Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
File: zkn8E0twZULK8aHvvgNPcBG0lDY.mft (raw, json)
Hash identifier: K02Fq+5oEQwk129Zrp29AsIoT8wpCIin2qhAzoJ6Q6Q=
Subject key identifier: 6E:F9:CA:C2:36:BF:86:F8:CE:7A:37:F6:C1:4C:21:83:2A:A9:BA:17
Authority key identifier: CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
Certificate issuer: /CN=ce49fc134b706542caf1a1efbe034f7011b49436
Certificate serial: 019364E9BA7EEC55F23D83E4D7430B0641EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
Manifest number: 029F
Signing time: Mon 25 Nov 2024 20:00:59 +0000
Manifest this update: Mon 25 Nov 2024 20:00:59 +0000
Manifest next update: Tue 26 Nov 2024 20:00:59 +0000
Files and hashes: 1: i_PWZDViu3Q6Gs4K97ZfuA0X6OY.roa (hash: mdgDMnlU6A+oEGZUZ90Uy7ZekSWrTln1Ma1owrgc9go=)
2: zkn8E0twZULK8aHvvgNPcBG0lDY.crl (hash: s39sTlBfkxE1k/eXurzO32DrIfXYsNDSYinjcsF30bU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:64:e9:ba:7e:ec:55:f2:3d:83:e4:d7:43:0b:06:41:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce49fc134b706542caf1a1efbe034f7011b49436
Validity
Not Before: Nov 25 20:00:59 2024 GMT
Not After : Nov 26 20:00:59 2024 GMT
Subject: CN=6ef9cac236bf86f8ce7a37f6c14c21832aa9ba17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:e6:69:ea:94:b9:bb:31:1b:ba:d7:eb:a1:1b:
bf:0b:bb:53:11:02:55:34:b6:e3:2b:b0:79:f6:91:
50:c9:f7:70:fd:87:68:1f:ab:d7:83:e0:d4:1c:eb:
34:f5:3b:b1:8c:37:2d:e6:6f:46:18:13:e2:ed:52:
60:41:47:c7:a8:15:ad:2b:ce:84:c2:5c:69:a6:ee:
53:74:69:42:c9:98:bf:e8:7b:b5:5c:4f:6c:f5:1e:
72:d0:09:ad:c9:5f:e2:a7:3a:80:28:9d:2a:ae:69:
e5:dd:f5:2e:7d:1a:9d:36:81:eb:d9:68:89:10:98:
46:b2:17:2e:13:cf:5e:ce:e5:07:7f:9b:f3:d4:73:
d8:29:b9:11:2e:a4:4c:ee:ea:95:d3:e2:8c:e1:5b:
a7:2e:9c:38:23:e6:a8:cc:f6:b6:78:86:cb:a1:2e:
2f:22:ae:94:17:da:ad:15:e7:3c:96:e1:17:3e:e0:
ff:89:5f:03:d6:a4:2f:45:90:3c:9f:e3:51:13:45:
29:55:22:ae:82:71:31:6f:f2:3a:c2:7f:b0:e9:be:
1e:50:84:f2:ae:9c:f1:f2:a7:23:4c:e7:14:e9:63:
b3:eb:55:da:b9:24:6c:16:e5:7b:18:6b:8e:d7:4f:
3e:f6:73:7c:f9:26:20:60:dd:c8:8f:70:83:d5:f5:
1e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:F9:CA:C2:36:BF:86:F8:CE:7A:37:F6:C1:4C:21:83:2A:A9:BA:17
X509v3 Authority Key Identifier:
keyid:CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:0a:0a:1a:1b:9d:b7:a3:39:e2:4a:c3:72:f9:b9:33:84:50:
55:fe:c2:8c:6e:8e:f5:cc:c9:9c:98:e8:b1:24:49:9a:1d:90:
d9:18:0d:f2:53:af:5e:a7:2d:0b:c6:04:3a:ef:f0:a8:c8:b1:
69:fc:03:cc:ed:70:a6:76:87:3b:23:30:d0:3d:2b:26:f1:9c:
34:8c:c6:19:f7:a7:f5:5c:b4:3c:45:fb:0d:6d:a5:44:09:cf:
74:d2:7e:f4:9f:47:5b:30:55:29:04:89:e5:32:68:5b:7c:0c:
5f:0a:16:a7:29:f7:41:3c:ff:aa:dc:97:1c:73:e7:04:cc:da:
74:e2:ae:67:a0:48:5f:30:f7:10:cc:74:99:79:5b:9e:89:36:
a7:2c:d1:4a:77:49:a8:a5:e5:e2:92:b8:82:5e:eb:8b:9a:f2:
34:18:59:1e:93:f2:c4:a7:0e:58:86:a3:0e:fb:21:a3:fe:df:
28:2a:68:2d:a6:b0:70:21:7b:43:4a:8b:4e:f8:28:84:63:83:
e9:1f:d2:a0:59:9b:a5:14:a0:c6:8d:ca:a0:ce:06:40:89:73:
84:7d:74:de:99:89:3f:40:6c:b3:71:19:f6:c3:64:b9:51:8d:
40:d7:3e:fd:cc:56:3f:67:56:e9:6c:a1:e6:a8:f8:d1:50:58:
ba:36:13:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNk6bp+7FXyPYPk10MLBkHsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlNDlmYzEzNGI3MDY1NDJjYWYxYTFlZmJlMDM0ZjcwMTFi
NDk0MzYwHhcNMjQxMTI1MjAwMDU5WhcNMjQxMTI2MjAwMDU5WjAzMTEwLwYDVQQD
Eyg2ZWY5Y2FjMjM2YmY4NmY4Y2U3YTM3ZjZjMTRjMjE4MzJhYTliYTE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6+Zp6pS5uzEbutfroRu/C7tTEQJV
NLbjK7B59pFQyfdw/YdoH6vXg+DUHOs09TuxjDct5m9GGBPi7VJgQUfHqBWtK86E
wlxppu5TdGlCyZi/6Hu1XE9s9R5y0AmtyV/ipzqAKJ0qrmnl3fUufRqdNoHr2WiJ
EJhGshcuE89ezuUHf5vz1HPYKbkRLqRM7uqV0+KM4VunLpw4I+aozPa2eIbLoS4v
Iq6UF9qtFec8luEXPuD/iV8D1qQvRZA8n+NRE0UpVSKugnExb/I6wn+w6b4eUITy
rpzx8qcjTOcU6WOz61XauSRsFuV7GGuO108+9nN8+SYgYN3Ij3CD1fUe3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG75ysI2v4b4zno39sFMIYMqqboXMB8GA1UdIwQY
MBaAFM5J/BNLcGVCyvGh774DT3ARtJQ2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemtuOEUwdHdaVUxLOGFIdnZnTlBjQkcwbERZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS8wMWRiYmMtMmZiYS00ZDk3LTg1ZjYt
NjQxZWRkYTA2Y2NlLzEvemtuOEUwdHdaVUxLOGFIdnZnTlBjQkcwbERZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS8wMWRiYmMtMmZiYS00ZDk3LTg1ZjYtNjQxZWRkYTA2Y2Nl
LzEvemtuOEUwdHdaVUxLOGFIdnZnTlBjQkcwbERZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA2AoKGhud
t6M54krDcvm5M4RQVf7CjG6O9czJnJjosSRJmh2Q2RgN8lOvXqctC8YEOu/wqMix
afwDzO1wpnaHOyMw0D0rJvGcNIzGGfen9Vy0PEX7DW2lRAnPdNJ+9J9HWzBVKQSJ
5TJoW3wMXwoWpyn3QTz/qtyXHHPnBMzadOKuZ6BIXzD3EMx0mXlbnok2pyzRSndJ
qKXl4pK4gl7ri5ryNBhZHpPyxKcOWIajDvsho/7fKCpoLaawcCF7Q0qLTvgohGOD
6R/SoFmbpRSgxo3KoM4GQIlzhH103pmJP0Bss3EZ9sNkuVGNQNc+/cxWP2dW6Wyh
5qj40VBYujYTzQ==
-----END CERTIFICATE-----
Generated at Mon Nov 25 22:31:56 2024 by rpki-client on console-fra.rpki-client.org