Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
File: YmqokTLSpoTY0qGj9-QPIjRjbzg.mft (raw, json)
Hash identifier: rkhlUW84qq0LeEZ8TGUYORC153UPIO7PhiMdEhgC7aQ=
Subject key identifier: A4:AE:12:5B:6B:B4:4D:75:BE:D0:90:35:DA:97:EB:E8:7C:5A:3F:3B
Authority key identifier: 62:6A:A8:91:32:D2:A6:84:D8:D2:A1:A3:F7:E4:0F:22:34:63:6F:38
Certificate issuer: /CN=626aa89132d2a684d8d2a1a3f7e40f2234636f38
Certificate serial: 0193693412A0879E660271E39FE0BFF70C7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YmqokTLSpoTY0qGj9-QPIjRjbzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
Manifest number: 1156
Signing time: Tue 26 Nov 2024 16:00:40 +0000
Manifest this update: Tue 26 Nov 2024 16:00:40 +0000
Manifest next update: Wed 27 Nov 2024 16:00:40 +0000
Files and hashes: 1: YmqokTLSpoTY0qGj9-QPIjRjbzg.crl (hash: LWTPEqaTYgey1vV+lobqHl+lHwQMLoW4TpL77nJcv7M=)
2: mX4UyaDHEu_Yz_DNN-gMYgseEZM.roa (hash: yCd3Yu2QCwM8guGeye9CaM7s+WzKA7Tpit/vK58fCvk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YmqokTLSpoTY0qGj9-QPIjRjbzg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:34:12:a0:87:9e:66:02:71:e3:9f:e0:bf:f7:0c:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=626aa89132d2a684d8d2a1a3f7e40f2234636f38
Validity
Not Before: Nov 26 16:00:40 2024 GMT
Not After : Nov 27 16:00:40 2024 GMT
Subject: CN=a4ae125b6bb44d75bed09035da97ebe87c5a3f3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:4a:52:78:24:7f:8b:de:ae:90:56:04:c3:e4:
28:48:0f:c3:b4:27:54:cc:a5:a5:6f:4e:de:2c:9c:
72:d2:14:2c:6a:d3:1e:18:1f:9e:34:28:57:4b:47:
5a:13:f2:a8:aa:bc:e7:fb:5f:ea:0e:13:48:86:15:
ab:c1:f6:68:ec:49:11:d7:77:19:82:8f:c3:d9:1e:
12:f2:55:ea:6d:86:24:db:3b:77:56:8f:11:55:06:
7f:12:7b:2e:67:95:f4:73:98:8a:3d:8b:23:82:bb:
f3:6e:91:f2:4c:fa:a9:0d:3c:74:a3:cf:25:30:ec:
ee:d6:81:d7:6f:a3:a4:95:b9:3f:20:31:1e:75:c4:
01:73:7c:fd:d5:21:59:7c:86:2e:85:74:1c:b4:06:
90:e4:27:60:92:7a:f6:3d:2a:71:29:81:2b:26:11:
cc:7d:93:76:b7:19:3f:49:c3:86:7a:ed:b6:ac:d7:
86:3d:2a:6a:49:a9:1e:94:73:55:6e:93:21:af:bc:
c7:2e:12:57:58:37:76:a5:93:d7:ad:90:f8:f2:80:
7d:e4:27:b1:8d:d9:95:7f:9f:94:28:e8:9f:96:f3:
8a:14:8b:88:ea:37:8b:af:ef:83:ec:0f:ab:a6:71:
3d:cc:c9:d3:d8:da:86:e4:3a:be:ac:1a:85:20:5e:
65:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:AE:12:5B:6B:B4:4D:75:BE:D0:90:35:DA:97:EB:E8:7C:5A:3F:3B
X509v3 Authority Key Identifier:
keyid:62:6A:A8:91:32:D2:A6:84:D8:D2:A1:A3:F7:E4:0F:22:34:63:6F:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YmqokTLSpoTY0qGj9-QPIjRjbzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:65:b0:2e:54:cd:90:9f:37:6d:f8:94:c9:7f:7d:3c:99:46:
5d:3e:b2:20:cc:cc:10:f8:41:b7:3b:02:00:51:ae:6c:fc:2d:
de:c7:4c:8a:71:bd:db:99:b1:33:ba:2f:78:37:74:a5:27:12:
f5:71:73:99:44:c8:d6:76:2f:80:2c:57:28:97:2f:4f:6c:c0:
2f:63:e1:9a:d8:9d:ea:5c:4c:05:f1:82:d9:9f:1b:c3:55:21:
76:13:6a:89:c8:f8:af:a8:1b:bf:b9:f0:26:49:ff:5c:2c:e2:
9e:8d:d8:21:ca:12:03:65:78:e0:34:c0:b1:d3:93:49:f4:2e:
7e:b7:f5:ee:c4:a5:55:20:41:2f:4f:5b:ea:68:88:aa:72:03:
b1:b4:54:19:a3:31:08:05:a7:13:45:1c:85:70:06:23:dc:3e:
5c:a5:0c:07:46:39:1f:b2:71:60:1c:bf:e1:12:6c:7e:93:6e:
54:69:23:35:d5:c2:99:7c:13:1d:8b:b2:30:b7:88:64:78:f1:
0c:ed:a2:76:e3:3e:05:b9:3f:84:24:9f:6c:04:b4:3a:b5:1c:
1f:80:e2:05:9b:93:5a:bb:49:57:97:f6:d5:62:19:2f:82:4a:
68:13:11:2c:c4:98:25:49:4d:e3:4c:1b:b9:3e:ed:22:dc:6b:
15:2f:5f:56
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNpNBKgh55mAnHjn+C/9wx+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyNmFhODkxMzJkMmE2ODRkOGQyYTFhM2Y3ZTQwZjIyMzQ2
MzZmMzgwHhcNMjQxMTI2MTYwMDQwWhcNMjQxMTI3MTYwMDQwWjAzMTEwLwYDVQQD
EyhhNGFlMTI1YjZiYjQ0ZDc1YmVkMDkwMzVkYTk3ZWJlODdjNWEzZjNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4UpSeCR/i96ukFYEw+QoSA/DtCdU
zKWlb07eLJxy0hQsatMeGB+eNChXS0daE/Koqrzn+1/qDhNIhhWrwfZo7EkR13cZ
go/D2R4S8lXqbYYk2zt3Vo8RVQZ/EnsuZ5X0c5iKPYsjgrvzbpHyTPqpDTx0o88l
MOzu1oHXb6Oklbk/IDEedcQBc3z91SFZfIYuhXQctAaQ5Cdgknr2PSpxKYErJhHM
fZN2txk/ScOGeu22rNeGPSpqSakelHNVbpMhr7zHLhJXWDd2pZPXrZD48oB95Cex
jdmVf5+UKOiflvOKFIuI6jeLr++D7A+rpnE9zMnT2NqG5Dq+rBqFIF5lTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKSuEltrtE11vtCQNdqX6+h8Wj87MB8GA1UdIwQY
MBaAFGJqqJEy0qaE2NKho/fkDyI0Y284MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWW1xb2tUTFNwb1RZMHFHajktUVBJalJqYnpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC80Y2MwYTgtZWM0NC00OWRkLWEzZTIt
MjkyNmZjNWY2MWI3LzEvWW1xb2tUTFNwb1RZMHFHajktUVBJalJqYnpnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC80Y2MwYTgtZWM0NC00OWRkLWEzZTItMjkyNmZjNWY2MWI3
LzEvWW1xb2tUTFNwb1RZMHFHajktUVBJalJqYnpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANGWwLlTN
kJ83bfiUyX99PJlGXT6yIMzMEPhBtzsCAFGubPwt3sdMinG925mxM7oveDd0pScS
9XFzmUTI1nYvgCxXKJcvT2zAL2Phmtid6lxMBfGC2Z8bw1UhdhNqicj4r6gbv7nw
Jkn/XCzino3YIcoSA2V44DTAsdOTSfQufrf17sSlVSBBL09b6miIqnIDsbRUGaMx
CAWnE0UchXAGI9w+XKUMB0Y5H7JxYBy/4RJsfpNuVGkjNdXCmXwTHYuyMLeIZHjx
DO2iduM+Bbk/hCSfbAS0OrUcH4DiBZuTWrtJV5f21WIZL4JKaBMRLMSYJUlN40wb
uT7tItxrFS9fVg==
-----END CERTIFICATE-----
Generated at Tue Nov 26 20:00:13 2024 by rpki-client on console-ams.rpki-client.org