Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
File: oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft (raw, json)
Hash identifier: N1XOhJJeBUBplqCaERWm9HVja7MjPc7d2aXNlqdgmyw=
Subject key identifier: DE:F4:CE:24:91:D0:E8:8F:58:00:75:4F:E0:53:43:17:C3:D2:3D:F3
Authority key identifier: A1:5D:95:96:B7:A5:EF:08:89:A7:39:71:00:0D:12:63:0D:AC:A9:A6
Certificate issuer: /CN=a15d9596b7a5ef0889a73971000d12630daca9a6
Certificate serial: 0191FAEC538757C898FA698E8DF1F9353A71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
Manifest number: 0101
Signing time: Mon 16 Sep 2024 13:01:17 +0000
Manifest this update: Mon 16 Sep 2024 13:01:17 +0000
Manifest next update: Tue 17 Sep 2024 13:01:17 +0000
Files and hashes: 1: DpuPkOQ11ZbJfCH0De67PqBQkgE.roa (hash: lZ4ThDyc4Uq5mpEvecG/tURQNa+MbxXZiaobEYzTZt0=)
2: oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl (hash: A4OeyvrU75TVVU09e+VBZTdXfVEGH+BDl4P9O75Tveo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 13:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fa:ec:53:87:57:c8:98:fa:69:8e:8d:f1:f9:35:3a:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15d9596b7a5ef0889a73971000d12630daca9a6
Validity
Not Before: Sep 16 13:01:17 2024 GMT
Not After : Sep 17 13:01:17 2024 GMT
Subject: CN=def4ce2491d0e88f5800754fe0534317c3d23df3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:61:82:31:5a:1e:95:5d:e9:d2:d3:3c:3c:04:
01:0b:d9:39:ff:8e:6d:05:c2:85:c0:db:d5:70:5f:
df:f0:1c:87:c1:cb:b6:b0:82:02:62:be:7d:8e:f7:
e4:1e:44:77:3a:96:4b:0b:f9:1f:cd:69:1f:70:e1:
a7:5b:e8:ad:b5:39:a4:d7:9c:1c:b5:86:d5:18:84:
3f:aa:e8:c3:f9:72:38:b7:11:cd:f6:a6:14:15:7c:
01:fa:58:f7:ff:f0:4b:dd:f0:a6:33:a5:e0:75:78:
c8:72:8b:93:bf:de:94:04:af:90:9d:d3:38:4a:51:
db:ba:a9:b6:cd:fd:2c:da:76:78:1f:2e:f5:c5:ce:
fc:16:1b:cb:9a:db:7b:75:87:94:be:00:e2:fe:cb:
55:84:4b:05:e9:bf:7e:e2:42:8f:b4:59:e0:40:09:
9d:88:7d:10:e0:43:9a:a1:af:28:57:be:ee:50:11:
34:57:a6:5d:5d:22:67:67:2b:50:1e:e7:3e:f7:ec:
4e:36:29:37:fb:96:ad:e5:5c:c9:74:2e:8c:31:ac:
e8:ef:69:8f:f2:42:c2:8a:64:92:49:65:7e:77:e7:
b0:7d:7a:61:2b:0a:4e:1b:fa:d4:2d:08:7a:a9:1b:
20:29:29:dd:76:a3:52:9c:19:51:5e:18:22:59:32:
dd:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:F4:CE:24:91:D0:E8:8F:58:00:75:4F:E0:53:43:17:C3:D2:3D:F3
X509v3 Authority Key Identifier:
keyid:A1:5D:95:96:B7:A5:EF:08:89:A7:39:71:00:0D:12:63:0D:AC:A9:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:80:bb:0d:af:88:52:ac:e8:47:1b:26:54:17:4d:2c:e2:23:
