Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.mft
File: IKf8vlkxTDcraPIyIjgoseM6A-w.mft (raw, json)
Hash identifier: VIAzPNnMSWjCtJWVrko3LXpFt+7joKb9PbVDlmSAC8c=
Subject key identifier: C0:A3:7F:1D:0E:63:9A:13:A7:97:74:E9:B0:21:AB:97:85:E9:94:79
Authority key identifier: 20:A7:FC:BE:59:31:4C:37:2B:68:F2:32:22:38:28:B1:E3:3A:03:EC
Certificate issuer: /CN=20a7fcbe59314c372b68f232223828b1e33a03ec
Certificate serial: 0193549A52205C4EDB1A93578A09F8BDF887
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKf8vlkxTDcraPIyIjgoseM6A-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.mft
Manifest number: 0FCE
Signing time: Fri 22 Nov 2024 16:00:19 +0000
Manifest this update: Fri 22 Nov 2024 16:00:19 +0000
Manifest next update: Sat 23 Nov 2024 16:00:19 +0000
Files and hashes: 1: IKf8vlkxTDcraPIyIjgoseM6A-w.crl (hash: LvVOokp+hBjr/WSskckC6P8bs1LBQF1T+pXQreMq/9I=)
2: pwc0HJt50lXMqhq3V6lEDOPpy_I.roa (hash: 3o5gd6QuAGxP4X/B56P6LCeXI4Wnx0IcGs6GjDHET+g=)
3: qMagO8BGiVwmg2gzdbvIk9n2SNU.roa (hash: rT4H0kYn7vmFYo+k0IcsziZIg89ISgg772v1uEFu8iM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKf8vlkxTDcraPIyIjgoseM6A-w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 16:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9a:52:20:5c:4e:db:1a:93:57:8a:09:f8:bd:f8:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20a7fcbe59314c372b68f232223828b1e33a03ec
Validity
Not Before: Nov 22 16:00:19 2024 GMT
Not After : Nov 23 16:00:19 2024 GMT
Subject: CN=c0a37f1d0e639a13a79774e9b021ab9785e99479
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f6:ca:f3:4c:0f:e1:a1:d7:42:45:7f:82:e0:
ea:74:a5:64:0d:aa:8d:e9:84:d8:bf:bd:88:8d:d3:
05:36:b5:70:8b:3a:17:99:2b:16:94:0d:f5:f1:6f:
07:c0:53:e3:71:59:b1:f3:22:61:c0:96:2d:ce:9a:
bd:0e:a4:8b:7c:8d:7c:bf:1b:7c:12:f8:5e:c1:3e:
86:96:39:f4:49:9a:a2:94:37:34:6d:d8:11:a3:12:
e0:63:ca:c3:90:9e:f8:39:26:8d:12:28:f1:12:0a:
1e:1c:f9:52:39:e7:4b:67:71:13:93:52:56:32:95:
c9:b1:d9:17:76:b6:bd:e8:35:97:9a:ac:44:27:e8:
6a:67:f9:0a:34:a6:80:73:7e:2c:ce:52:15:4a:74:
79:4f:27:34:34:87:20:c6:ae:1d:1d:11:63:56:28:
14:95:39:b2:ae:81:02:78:c7:5a:84:4d:a4:b0:28:
18:67:af:a3:b0:54:fd:b2:a1:58:dd:2f:ff:a4:b0:
7b:b9:58:96:e5:2c:6e:ac:eb:68:4f:06:8c:2a:36:
5b:2f:30:14:ed:e7:75:24:ff:0e:ae:0b:12:fe:c9:
07:36:e3:7b:43:dc:58:12:f4:06:1a:3e:45:88:b4:
a1:ec:ca:6e:91:58:e6:f2:9f:98:8a:71:49:70:04:
bc:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:A3:7F:1D:0E:63:9A:13:A7:97:74:E9:B0:21:AB:97:85:E9:94:79
X509v3 Authority Key Identifier:
keyid:20:A7:FC:BE:59:31:4C:37:2B:68:F2:32:22:38:28:B1:E3:3A:03:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKf8vlkxTDcraPIyIjgoseM6A-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:9d:0a:b6:30:1d:0e:ca:34:8d:27:4c:4a:a1:71:f0:7d:1f:
c8:9d:41:a9:90:6b:96:59:fa:38:3f:2a:e4:a7:a7:6f:a5:d6:
0e:b8:1c:c3:67:08:2d:4b:5b:f9:54:44:b6:74:9e:ff:e3:5d:
a6:99:7a:8c:36:32:bc:33:4d:5c:60:66:99:3d:98:01:87:a8:
d7:c9:6d:a3:63:8a:e6:88:46:f9:8b:2e:1e:3b:ee:21:bb:c2:
36:5c:08:80:bf:9e:63:d5:ad:ba:85:5a:e4:e5:a7:f8:ab:2f:
b7:22:78:fe:e9:83:45:fe:03:02:be:3f:ec:fd:26:3a:bc:2f:
62:f9:78:1e:66:31:38:7f:d7:41:5e:31:23:cf:78:0e:8b:3b:
74:b7:07:48:75:7d:85:84:5c:19:cc:2e:c0:aa:cf:4c:eb:94:
aa:75:74:81:65:e3:0f:e1:f6:2d:b3:88:db:18:c2:d4:9e:bb:
d7:48:a2:83:99:f3:f6:bd:65:d2:0f:b1:d8:6a:e1:e5:71:a7:
34:70:3f:da:c7:44:cd:03:aa:9c:bf:37:98:db:f2:e5:d5:c2:
0a:41:2b:fc:83:f4:23:bd:e3:b9:0e:4b:d7:3d:2c:40:de:d1:
02:9e:b6:dd:7b:f7:ef:4d:33:c0:84:c6:32:d2:ad:6c:5d:73:
10:9e:bb:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNUmlIgXE7bGpNXign4vfiHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwYTdmY2JlNTkzMTRjMzcyYjY4ZjIzMjIyMzgyOGIxZTMz
YTAzZWMwHhcNMjQxMTIyMTYwMDE5WhcNMjQxMTIzMTYwMDE5WjAzMTEwLwYDVQQD
EyhjMGEzN2YxZDBlNjM5YTEzYTc5Nzc0ZTliMDIxYWI5Nzg1ZTk5NDc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwPbK80wP4aHXQkV/guDqdKVkDaqN
6YTYv72IjdMFNrVwizoXmSsWlA318W8HwFPjcVmx8yJhwJYtzpq9DqSLfI18vxt8
EvhewT6Gljn0SZqilDc0bdgRoxLgY8rDkJ74OSaNEijxEgoeHPlSOedLZ3ETk1JW
MpXJsdkXdra96DWXmqxEJ+hqZ/kKNKaAc34szlIVSnR5Tyc0NIcgxq4dHRFjVigU
lTmyroECeMdahE2ksCgYZ6+jsFT9sqFY3S//pLB7uViW5SxurOtoTwaMKjZbLzAU
7ed1JP8OrgsS/skHNuN7Q9xYEvQGGj5FiLSh7MpukVjm8p+YinFJcAS8QwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMCjfx0OY5oTp5d06bAhq5eF6ZR5MB8GA1UdIwQY
MBaAFCCn/L5ZMUw3K2jyMiI4KLHjOgPsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUtmOHZsa3hURGNyYVBJeUlqZ29zZU02QS13LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9jMzk4OGUtODY1NC00MzExLTgyOTIt
NDI2MDM5Nzg4OTE5LzEvSUtmOHZsa3hURGNyYVBJeUlqZ29zZU02QS13Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9jMzk4OGUtODY1NC00MzExLTgyOTItNDI2MDM5Nzg4OTE5
LzEvSUtmOHZsa3hURGNyYVBJeUlqZ29zZU02QS13LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqp0KtjAd
Dso0jSdMSqFx8H0fyJ1BqZBrlln6OD8q5Kenb6XWDrgcw2cILUtb+VREtnSe/+Nd
ppl6jDYyvDNNXGBmmT2YAYeo18lto2OK5ohG+YsuHjvuIbvCNlwIgL+eY9WtuoVa
5OWn+KsvtyJ4/umDRf4DAr4/7P0mOrwvYvl4HmYxOH/XQV4xI894Dos7dLcHSHV9
hYRcGcwuwKrPTOuUqnV0gWXjD+H2LbOI2xjC1J6710iig5nz9r1l0g+x2Grh5XGn
NHA/2sdEzQOqnL83mNvy5dXCCkEr/IP0I73juQ5L1z0sQN7RAp623Xv3700zwITG
MtKtbF1zEJ67Mw==
-----END CERTIFICATE-----
Generated at Sat Nov 23 02:10:10 2024 by rpki-client on console-ams.rpki-client.org