Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
File: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft (raw, json)
Hash identifier: 0vqbgWtbReAjLuEToqN0CVvp2wm8BdKvsfSXO3xSVRE=
Subject key identifier: 72:23:D3:1F:9F:76:90:F9:98:CF:2D:8E:F6:A9:1F:F1:E7:97:C0:C3
Authority key identifier: 95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0
Certificate issuer: /CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0
Certificate serial: 0193579B634D54BF9D8C7B9587B7D8D729A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
Manifest number: 045A
Signing time: Sat 23 Nov 2024 06:00:21 +0000
Manifest this update: Sat 23 Nov 2024 06:00:21 +0000
Manifest next update: Sun 24 Nov 2024 06:00:21 +0000
Files and hashes: 1: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl (hash: 4ofI8GBNxilRZGPEB5pIpXgqKiWSuoBSphww8hQhY9g=)
2: wZ0zl4Fp9rUD-Eb3vvzDWm2eUZc.roa (hash: 5eVVuVH2bgVoD564N6VmuTVieuhogrKC8IUJifJVC+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:63:4d:54:bf:9d:8c:7b:95:87:b7:d8:d7:29:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0
Validity
Not Before: Nov 23 06:00:21 2024 GMT
Not After : Nov 24 06:00:21 2024 GMT
Subject: CN=7223d31f9f7690f998cf2d8ef6a91ff1e797c0c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2c:11:47:df:1f:85:69:69:3d:02:f2:79:4e:
42:99:18:c7:86:86:1f:d8:c3:f9:2e:3f:90:fa:51:
a3:03:92:4f:a1:06:0d:3c:f9:25:4f:6b:8f:ed:8d:
84:f0:7e:41:38:e3:87:db:b7:04:34:e0:ad:c3:81:
17:5f:01:87:5b:ba:8f:ac:88:2c:76:d0:b0:6d:e1:
8c:54:78:b0:54:9b:b3:7a:55:5d:18:1f:64:f9:ec:
81:33:a5:5d:89:d5:4f:7a:ef:49:99:e0:40:29:ab:
ca:e0:68:6a:8e:de:51:fc:0a:2e:19:9a:fa:13:ab:
f3:1c:87:7a:18:79:d3:ca:bb:9f:f0:6a:dd:20:b5:
d2:de:ea:ca:f0:42:02:c6:fd:48:7f:b3:2c:9f:f2:
e3:c0:b9:29:29:d5:4e:d9:9c:0a:ce:6e:08:f0:5c:
a6:05:0d:42:76:66:82:09:64:28:b4:8e:0e:12:e1:
40:86:44:96:fa:15:53:a7:dd:bc:36:a8:00:a8:28:
62:4d:b0:bc:52:f3:4b:48:53:06:b4:f2:cb:d6:80:
b4:1c:d3:60:1c:86:a0:83:20:85:f0:57:b5:ea:90:
57:9c:6b:0c:41:d1:ef:eb:53:d2:6e:f3:56:b3:b8:
24:5d:5e:4e:5b:6b:f2:2a:42:64:50:d5:b7:af:66:
32:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:23:D3:1F:9F:76:90:F9:98:CF:2D:8E:F6:A9:1F:F1:E7:97:C0:C3
X509v3 Authority Key Identifier:
keyid:95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:85:f2:a5:81:36:7e:31:31:85:ff:67:63:41:78:dc:ae:6f:
0f:df:34:39:19:b6:61:0d:d3:1c:8f:2a:de:b6:a6:e5:e4:0f:
f9:08:7a:1a:0f:db:08:ea:c6:a2:30:8f:02:74:2c:c7:a9:e1:
69:98:13:d1:9e:7c:d4:96:1e:54:b4:e7:28:39:6c:1d:33:86:
df:ff:1b:f3:4e:25:f3:98:22:37:df:6a:28:76:96:87:77:df:
5f:2b:80:c4:df:5e:6d:25:67:10:92:22:9c:e7:9c:aa:54:c8:
a9:1c:83:15:d1:b9:16:7f:ea:33:36:fb:c5:6d:42:d4:fc:eb:
ff:07:a7:10:21:57:f4:2c:09:bf:bd:ee:04:11:f2:e2:38:9f:
e1:54:65:25:92:23:00:45:cd:f9:10:09:53:1f:76:4c:ca:f8:
08:6b:f3:d9:0e:c3:2f:ad:61:9e:f2:32:85:ca:6d:fd:29:87:
11:91:ee:c2:49:ce:d7:f6:f6:f4:94:f3:5f:b9:dc:bc:58:6c:
96:e3:e9:28:84:2c:97:2a:2c:20:70:03:b5:b1:dd:19:71:4e:
f7:53:00:f5:b6:4c:87:5f:8e:30:00:6e:7b:41:e4:b9:10:c7:
7b:5a:0e:0a:dc:85:36:1c:95:af:70:c3:f8:98:02:be:6d:56:
42:c9:11:41
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNXm2NNVL+djHuVh7fY1ymgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1MTRkZjlmZGMzYTBiMTI4YzIwZWU4YzA2NjI4YzQzYzk1
OGJiZjAwHhcNMjQxMTIzMDYwMDIxWhcNMjQxMTI0MDYwMDIxWjAzMTEwLwYDVQQD
Eyg3MjIzZDMxZjlmNzY5MGY5OThjZjJkOGVmNmE5MWZmMWU3OTdjMGMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtSwRR98fhWlpPQLyeU5CmRjHhoYf
2MP5Lj+Q+lGjA5JPoQYNPPklT2uP7Y2E8H5BOOOH27cENOCtw4EXXwGHW7qPrIgs
dtCwbeGMVHiwVJuzelVdGB9k+eyBM6VdidVPeu9JmeBAKavK4Ghqjt5R/AouGZr6
E6vzHId6GHnTyruf8GrdILXS3urK8EICxv1If7Msn/LjwLkpKdVO2ZwKzm4I8Fym
BQ1CdmaCCWQotI4OEuFAhkSW+hVTp928NqgAqChiTbC8UvNLSFMGtPLL1oC0HNNg
HIaggyCF8Fe16pBXnGsMQdHv61PSbvNWs7gkXV5OW2vyKkJkUNW3r2YytwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHIj0x+fdpD5mM8tjvapH/Hnl8DDMB8GA1UdIwQY
MBaAFJUU35/cOgsSjCDujAZijEPJWLvwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFJUZm45dzZDeEtNSU82TUJtS01ROGxZdV9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi85N2ZiMGQtZDc3Zi00NDY3LTg2Mjct
ZTIyMmJmODUyOWI4LzEvbFJUZm45dzZDeEtNSU82TUJtS01ROGxZdV9BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi85N2ZiMGQtZDc3Zi00NDY3LTg2MjctZTIyMmJmODUyOWI4
LzEvbFJUZm45dzZDeEtNSU82TUJtS01ROGxZdV9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZoXypYE2
fjExhf9nY0F43K5vD980ORm2YQ3THI8q3ram5eQP+Qh6Gg/bCOrGojCPAnQsx6nh
aZgT0Z581JYeVLTnKDlsHTOG3/8b804l85giN99qKHaWh3ffXyuAxN9ebSVnEJIi
nOecqlTIqRyDFdG5Fn/qMzb7xW1C1Pzr/wenECFX9CwJv73uBBHy4jif4VRlJZIj
AEXN+RAJUx92TMr4CGvz2Q7DL61hnvIyhcpt/SmHEZHuwknO1/b29JTzX7ncvFhs
luPpKIQslyosIHADtbHdGXFO91MA9bZMh1+OMABue0HkuRDHe1oOCtyFNhyVr3DD
+JgCvm1WQskRQQ==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:02:57 2024 by rpki-client on console-fra.rpki-client.org