17:b5:3f:39:1e:50:a6:3c:99:ea:d1:31:64:cf:ee:ce:8b:e6:
43:e3:4c:4d:d9:4f:15:5a:db:e0:fa:64:cf:69:f2:85:ed:98:
35:26:e0:8b:96:d9:47:88:ac:50:63:28:56:7d:76:5f:89:e3:
42:3f:13:61:ad:de:9a:67:e6:0e:1b:82:cf:5a:23:78:13:13:
ec:29:24:a0:49:9d:fc:49:04:ce:45:9e:d5:60:56:4d:5f:34:
d5:25:f6:01:4d:3d:47:b4:3a:d5:c0:30:0a:80:a0:1e:3c:4b:
ca:e4:85:64:07:86:74:28:f2:e9:0d:c4:dd:aa:32:c8:1b:5e:
cd:54:25:89:62:c7:93:b5:a1:16:84:89:78:e7:78:09:92:85:
5a:b0:81:2e:f4:ae:af:96:d0:b4:50:30:35:1c:b9:54:81:e1:
ba:f9:24:85:66:97:e4:20:53:29:cf:47:a2:08:46:22:a6:10:
b3:aa:45:1a:02:d8:5b:fb:fb:34:0e:57:04:ec:b9:ca:6f:e7:
36:67:c3:dd:de:72:ba:5c:9e:69:cb:75:e3:77:f9:20:e4:f9:
81:8c:5f:b4:3d:e2:2d:50:6a:65:8d:87:73:16:5e:d4:08:86:
e8:60:ea:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZH67FOHV8iY+mmOjfH5NTpxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExNWQ5NTk2YjdhNWVmMDg4OWE3Mzk3MTAwMGQxMjYzMGRh
Y2E5YTYwHhcNMjQwOTE2MTMwMTE3WhcNMjQwOTE3MTMwMTE3WjAzMTEwLwYDVQQD
EyhkZWY0Y2UyNDkxZDBlODhmNTgwMDc1NGZlMDUzNDMxN2MzZDIzZGYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmGCMVoelV3p0tM8PAQBC9k5/45t
BcKFwNvVcF/f8ByHwcu2sIICYr59jvfkHkR3OpZLC/kfzWkfcOGnW+ittTmk15wc
tYbVGIQ/qujD+XI4txHN9qYUFXwB+lj3//BL3fCmM6XgdXjIcouTv96UBK+QndM4
SlHbuqm2zf0s2nZ4Hy71xc78FhvLmtt7dYeUvgDi/stVhEsF6b9+4kKPtFngQAmd
iH0Q4EOaoa8oV77uUBE0V6ZdXSJnZytQHuc+9+xONik3+5at5VzJdC6MMazo72mP
8kLCimSSSWV+d+ewfXphKwpOG/rULQh6qRsgKSnddqNSnBlRXhgiWTLd1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN70ziSR0OiPWAB1T+BTQxfD0j3zMB8GA1UdIwQY
MBaAFKFdlZa3pe8Iiac5cQANEmMNrKmmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1YyVmxyZWw3d2lKcHpseEFBMFNZdzJzcWFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9jZjU0MGYtOTdkNi00MTQyLWI2MDMt
MzExMjQ2N2JiYzg4LzEvb1YyVmxyZWw3d2lKcHpseEFBMFNZdzJzcWFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS9jZjU0MGYtOTdkNi00MTQyLWI2MDMtMzExMjQ2N2JiYzg4
LzEvb1YyVmxyZWw3d2lKcHpseEFBMFNZdzJzcWFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPoC7Da+I
UqzoRxsmVBdNLOIjF7U/OR5QpjyZ6tExZM/uzovmQ+NMTdlPFVrb4Ppkz2nyhe2Y
NSbgi5bZR4isUGMoVn12X4njQj8TYa3emmfmDhuCz1ojeBMT7CkkoEmd/EkEzkWe
1WBWTV801SX2AU09R7Q61cAwCoCgHjxLyuSFZAeGdCjy6Q3E3aoyyBtezVQliWLH
k7WhFoSJeOd4CZKFWrCBLvSur5bQtFAwNRy5VIHhuvkkhWaX5CBTKc9HoghGIqYQ
s6pFGgLYW/v7NA5XBOy5ym/nNmfD3d5yulyeact143f5IOT5gYxftD3iLVBqZY2H
cxZe1AiG6GDqDg==
-----END CERTIFICATE-----
Generated at Mon Sep 16 18:22:16 2024 by rpki-client on console-ams.rpki-client.org