Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
File: 0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft (raw, json)
Hash identifier: DTz6xKm113sjHnZRoxqV4nLfyUbQypHyRBeM27ZkW24=
Subject key identifier: B5:A2:70:2B:3A:E0:C7:55:FB:29:A4:BB:37:23:20:30:48:16:71:08
Authority key identifier: D2:91:74:12:52:BB:9C:4C:DA:80:04:7D:FB:01:CE:98:C2:19:D1:80
Certificate issuer: /CN=d291741252bb9c4cda80047dfb01ce98c219d180
Certificate serial: 019369DA5727A6B023B80D71A3EA6880076D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
Manifest number: 122E
Signing time: Tue 26 Nov 2024 19:02:16 +0000
Manifest this update: Tue 26 Nov 2024 19:02:16 +0000
Manifest next update: Wed 27 Nov 2024 19:02:16 +0000
Files and hashes: 1: 0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl (hash: wqi7d6VvsqMoAbgOBfBnPb1nxMNHbdSOOeUPVnD4Sak=)
2: CDl7IBW5vHz4RcYQ0RBwBJwTrLg.roa (hash: Rj3eF7o4FIID1b/689giQxGlm8LLhaP/Gzrffw8Ju08=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:da:57:27:a6:b0:23:b8:0d:71:a3:ea:68:80:07:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d291741252bb9c4cda80047dfb01ce98c219d180
Validity
Not Before: Nov 26 19:02:16 2024 GMT
Not After : Nov 27 19:02:16 2024 GMT
Subject: CN=b5a2702b3ae0c755fb29a4bb3723203048167108
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c8:be:40:49:08:60:15:bf:aa:89:12:4d:07:
79:14:3e:2b:69:73:dc:86:7b:cd:8e:3c:21:6d:aa:
b0:52:b8:38:35:4d:9b:e8:a1:dc:54:08:be:63:79:
43:23:2d:7e:d6:b3:64:1d:44:66:bd:2c:1c:27:dd:
26:78:43:22:7d:83:6b:ae:1d:bd:46:46:75:11:83:
c4:02:77:0d:8d:73:f2:ec:ee:82:3b:22:c1:a0:12:
11:6c:5d:a8:56:51:7f:70:78:5c:49:4c:a7:2f:82:
2b:9b:59:ef:f1:c6:2e:59:19:f2:f8:bb:c7:ba:78:
35:69:bf:fc:e4:ae:0f:49:2f:84:c3:ba:9a:56:4f:
2a:c7:b7:04:a2:70:96:e7:1d:0c:a8:da:8d:17:88:
68:42:64:a0:8e:97:2e:56:dd:05:86:da:56:c4:f8:
33:36:9f:1e:00:05:b8:52:aa:bc:56:2f:e9:ee:8c:
9c:96:9c:47:19:4e:d0:d5:e6:94:2a:e0:a8:12:11:
cc:1c:89:b1:66:af:a4:e0:ba:ee:7c:df:21:42:50:
39:c2:9e:df:82:e6:3c:88:1a:1a:dd:08:f1:58:66:
b2:82:47:a8:32:b4:7e:3d:89:87:91:49:72:e6:86:
d4:02:0e:31:66:ff:da:fc:38:2b:c5:88:31:28:04:
8b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:A2:70:2B:3A:E0:C7:55:FB:29:A4:BB:37:23:20:30:48:16:71:08
X509v3 Authority Key Identifier:
keyid:D2:91:74:12:52:BB:9C:4C:DA:80:04:7D:FB:01:CE:98:C2:19:D1:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:d2:91:7b:b4:f4:51:8f:e9:43:fa:03:09:d4:c0:9a:f4:1b:
