Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
File: kHb3fahBt7lCFbb6wtQaccIVFgE.mft (raw, json)
Hash identifier: hOnYnoR2VIdGUA+a87x0ysQtC9BEPpez3cagPI++z5w=
Subject key identifier: 5C:B8:07:9F:04:A6:A9:A8:E8:3E:04:B1:49:63:E9:99:69:0C:FF:9C
Authority key identifier: 90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
Certificate issuer: /CN=9076f77da841b7b94215b6fac2d41a71c2151601
Certificate serial: 01935651E9E4944AA32753D88CDCD6307AE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
Manifest number: 0D00
Signing time: Sat 23 Nov 2024 00:00:29 +0000
Manifest this update: Sat 23 Nov 2024 00:00:29 +0000
Manifest next update: Sun 24 Nov 2024 00:00:29 +0000
Files and hashes: 1: aMyatW8ijHQLIxlxVn2fZgMpzTI.roa (hash: J/LENkfq82htB6tvEMf6u4QE3Ek6E/+jDRNcvCKXUwo=)
2: kHb3fahBt7lCFbb6wtQaccIVFgE.crl (hash: YcLyWhNvSO6fNjf94uITaRNuVvRBPjNy8H4GHy79wAQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:51:e9:e4:94:4a:a3:27:53:d8:8c:dc:d6:30:7a:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9076f77da841b7b94215b6fac2d41a71c2151601
Validity
Not Before: Nov 23 00:00:29 2024 GMT
Not After : Nov 24 00:00:29 2024 GMT
Subject: CN=5cb8079f04a6a9a8e83e04b14963e999690cff9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:6c:59:0a:37:a6:82:30:28:a1:95:dc:66:47:
de:60:35:dc:42:b2:e3:cc:9c:c9:bb:87:aa:04:bf:
05:39:21:f2:36:99:99:7f:f2:98:78:fb:86:a2:43:
68:ba:0f:59:d7:1f:9f:d1:0e:3c:f0:a1:b2:b0:93:
e9:d2:6e:6e:0c:db:16:4d:3f:bb:ca:91:4e:3a:28:
02:dd:25:de:a5:4a:00:91:d6:1b:05:a6:05:2b:11:
0d:9e:e5:fc:c9:52:f3:c7:51:0a:49:49:49:f9:40:
3a:af:1a:cd:cf:64:86:ae:b7:fd:39:81:4b:c7:a0:
62:d7:6e:9e:29:23:c8:47:12:5a:42:8d:00:55:f8:
ef:6f:98:ea:f4:df:a3:58:bf:81:18:5e:60:e0:e8:
a3:48:d3:9b:3d:75:6f:c2:71:0a:06:8e:57:1c:09:
11:cc:fd:ad:9e:42:70:58:2c:bb:48:7f:ef:52:fe:
36:4b:c0:18:7b:ca:ff:29:3c:fa:c3:e0:d7:b6:27:
b0:19:9c:95:a1:43:08:dc:33:0b:f1:bb:3c:31:67:
27:32:13:7d:22:0e:96:80:cd:0a:ef:b3:16:7a:73:
85:cd:58:9b:13:30:81:c6:a2:a6:64:92:0b:d1:5e:
b6:68:e2:bd:e7:3b:30:a5:2a:47:6c:61:a9:52:20:
ee:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:B8:07:9F:04:A6:A9:A8:E8:3E:04:B1:49:63:E9:99:69:0C:FF:9C
X509v3 Authority Key Identifier:
keyid:90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:f7:78:d8:08:bd:f9:db:b4:7d:0d:df:94:6b:f4:cb:8a:f4:
3a:09:3d:6a:68:c2:09:42:7f:d7:f4:10:53:a2:a2:ec:9f:86:
b3:8e:e0:59:3b:8c:ae:3f:e3:80:89:a2:5a:2f:9b:3f:2a:45:
db:1a:5d:76:ac:b5:e8:83:24:09:49:f5:e4:51:98:40:33:3e:
64:97:af:fb:16:08:9d:ef:d4:c5:a3:47:6f:14:38:61:71:f4:
e4:1e:6a:60:22:52:1c:ad:cd:e4:3d:5a:8e:31:e6:c3:88:32:
d7:7c:d5:1e:cf:6a:74:d0:5a:74:f5:6a:4d:38:41:11:ef:7c:
6a:aa:8c:50:4a:fb:6c:0b:44:bf:85:13:07:0b:f4:09:1a:f8:
de:79:1c:fc:df:7f:1f:e3:d1:85:ae:51:92:05:1a:a1:7b:79:
3a:c8:8b:6c:f8:2d:bc:e6:4e:19:34:84:54:7d:17:f5:56:92:
17:d8:07:ad:7d:30:c4:8b:48:1d:84:f3:89:17:6c:3a:ac:aa:
de:fd:1c:5a:b3:7f:4c:1a:de:1f:88:40:72:06:2f:0d:47:76:
61:71:d8:56:62:13:ad:73:fc:13:98:7f:ff:36:e5:81:20:52:
c0:bc:e8:33:a2:60:88:bb:d9:46:12:98:d3:da:71:05:8b:f2:
9f:b7:bf:43
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNWUenklEqjJ1PYjNzWMHrgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwNzZmNzdkYTg0MWI3Yjk0MjE1YjZmYWMyZDQxYTcxYzIx
NTE2MDEwHhcNMjQxMTIzMDAwMDI5WhcNMjQxMTI0MDAwMDI5WjAzMTEwLwYDVQQD
Eyg1Y2I4MDc5ZjA0YTZhOWE4ZTgzZTA0YjE0OTYzZTk5OTY5MGNmZjljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl2xZCjemgjAooZXcZkfeYDXcQrLj
zJzJu4eqBL8FOSHyNpmZf/KYePuGokNoug9Z1x+f0Q488KGysJPp0m5uDNsWTT+7
ypFOOigC3SXepUoAkdYbBaYFKxENnuX8yVLzx1EKSUlJ+UA6rxrNz2SGrrf9OYFL
x6Bi126eKSPIRxJaQo0AVfjvb5jq9N+jWL+BGF5g4OijSNObPXVvwnEKBo5XHAkR
zP2tnkJwWCy7SH/vUv42S8AYe8r/KTz6w+DXtiewGZyVoUMI3DML8bs8MWcnMhN9
Ig6WgM0K77MWenOFzVibEzCBxqKmZJIL0V62aOK95zswpSpHbGGpUiDu2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFy4B58Epqmo6D4EsUlj6ZlpDP+cMB8GA1UdIwQY
MBaAFJB2932oQbe5QhW2+sLUGnHCFRYBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0hiM2ZhaEJ0N2xDRmJiNnd0UWFjY0lWRmdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9lMWQ2YjctNTU1Yy00ZDliLWFmZTEt
ZTYzY2U1NTM3MGViLzEva0hiM2ZhaEJ0N2xDRmJiNnd0UWFjY0lWRmdFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS9lMWQ2YjctNTU1Yy00ZDliLWFmZTEtZTYzY2U1NTM3MGVi
LzEva0hiM2ZhaEJ0N2xDRmJiNnd0UWFjY0lWRmdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHPd42Ai9
+du0fQ3flGv0y4r0Ogk9amjCCUJ/1/QQU6Ki7J+Gs47gWTuMrj/jgImiWi+bPypF
2xpddqy16IMkCUn15FGYQDM+ZJev+xYIne/UxaNHbxQ4YXH05B5qYCJSHK3N5D1a
jjHmw4gy13zVHs9qdNBadPVqTThBEe98aqqMUEr7bAtEv4UTBwv0CRr43nkc/N9/
H+PRha5RkgUaoXt5OsiLbPgtvOZOGTSEVH0X9VaSF9gHrX0wxItIHYTziRdsOqyq
3v0cWrN/TBreH4hAcgYvDUd2YXHYVmITrXP8E5h//zblgSBSwLzoM6JgiLvZRhKY
09pxBYvyn7e/Qw==
-----END CERTIFICATE-----
Generated at Sat Nov 23 02:18:32 2024 by rpki-client on console-ams.rpki-client.org