Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.mft
File: ICNzDgbEv7_6ypBeUxJldCwXirQ.mft (raw, json)
Hash identifier: TWbR/F33hH3XixU5ZybXEye+uMAHLxkp7HbICQpPWIs=
Subject key identifier: AD:2D:12:89:4E:78:CF:5F:E0:93:28:67:16:BC:D9:D4:D2:7E:60:F5
Authority key identifier: 20:23:73:0E:06:C4:BF:BF:FA:CA:90:5E:53:12:65:74:2C:17:8A:B4
Certificate issuer: /CN=2023730e06c4bfbffaca905e531265742c178ab4
Certificate serial: 01935689F48A85CF2375F9E5A531519D8307
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ICNzDgbEv7_6ypBeUxJldCwXirQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.mft
Manifest number: 0D45
Signing time: Sat 23 Nov 2024 01:01:41 +0000
Manifest this update: Sat 23 Nov 2024 01:01:41 +0000
Manifest next update: Sun 24 Nov 2024 01:01:41 +0000
Files and hashes: 1: ICNzDgbEv7_6ypBeUxJldCwXirQ.crl (hash: /X4wtVfhMTxXrIu2E9g0fo/NtSlov6SneLid8xfhffA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ICNzDgbEv7_6ypBeUxJldCwXirQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:f4:8a:85:cf:23:75:f9:e5:a5:31:51:9d:83:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2023730e06c4bfbffaca905e531265742c178ab4
Validity
Not Before: Nov 23 01:01:41 2024 GMT
Not After : Nov 24 01:01:41 2024 GMT
Subject: CN=ad2d12894e78cf5fe093286716bcd9d4d27e60f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5e:43:b7:51:3f:17:1c:75:0f:52:6b:8c:14:
df:73:75:ae:c1:79:ad:1e:c4:e1:96:29:23:18:b4:
55:4c:a4:6e:35:d8:f4:10:34:56:16:a1:0f:c4:c0:
e7:d0:b5:be:87:b5:fa:94:f8:dc:c2:a8:33:fd:91:
08:f2:66:64:5e:88:03:e2:cc:01:17:d1:a7:27:06:
b5:7c:b9:da:6f:ae:1d:4b:46:c3:86:2f:4b:83:4b:
04:d4:43:bc:ef:0c:b8:bd:ea:01:e4:a5:2f:28:c2:
eb:6e:94:73:3d:d5:b2:2e:d2:17:15:fb:25:ae:f6:
71:b6:c9:43:e1:5a:8e:85:e4:9a:10:db:91:c3:b7:
d4:dc:fc:ae:0d:14:27:71:3b:64:46:01:ff:ed:41:
e0:07:4a:dc:2e:59:c9:86:ce:3e:65:65:28:10:5b:
76:09:b1:bb:f8:03:d0:f2:fb:c5:62:2a:43:a0:cf:
9c:ea:cf:bd:ec:9f:3c:e4:6c:9a:9b:ca:50:6b:79:
25:01:47:f6:bb:da:21:27:fd:4e:5d:36:6e:80:74:
81:f9:f2:ed:ff:51:7e:f6:c6:10:53:d7:7c:f8:a8:
ca:3d:65:26:ed:aa:59:7b:15:48:76:81:fd:03:63:
6c:59:07:9b:73:a5:e2:90:cb:1c:54:a4:d9:3c:7b:
02:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:2D:12:89:4E:78:CF:5F:E0:93:28:67:16:BC:D9:D4:D2:7E:60:F5
X509v3 Authority Key Identifier:
keyid:20:23:73:0E:06:C4:BF:BF:FA:CA:90:5E:53:12:65:74:2C:17:8A:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ICNzDgbEv7_6ypBeUxJldCwXirQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:c0:6a:ad:f4:dd:5f:97:19:15:17:b3:8e:f2:cd:87:a1:8a:
e3:cb:ed:5f:80:61:15:e1:6c:90:a5:68:70:96:23:aa:9b:29:
66:48:ac:80:0c:96:bf:aa:3b:8f:75:27:fd:70:96:2f:74:37:
cc:2e:f2:af:a0:3c:4a:2c:a0:12:c5:8f:27:a9:53:55:19:ab:
6f:47:fa:ca:48:f5:9d:c0:92:4d:f2:e0:b4:fe:a5:c4:72:c6:
eb:89:9f:80:0d:ca:a8:2c:9c:31:ab:23:ab:20:66:67:72:7b:
18:df:77:f4:35:00:4d:0e:ec:ae:30:56:db:a7:89:a9:4d:7a:
ae:70:65:c6:c1:af:b7:a7:88:29:f2:1f:b9:48:b2:8a:f2:e4:
e7:37:fd:21:bb:8a:b4:d1:82:7e:ec:fa:5d:43:90:4f:4e:59:
50:2d:9a:93:18:47:3e:2e:a7:65:ce:70:5f:95:c4:70:56:9e:
00:55:1a:dc:c9:cb:87:c6:b5:30:52:8f:3f:1a:03:ba:34:ea:
25:f9:0f:f6:78:ca:18:f2:47:68:b2:f5:f9:61:66:64:c1:ed:
5b:a7:17:b4:4d:40:e5:a9:73:3d:9e:d8:82:27:04:10:73:e5:
1d:50:7a:0d:80:b0:a6:18:7d:46:34:18:60:e8:6a:fa:54:9b:
b8:a1:c0:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNWifSKhc8jdfnlpTFRnYMHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwMjM3MzBlMDZjNGJmYmZmYWNhOTA1ZTUzMTI2NTc0MmMx
NzhhYjQwHhcNMjQxMTIzMDEwMTQxWhcNMjQxMTI0MDEwMTQxWjAzMTEwLwYDVQQD
EyhhZDJkMTI4OTRlNzhjZjVmZTA5MzI4NjcxNmJjZDlkNGQyN2U2MGY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAol5Dt1E/Fxx1D1JrjBTfc3WuwXmt
HsThlikjGLRVTKRuNdj0EDRWFqEPxMDn0LW+h7X6lPjcwqgz/ZEI8mZkXogD4swB
F9GnJwa1fLnab64dS0bDhi9Lg0sE1EO87wy4veoB5KUvKMLrbpRzPdWyLtIXFfsl
rvZxtslD4VqOheSaENuRw7fU3PyuDRQncTtkRgH/7UHgB0rcLlnJhs4+ZWUoEFt2
CbG7+APQ8vvFYipDoM+c6s+97J885Gyam8pQa3klAUf2u9ohJ/1OXTZugHSB+fLt
/1F+9sYQU9d8+KjKPWUm7apZexVIdoH9A2NsWQebc6XikMscVKTZPHsCRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK0tEolOeM9f4JMoZxa82dTSfmD1MB8GA1UdIwQY
MBaAFCAjcw4GxL+/+sqQXlMSZXQsF4q0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUNOekRnYkV2N182eXBCZVV4SmxkQ3dYaXJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny80NWQ3YzEtYzRmMC00ODM1LWI0NjYt
YjAzMzViYTNlMGMyLzEvSUNOekRnYkV2N182eXBCZVV4SmxkQ3dYaXJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny80NWQ3YzEtYzRmMC00ODM1LWI0NjYtYjAzMzViYTNlMGMy
LzEvSUNOekRnYkV2N182eXBCZVV4SmxkQ3dYaXJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF8BqrfTd
X5cZFRezjvLNh6GK48vtX4BhFeFskKVocJYjqpspZkisgAyWv6o7j3Un/XCWL3Q3
zC7yr6A8SiygEsWPJ6lTVRmrb0f6ykj1ncCSTfLgtP6lxHLG64mfgA3KqCycMasj
qyBmZ3J7GN939DUATQ7srjBW26eJqU16rnBlxsGvt6eIKfIfuUiyivLk5zf9IbuK
tNGCfuz6XUOQT05ZUC2akxhHPi6nZc5wX5XEcFaeAFUa3MnLh8a1MFKPPxoDujTq
JfkP9njKGPJHaLL1+WFmZMHtW6cXtE1A5alzPZ7YgicEEHPlHVB6DYCwphh9RjQY
YOhq+lSbuKHANg==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:45:19 2024 by rpki-client on console-ams.rpki-client.org