Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
File: fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft (raw, json)
Hash identifier: qm4winODQyoOKD6duInyigmq9mGbjckuSgPtVVlxZEA=
Subject key identifier: AF:D5:71:94:EA:A5:DE:9F:4E:B8:45:E1:7C:F1:E0:9E:A2:86:46:3D
Authority key identifier: 7E:C6:10:D2:15:D3:89:13:42:BC:32:87:2A:50:F4:D0:CF:A9:DC:9F
Certificate issuer: /CN=7ec610d215d3891342bc32872a50f4d0cfa9dc9f
Certificate serial: 0193579BE31F3A67AA8319D4E9792436754F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fsYQ0hXTiRNCvDKHKlD00M-p3J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
Manifest number: 136E
Signing time: Sat 23 Nov 2024 06:00:54 +0000
Manifest this update: Sat 23 Nov 2024 06:00:54 +0000
Manifest next update: Sun 24 Nov 2024 06:00:54 +0000
Files and hashes: 1: dawXr6G8e6UzbpgxY9gVgXct-Io.roa (hash: BunXSxBJMMtmtiU0GNFk8sLjO0cdkhUkhLngVYj4NpU=)
2: fsYQ0hXTiRNCvDKHKlD00M-p3J8.crl (hash: q8e2ErYsaxObkLEnnuYL3eAUPQXVPzf3Ump7YR7sAN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
rsync://rpki.ripe.net/repository/DEFAULT/fsYQ0hXTiRNCvDKHKlD00M-p3J8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:e3:1f:3a:67:aa:83:19:d4:e9:79:24:36:75:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ec610d215d3891342bc32872a50f4d0cfa9dc9f
Validity
Not Before: Nov 23 06:00:54 2024 GMT
Not After : Nov 24 06:00:54 2024 GMT
Subject: CN=afd57194eaa5de9f4eb845e17cf1e09ea286463d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:2a:cb:bf:1f:cc:ee:4d:35:09:89:65:c7:c1:
86:27:be:df:09:8b:25:23:20:86:6f:dc:6d:b8:12:
6c:f0:ac:b4:51:62:fa:15:8c:4e:c4:0c:57:f0:26:
48:5a:33:14:75:f4:71:32:cf:a4:6e:1d:de:44:59:
ad:1c:cf:79:02:9e:c1:ae:85:9d:5d:24:f1:cc:04:
63:f7:26:a1:d0:d4:e9:53:30:d7:fe:15:f9:a4:cb:
8c:6d:16:16:bb:b6:c5:e2:2b:c0:4d:3c:19:22:c4:
e3:9b:60:f0:b5:d6:e0:8b:99:c2:9e:30:6c:d7:d4:
fe:93:3a:a5:a0:77:5f:0f:7f:e1:a3:20:db:d5:d0:
e5:bb:ce:b1:2c:99:75:c8:d3:15:18:fe:8d:80:f6:
30:b5:4d:42:e5:f5:39:bb:f7:93:de:88:37:b3:bb:
58:ad:84:34:6f:b3:b9:71:cf:3a:31:0e:98:45:21:
29:f7:a3:f4:6f:a3:f1:4c:18:34:86:d0:cd:d1:9f:
51:8b:99:de:cb:a9:62:b8:49:2d:b6:24:f8:cf:49:
13:10:ba:3d:ef:10:43:50:8d:40:b5:fb:19:1e:03:
f8:9b:c1:d5:d8:20:62:a9:0e:36:bf:20:eb:b5:af:
15:f6:cf:38:9a:3d:08:f7:cc:11:eb:83:28:7a:9b:
84:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:D5:71:94:EA:A5:DE:9F:4E:B8:45:E1:7C:F1:E0:9E:A2:86:46:3D
X509v3 Authority Key Identifier:
keyid:7E:C6:10:D2:15:D3:89:13:42:BC:32:87:2A:50:F4:D0:CF:A9:DC:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fsYQ0hXTiRNCvDKHKlD00M-p3J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:08:32:87:ac:d9:92:2a:01:cd:4e:03:f1:79:bd:6c:28:26:
bf:c3:8e:6d:18:65:f6:50:d8:5f:f2:40:39:7b:1b:c1:64:ea:
67:2b:e0:28:a4:34:c9:e1:88:50:76:9b:f0:21:80:83:03:22:
de:be:bd:11:e5:75:55:f2:1f:68:20:ab:66:e3:bf:c1:69:fd:
77:7b:de:cd:bb:ab:4c:5b:9c:b8:ab:f2:c5:91:39:3e:32:b3:
7c:20:29:26:e3:c2:49:14:8d:30:1f:44:fd:9d:4c:da:08:f0:
2d:6d:da:01:36:10:75:11:6a:ec:53:8f:e7:24:93:81:e6:93:
da:1e:9e:b6:1b:d7:b1:df:b1:a3:be:ee:a8:e6:36:8c:91:92:
da:63:9a:6c:5c:ca:54:d9:37:5f:30:44:d8:05:c0:6b:1e:e6:
b5:cd:c2:d9:2d:d1:d4:01:fa:e8:bf:48:da:8a:02:20:17:3b:
6a:c4:8d:af:12:fa:03:ce:97:47:f3:30:35:e4:42:22:69:c2:
03:7d:77:23:1f:d3:36:f1:79:44:f2:01:84:c5:91:d5:62:ee:
66:23:9e:9c:f8:b4:ef:7d:17:0d:5e:d5:b8:78:b6:a9:59:fa:
8a:27:d9:df:91:83:43:ca:a9:75:ec:76:f7:41:36:05:84:8f:
8d:c8:92:05
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNXm+MfOmeqgxnU6XkkNnVPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdlYzYxMGQyMTVkMzg5MTM0MmJjMzI4NzJhNTBmNGQwY2Zh
OWRjOWYwHhcNMjQxMTIzMDYwMDU0WhcNMjQxMTI0MDYwMDU0WjAzMTEwLwYDVQQD
EyhhZmQ1NzE5NGVhYTVkZTlmNGViODQ1ZTE3Y2YxZTA5ZWEyODY0NjNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnSrLvx/M7k01CYllx8GGJ77fCYsl
IyCGb9xtuBJs8Ky0UWL6FYxOxAxX8CZIWjMUdfRxMs+kbh3eRFmtHM95Ap7BroWd
XSTxzARj9yah0NTpUzDX/hX5pMuMbRYWu7bF4ivATTwZIsTjm2Dwtdbgi5nCnjBs
19T+kzqloHdfD3/hoyDb1dDlu86xLJl1yNMVGP6NgPYwtU1C5fU5u/eT3og3s7tY
rYQ0b7O5cc86MQ6YRSEp96P0b6PxTBg0htDN0Z9Ri5ney6liuEkttiT4z0kTELo9
7xBDUI1AtfsZHgP4m8HV2CBiqQ42vyDrta8V9s84mj0I98wR64MoepuEgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK/VcZTqpd6fTrhF4Xzx4J6ihkY9MB8GA1UdIwQY
MBaAFH7GENIV04kTQrwyhypQ9NDPqdyfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZnNZUTBoWFRpUk5DdkRLSEtsRDAwTS1wM0o4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS8yMjkxMWMtY2U1MS00MzhiLTg2Y2Yt
ZTg1NjYxM2QyYjEwLzEvZnNZUTBoWFRpUk5DdkRLSEtsRDAwTS1wM0o4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS8yMjkxMWMtY2U1MS00MzhiLTg2Y2YtZTg1NjYxM2QyYjEw
LzEvZnNZUTBoWFRpUk5DdkRLSEtsRDAwTS1wM0o4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjAgyh6zZ
kioBzU4D8Xm9bCgmv8OObRhl9lDYX/JAOXsbwWTqZyvgKKQ0yeGIUHab8CGAgwMi
3r69EeV1VfIfaCCrZuO/wWn9d3vezburTFucuKvyxZE5PjKzfCApJuPCSRSNMB9E
/Z1M2gjwLW3aATYQdRFq7FOP5ySTgeaT2h6ethvXsd+xo77uqOY2jJGS2mOabFzK
VNk3XzBE2AXAax7mtc3C2S3R1AH66L9I2ooCIBc7asSNrxL6A86XR/MwNeRCImnC
A313Ix/TNvF5RPIBhMWR1WLuZiOenPi0730XDV7VuHi2qVn6iifZ35GDQ8qpdex2
90E2BYSPjciSBQ==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:03:24 2024 by rpki-client on console-fra.rpki-client.org