Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
File: S21-pBAzg38IwoxHQphLgrj0Q98.mft (raw, json)
Hash identifier: TgC0gqKD/pXxtKjQgBLC4h+3rFFYonKbmneWcpU7X38=
Subject key identifier: 94:81:70:61:1A:30:DD:DA:71:B2:77:96:97:D7:28:CD:A6:5E:64:5F
Authority key identifier: 4B:6D:7E:A4:10:33:83:7F:08:C2:8C:47:42:98:4B:82:B8:F4:43:DF
Certificate issuer: /CN=4b6d7ea41033837f08c28c4742984b82b8f443df
Certificate serial: 019369D94F84C767429E2E9D62B3F66E089C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S21-pBAzg38IwoxHQphLgrj0Q98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
Manifest number: 0FAB
Signing time: Tue 26 Nov 2024 19:01:09 +0000
Manifest this update: Tue 26 Nov 2024 19:01:09 +0000
Manifest next update: Wed 27 Nov 2024 19:01:09 +0000
Files and hashes: 1: S21-pBAzg38IwoxHQphLgrj0Q98.crl (hash: LQ3kfBdTG5//dat2qKq3B5MLwITFHS9hpE6Q+KMJJI8=)
2: cJBbl6OHoE3JIIQCxeTJWmfo8FA.roa (hash: 8c+K2QRfSnU/66TRy7gXg26zvxbotz8QrSWZ+ztDMWs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
rsync://rpki.ripe.net/repository/DEFAULT/S21-pBAzg38IwoxHQphLgrj0Q98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:d9:4f:84:c7:67:42:9e:2e:9d:62:b3:f6:6e:08:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b6d7ea41033837f08c28c4742984b82b8f443df
Validity
Not Before: Nov 26 19:01:09 2024 GMT
Not After : Nov 27 19:01:09 2024 GMT
Subject: CN=948170611a30ddda71b2779697d728cda65e645f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:47:d9:9d:d0:cd:e3:7a:e2:66:8c:2a:51:b8:
62:b5:6e:86:d2:c5:ec:96:1b:1f:00:59:a1:c0:21:
b0:4c:70:ca:ee:87:d3:43:15:6a:5d:88:0d:7f:40:
d5:ba:d3:d0:fe:aa:9f:1b:a0:08:59:82:f4:95:c6:
b0:7f:3c:d3:51:7f:f8:33:f2:74:14:20:d8:36:3a:
05:38:b8:51:bc:8a:5f:15:c1:f4:8f:98:96:d6:76:
65:73:4f:49:4b:79:aa:b4:e9:d2:3e:61:90:ad:b7:
00:d9:b5:2f:1e:a0:a3:06:26:61:ab:35:c7:62:64:
ed:88:9a:c5:52:18:66:66:07:c6:d6:8e:bd:a3:ef:
cf:22:c8:0e:f6:52:8a:7b:1e:fc:9d:84:ce:99:c4:
ce:cf:df:dd:9a:2e:6a:64:c1:9b:86:3c:30:69:78:
07:8b:75:95:7e:c7:9d:52:57:c1:b9:33:22:42:30:
74:e8:94:16:e9:c2:d3:a3:ac:47:6c:5b:b9:2e:73:
c9:47:09:ca:82:3b:ea:f9:f0:42:86:12:9a:56:78:
9b:c5:46:39:1a:58:c5:9d:60:1f:f9:f2:a5:7f:bb:
41:1d:40:97:d9:44:8e:3b:c3:a4:e6:ba:11:b8:ed:
87:1b:a7:80:fa:da:e6:f2:42:28:1c:62:c0:79:99:
41:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:81:70:61:1A:30:DD:DA:71:B2:77:96:97:D7:28:CD:A6:5E:64:5F
X509v3 Authority Key Identifier:
keyid:4B:6D:7E:A4:10:33:83:7F:08:C2:8C:47:42:98:4B:82:B8:F4:43:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S21-pBAzg38IwoxHQphLgrj0Q98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:9d:d6:c0:77:07:b8:8d:81:32:37:13:2c:68:10:13:47:1b:
03:1d:d1:f2:82:fa:df:0b:0b:b8:7d:40:56:17:1c:35:7e:e9:
76:ad:6e:54:90:1c:25:d3:32:bb:03:78:b4:71:8b:b3:e0:08:
ce:7f:c8:94:82:27:cf:b8:87:47:d0:2c:2e:39:14:90:9b:86:
52:61:6e:ca:0b:0d:f1:88:be:57:5f:08:84:8a:a7:46:78:71:
ff:66:fc:9a:74:e7:13:f4:87:f6:93:6d:c0:6c:34:b8:96:95:
ab:6c:cd:c0:e7:83:4b:68:40:57:39:7f:03:0a:5f:f8:91:88:
70:4a:01:4e:8f:d4:e2:ed:e8:25:75:db:fe:d7:85:aa:36:ae:
a0:a1:03:29:01:bb:18:c9:dc:e2:42:51:92:2f:aa:1a:54:c8:
65:cd:78:81:53:c8:e8:97:6d:c4:9b:f2:18:d5:91:87:42:19:
76:1d:f0:0f:e9:c5:4b:b6:a3:15:5d:73:3c:3c:58:50:13:22:
eb:2d:d1:42:74:67:4e:8f:80:b4:de:11:3e:58:17:63:77:87:
71:ad:ea:f2:05:3b:5a:aa:61:c7:77:43:4c:82:3a:17:dd:d2:
d4:56:33:85:05:89:fc:40:e7:fc:2b:70:57:27:f6:44:b1:67:
2e:48:f8:59
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNp2U+Ex2dCni6dYrP2bgicMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiNmQ3ZWE0MTAzMzgzN2YwOGMyOGM0NzQyOTg0YjgyYjhm
NDQzZGYwHhcNMjQxMTI2MTkwMTA5WhcNMjQxMTI3MTkwMTA5WjAzMTEwLwYDVQQD
Eyg5NDgxNzA2MTFhMzBkZGRhNzFiMjc3OTY5N2Q3MjhjZGE2NWU2NDVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2UfZndDN43riZowqUbhitW6G0sXs
lhsfAFmhwCGwTHDK7ofTQxVqXYgNf0DVutPQ/qqfG6AIWYL0lcawfzzTUX/4M/J0
FCDYNjoFOLhRvIpfFcH0j5iW1nZlc09JS3mqtOnSPmGQrbcA2bUvHqCjBiZhqzXH
YmTtiJrFUhhmZgfG1o69o+/PIsgO9lKKex78nYTOmcTOz9/dmi5qZMGbhjwwaXgH
i3WVfsedUlfBuTMiQjB06JQW6cLTo6xHbFu5LnPJRwnKgjvq+fBChhKaVnibxUY5
GljFnWAf+fKlf7tBHUCX2USOO8Ok5roRuO2HG6eA+trm8kIoHGLAeZlBFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJSBcGEaMN3acbJ3lpfXKM2mXmRfMB8GA1UdIwQY
MBaAFEttfqQQM4N/CMKMR0KYS4K49EPfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUzIxLXBCQXpnMzhJd294SFFwaExncmowUTk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8xZDA2ODEtZmUyMC00N2EzLTk0ZGYt
NWVlODcyMWMxY2ZjLzEvUzIxLXBCQXpnMzhJd294SFFwaExncmowUTk4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi8xZDA2ODEtZmUyMC00N2EzLTk0ZGYtNWVlODcyMWMxY2Zj
LzEvUzIxLXBCQXpnMzhJd294SFFwaExncmowUTk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcJ3WwHcH
uI2BMjcTLGgQE0cbAx3R8oL63wsLuH1AVhccNX7pdq1uVJAcJdMyuwN4tHGLs+AI
zn/IlIInz7iHR9AsLjkUkJuGUmFuygsN8Yi+V18IhIqnRnhx/2b8mnTnE/SH9pNt
wGw0uJaVq2zNwOeDS2hAVzl/Awpf+JGIcEoBTo/U4u3oJXXb/teFqjauoKEDKQG7
GMnc4kJRki+qGlTIZc14gVPI6JdtxJvyGNWRh0IZdh3wD+nFS7ajFV1zPDxYUBMi
6y3RQnRnTo+AtN4RPlgXY3eHca3q8gU7Wqphx3dDTII6F93S1FYzhQWJ/EDn/Ctw
Vyf2RLFnLkj4WQ==
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:24:36 2024 by rpki-client on console-ams.rpki-client.org