Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft
File: OCvsQ90a_pemT1brhUx58WP6TuY.mft (raw, json)
Hash identifier: r8WeFhWbLzp46c3AEKIeaKjMM1OIQbhRGjqsaEYLrf4=
Subject key identifier: 19:7A:C0:A9:73:DA:10:66:41:53:A9:21:56:D9:AD:BE:55:48:B3:C9
Authority key identifier: 38:2B:EC:43:DD:1A:FE:97:A6:4F:56:EB:85:4C:79:F1:63:FA:4E:E6
Certificate issuer: /CN=382bec43dd1afe97a64f56eb854c79f163fa4ee6
Certificate serial: 019356893872D465693F29433676998DBCCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCvsQ90a_pemT1brhUx58WP6TuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft
Manifest number: 1373
Signing time: Sat 23 Nov 2024 01:00:53 +0000
Manifest this update: Sat 23 Nov 2024 01:00:53 +0000
Manifest next update: Sun 24 Nov 2024 01:00:53 +0000
Files and hashes: 1: OCvsQ90a_pemT1brhUx58WP6TuY.crl (hash: uof4lnt2r0zrg1pIiGcfIHb5oytc2Njz38omSXAZnxU=)
2: d7hgQlQQYvjdxFPxW7N64DDsSLA.roa (hash: hMMCmf8IXi/ZR7a7Wns0G31ni8oxu6ufD9Rg139pw14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCvsQ90a_pemT1brhUx58WP6TuY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:38:72:d4:65:69:3f:29:43:36:76:99:8d:bc:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382bec43dd1afe97a64f56eb854c79f163fa4ee6
Validity
Not Before: Nov 23 01:00:53 2024 GMT
Not After : Nov 24 01:00:53 2024 GMT
Subject: CN=197ac0a973da10664153a92156d9adbe5548b3c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:97:07:12:b7:11:23:3f:c4:0b:ad:cb:cb:a0:
0f:28:ff:76:d6:45:52:a4:e5:fc:51:d1:cb:93:e9:
30:b9:33:ef:f2:92:1c:9a:4f:4a:c8:14:5f:93:55:
2f:ea:49:fe:fd:d0:42:fa:fb:29:d9:7f:d5:e2:34:
4b:14:d7:ce:2c:f3:a5:f6:f1:1f:ee:13:93:de:4a:
42:88:af:2b:21:6a:1e:05:54:2c:37:a5:fa:e7:87:
23:18:f1:f4:c3:6e:51:8d:30:79:99:1d:9f:9c:64:
ca:1a:f8:e3:74:e6:84:19:28:9a:5d:e9:da:96:15:
04:53:e0:1b:a5:88:98:9d:67:8b:5e:88:95:b6:74:
68:59:62:9d:b1:40:34:78:67:92:b1:bc:ca:93:14:
0b:d0:28:40:14:2d:f6:ec:d7:49:ba:96:c0:b8:d4:
24:ee:fb:b9:13:fc:19:4c:72:9b:a8:05:9a:7a:76:
df:a3:8a:97:63:2d:b5:85:cc:9c:d7:ec:84:47:ac:
46:49:af:e0:b0:1e:90:ef:df:ed:ab:de:ff:1a:84:
24:bd:69:91:8f:fd:73:da:82:45:86:22:b4:a7:49:
6f:09:f1:f0:c1:96:15:78:ce:47:dc:86:f7:6e:70:
40:ae:a2:7a:6e:d2:f9:be:17:f4:78:39:10:60:2e:
c3:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:7A:C0:A9:73:DA:10:66:41:53:A9:21:56:D9:AD:BE:55:48:B3:C9
X509v3 Authority Key Identifier:
keyid:38:2B:EC:43:DD:1A:FE:97:A6:4F:56:EB:85:4C:79:F1:63:FA:4E:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCvsQ90a_pemT1brhUx58WP6TuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:04:f5:73:77:92:99:8e:9e:88:de:9c:c2:cd:19:44:74:59:
81:8c:82:ba:a1:94:67:20:46:55:78:8e:1e:88:c3:05:c5:b2:
a0:48:b6:9e:31:7c:bc:00:39:6c:3f:1d:1d:34:0d:b9:23:74:
d7:a6:71:72:59:8c:28:2c:9c:5b:3a:70:cd:5a:3b:08:6f:85:
f1:4c:28:23:8f:8c:07:8f:ba:05:63:04:ad:f5:5f:9e:67:9e:
80:4f:f2:a5:f2:df:d8:68:a3:73:b7:a6:7a:81:99:06:9e:3f:
06:d4:9f:b5:7b:72:84:4c:79:3f:fc:70:c5:49:63:0b:74:ff:
c1:ff:77:c0:00:53:20:43:9d:31:ee:f7:1a:73:5c:d9:19:73:
ba:a7:33:5d:77:1d:ee:83:83:a6:b6:be:83:8b:e9:30:28:95:
d5:04:54:d5:ba:0c:c6:11:a8:38:8b:1c:79:4c:89:90:80:2c:
74:97:6b:70:b4:2f:91:f8:8c:3c:70:18:d8:60:5c:7b:bb:53:
8c:96:15:0e:70:31:d8:eb:dd:c7:c1:48:72:61:a9:94:32:5e:
42:37:4e:0f:d9:74:bb:1e:0e:71:28:96:05:9d:25:b8:c7:94:
dc:a3:19:d0:7c:ee:ba:71:df:d7:68:33:90:95:1a:93:37:8a:
2f:3f:93:56
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNWiThy1GVpPylDNnaZjbzMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4MmJlYzQzZGQxYWZlOTdhNjRmNTZlYjg1NGM3OWYxNjNm
YTRlZTYwHhcNMjQxMTIzMDEwMDUzWhcNMjQxMTI0MDEwMDUzWjAzMTEwLwYDVQQD
EygxOTdhYzBhOTczZGExMDY2NDE1M2E5MjE1NmQ5YWRiZTU1NDhiM2M5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpcHErcRIz/EC63Ly6APKP921kVS
pOX8UdHLk+kwuTPv8pIcmk9KyBRfk1Uv6kn+/dBC+vsp2X/V4jRLFNfOLPOl9vEf
7hOT3kpCiK8rIWoeBVQsN6X654cjGPH0w25RjTB5mR2fnGTKGvjjdOaEGSiaXena
lhUEU+AbpYiYnWeLXoiVtnRoWWKdsUA0eGeSsbzKkxQL0ChAFC327NdJupbAuNQk
7vu5E/wZTHKbqAWaenbfo4qXYy21hcyc1+yER6xGSa/gsB6Q79/tq97/GoQkvWmR
j/1z2oJFhiK0p0lvCfHwwZYVeM5H3Ib3bnBArqJ6btL5vhf0eDkQYC7DmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBl6wKlz2hBmQVOpIVbZrb5VSLPJMB8GA1UdIwQY
MBaAFDgr7EPdGv6Xpk9W64VMefFj+k7mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0N2c1E5MGFfcGVtVDFicmhVeDU4V1A2VHVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9lMmE4ZjQtNzA2NS00NzRiLWEwM2Qt
Mjc1MDk3MTFlMzdmLzEvT0N2c1E5MGFfcGVtVDFicmhVeDU4V1A2VHVZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny9lMmE4ZjQtNzA2NS00NzRiLWEwM2QtMjc1MDk3MTFlMzdm
LzEvT0N2c1E5MGFfcGVtVDFicmhVeDU4V1A2VHVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABgT1c3eS
mY6eiN6cws0ZRHRZgYyCuqGUZyBGVXiOHojDBcWyoEi2njF8vAA5bD8dHTQNuSN0
16ZxclmMKCycWzpwzVo7CG+F8UwoI4+MB4+6BWMErfVfnmeegE/ypfLf2Gijc7em
eoGZBp4/BtSftXtyhEx5P/xwxUljC3T/wf93wABTIEOdMe73GnNc2RlzuqczXXcd
7oODpra+g4vpMCiV1QRU1boMxhGoOIsceUyJkIAsdJdrcLQvkfiMPHAY2GBce7tT
jJYVDnAx2Ovdx8FIcmGplDJeQjdOD9l0ux4OcSiWBZ0luMeU3KMZ0HzuunHf12gz
kJUakzeKLz+TVg==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:03:53 2024 by rpki-client on console-fra.rpki-client.org