82:1d:db:b0:51:a9:fd:c2:f1:f6:37:bd:e6:84:d0:21:cd:52:
ca:83:85:58:99:a9:92:43:8d:f2:1e:2c:11:4b:e6:fb:65:bf:
88:6d:71:d7:22:22:ac:48:a9:5d:b4:73:c9:08:83:63:6b:16:
fb:c6:92:1e:75:dc:af:53:40:68:aa:92:27:f1:7c:f1:7f:e5:
d6:c5:4c:39:6f:ae:f4:99:7f:11:07:bc:7f:cc:0d:5b:76:40:
68:54:5c:36:ee:fa:59:74:f3:70:39:a2:3b:55:50:b5:f8:6b:
3d:80:95:60:e7:24:56:c6:b9:0d:18:52:15:18:25:7c:75:23:
f9:bf:bd:33:ea:57:2e:70:62:d3:e2:b7:a5:3a:2d:10:0d:cd:
d4:f0:63:f3:b1:b1:6c:f3:1c:40:4c:d3:cf:54:62:10:37:07:
cb:1d:78:e0:65:87:1c:ad:dd:74:88:08:ff:d8:c4:0f:64:85:
57:82:17:a6:09:da:70:c2:a8:d2:53:7d:ea:51:1a:83:9d:a0:
58:b1:a4:19:9e:43:14:c9:cd:e4:47:58:b9:fb:39:ee:c4:cd:
28:3d:60:96:94:1e:3e:9e:ab:cd:db:05:0c:ff:ee:c1:0c:4c:
0a:0e:e8:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNp2lcnprAjuA1xo+pogAdtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyOTE3NDEyNTJiYjljNGNkYTgwMDQ3ZGZiMDFjZTk4YzIx
OWQxODAwHhcNMjQxMTI2MTkwMjE2WhcNMjQxMTI3MTkwMjE2WjAzMTEwLwYDVQQD
EyhiNWEyNzAyYjNhZTBjNzU1ZmIyOWE0YmIzNzIzMjAzMDQ4MTY3MTA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtci+QEkIYBW/qokSTQd5FD4raXPc
hnvNjjwhbaqwUrg4NU2b6KHcVAi+Y3lDIy1+1rNkHURmvSwcJ90meEMifYNrrh29
RkZ1EYPEAncNjXPy7O6COyLBoBIRbF2oVlF/cHhcSUynL4Irm1nv8cYuWRny+LvH
ung1ab/85K4PSS+Ew7qaVk8qx7cEonCW5x0MqNqNF4hoQmSgjpcuVt0FhtpWxPgz
Np8eAAW4Uqq8Vi/p7oyclpxHGU7Q1eaUKuCoEhHMHImxZq+k4LrufN8hQlA5wp7f
guY8iBoa3QjxWGaygkeoMrR+PYmHkUly5obUAg4xZv/a/DgrxYgxKASLhwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLWicCs64MdV+ymkuzcjIDBIFnEIMB8GA1UdIwQY
MBaAFNKRdBJSu5xM2oAEffsBzpjCGdGAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHBGMEVsSzduRXphZ0FSOS13SE9tTUlaMFlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC8zYmE2ZmMtMmQ0OS00YWZmLTkyMjkt
NDhiOTU3MjY0YzI2LzEvMHBGMEVsSzduRXphZ0FSOS13SE9tTUlaMFlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC8zYmE2ZmMtMmQ0OS00YWZmLTkyMjktNDhiOTU3MjY0YzI2
LzEvMHBGMEVsSzduRXphZ0FSOS13SE9tTUlaMFlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMNKRe7T0
UY/pQ/oDCdTAmvQbgh3bsFGp/cLx9je95oTQIc1SyoOFWJmpkkON8h4sEUvm+2W/
iG1x1yIirEipXbRzyQiDY2sW+8aSHnXcr1NAaKqSJ/F88X/l1sVMOW+u9Jl/EQe8
f8wNW3ZAaFRcNu76WXTzcDmiO1VQtfhrPYCVYOckVsa5DRhSFRglfHUj+b+9M+pX
LnBi0+K3pTotEA3N1PBj87GxbPMcQEzTz1RiEDcHyx144GWHHK3ddIgI/9jED2SF
V4IXpgnacMKo0lN96lEag52gWLGkGZ5DFMnN5EdYufs57sTNKD1glpQePp6rzdsF
DP/uwQxMCg7oTw==
-----END CERTIFICATE-----
Generated at Tue Nov 26 22:23:13 2024 by rpki-client on console-ams.rpki-client.org