aa
0pLI2VO4euuuQyAO/hZxEbbKOI4v2MV5tZBswbrIqNWSBEd4kvJuIncRT6RVUKU5
KCHcnQfHbh43/ns1rCoPGy4+H2wREKu1T1KCHee4gb5Hu0BzlqSSGoSw9bY4FZJ6
eGXWZu1CQ18iCBa4e+PSaYUdrkoa4/F/UX5oE0zYRBURMuI9H50U5bBiyNpS9yGx
W3flyHesgO0Wme4XAIoGJEQGIXLZprR6XEkAAOsF+xUkkf3bY+pRwKBY/RqXuuiL
/mD2JAZUOYaePg==
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:22:33 2024 by rpki-client on console-ams.rpki-client.org