Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.mft
File: XcYkXKggiZ1-tBQDAsIQQbXbygY.mft (raw, json)
Hash identifier: KGWQCvmJ01zxB0FnFXU+PYAn8qvG3BsmLXk0D8puyS8=
Subject key identifier: B8:7B:33:B0:00:4F:18:34:A2:BA:42:16:5D:D8:BA:4F:A9:D9:47:82
Authority key identifier: 5D:C6:24:5C:A8:20:89:9D:7E:B4:14:03:02:C2:10:41:B5:DB:CA:06
Certificate issuer: /CN=5dc6245ca820899d7eb4140302c21041b5dbca06
Certificate serial: 019361B12D65C8E8D422405B0018A0621BEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XcYkXKggiZ1-tBQDAsIQQbXbygY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.mft
Manifest number: 0360
Signing time: Mon 25 Nov 2024 05:00:21 +0000
Manifest this update: Mon 25 Nov 2024 05:00:21 +0000
Manifest next update: Tue 26 Nov 2024 05:00:21 +0000
Files and hashes: 1: PprDH-ITPTQG6aRR9_M7SxKNP-U.roa (hash: 54Dp4UoE8rUL7/ha3ZCfBZiCWXoYUWUm36ynq9+ZNyc=)
2: XcYkXKggiZ1-tBQDAsIQQbXbygY.crl (hash: ifnmkJuxEMsUvHPCOKBBfSFAO44hUnncxF/j/2SIfds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XcYkXKggiZ1-tBQDAsIQQbXbygY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 05:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:61:b1:2d:65:c8:e8:d4:22:40:5b:00:18:a0:62:1b:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc6245ca820899d7eb4140302c21041b5dbca06
Validity
Not Before: Nov 25 05:00:21 2024 GMT
Not After : Nov 26 05:00:21 2024 GMT
Subject: CN=b87b33b0004f1834a2ba42165dd8ba4fa9d94782
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:49:b1:2b:17:b2:fe:b2:77:cc:f1:86:e9:2c:
5f:06:05:1c:f7:0f:9c:cc:e0:66:c7:ed:54:56:11:
ee:fd:9a:9c:3c:e6:51:74:c5:c2:36:4d:21:1f:1b:
d2:05:db:3b:a2:34:94:f9:84:68:ad:ab:07:61:f1:
0b:df:f1:ab:62:58:ae:8f:f2:81:0a:d1:cd:0b:18:
b9:6e:f9:5f:3b:95:fc:68:dd:24:de:9f:3d:fe:b8:
ae:cb:c6:7c:07:57:92:e3:aa:61:79:a1:d1:5c:cb:
f4:38:b1:ef:2f:13:af:d5:b6:2b:d3:11:e9:64:33:
3b:ef:69:c9:3b:d6:12:1a:eb:12:dd:08:22:6e:a8:
5c:3a:82:6e:b0:5b:5b:e5:16:88:55:aa:67:9d:07:
cf:b0:20:f1:47:71:8e:30:37:5e:b5:03:09:11:d8:
1e:b1:a4:c1:74:c4:90:93:b2:fa:69:b8:01:16:80:
e1:5c:73:d6:b6:f2:09:f5:76:a5:48:81:2c:7c:ea:
dd:d4:a0:0e:7c:42:7a:a5:13:ce:50:89:28:0f:d9:
25:a2:69:1b:af:de:ed:fc:ea:36:63:ed:3c:0f:e4:
0f:d1:a8:ed:71:26:69:db:1a:db:51:92:82:be:55:
e1:0b:77:53:94:55:04:dd:eb:a3:4b:da:58:b7:15:
95:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:7B:33:B0:00:4F:18:34:A2:BA:42:16:5D:D8:BA:4F:A9:D9:47:82
X509v3 Authority Key Identifier:
keyid:5D:C6:24:5C:A8:20:89:9D:7E:B4:14:03:02:C2:10:41:B5:DB:CA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XcYkXKggiZ1-tBQDAsIQQbXbygY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:79:28:ad:a0:dd:10:7f:e8:32:98:64:47:c2:a4:11:1d:6f:
6e:43:a4:f9:1a:12:e0:c8:dd:8a:46:3f:fd:3b:ca:a7:f3:25:
dc:e8:83:58:63:c9:fc:ea:c1:a1:52:5a:d3:b6:eb:89:66:5a:
ac:03:79:84:ac:4d:54:21:29:97:8b:74:44:c1:ea:2a:f0:b7:
5a:63:3f:88:7b:87:29:66:ad:c8:1f:b4:69:87:ae:01:7a:2e:
41:df:5b:b9:e1:11:a2:90:1b:b3:9f:62:4a:20:9d:58:4c:1b:
51:34:71:8c:35:47:9a:72:c0:7d:10:d5:38:ba:53:75:7f:57:
2e:4e:d8:3e:f9:2a:5e:c1:87:7e:56:09:fc:0b:99:1e:84:06:
69:27:c2:ba:b8:60:6b:b6:b7:9b:eb:4a:64:7e:98:fc:b6:47:
44:78:5c:0b:94:d5:7d:19:4f:ec:2e:2c:7b:d4:60:12:00:da:
1a:9b:44:1b:6f:f6:08:ae:f2:2b:fc:7a:3a:38:d0:fe:43:81:
5f:72:3f:78:6a:fb:62:dd:86:33:af:23:41:dc:0d:a1:17:92:
5e:db:d4:0f:86:04:54:bd:3f:2e:ff:8c:e0:f5:7d:68:3c:9f:
69:00:31:9e:4f:6e:00:cb:df:e7:f4:1f:69:49:29:50:69:a0:
e9:cb:64:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNhsS1lyOjUIkBbABigYhvsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkYzYyNDVjYTgyMDg5OWQ3ZWI0MTQwMzAyYzIxMDQxYjVk
YmNhMDYwHhcNMjQxMTI1MDUwMDIxWhcNMjQxMTI2MDUwMDIxWjAzMTEwLwYDVQQD
EyhiODdiMzNiMDAwNGYxODM0YTJiYTQyMTY1ZGQ4YmE0ZmE5ZDk0NzgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzkmxKxey/rJ3zPGG6SxfBgUc9w+c
zOBmx+1UVhHu/ZqcPOZRdMXCNk0hHxvSBds7ojSU+YRorasHYfEL3/GrYliuj/KB
CtHNCxi5bvlfO5X8aN0k3p89/riuy8Z8B1eS46pheaHRXMv0OLHvLxOv1bYr0xHp
ZDM772nJO9YSGusS3QgibqhcOoJusFtb5RaIVapnnQfPsCDxR3GOMDdetQMJEdge
saTBdMSQk7L6abgBFoDhXHPWtvIJ9XalSIEsfOrd1KAOfEJ6pRPOUIkoD9klomkb
r97t/Oo2Y+08D+QP0ajtcSZp2xrbUZKCvlXhC3dTlFUE3eujS9pYtxWVmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLh7M7AATxg0orpCFl3Yuk+p2UeCMB8GA1UdIwQY
MBaAFF3GJFyoIImdfrQUAwLCEEG128oGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGNZa1hLZ2dpWjEtdEJRREFzSVFRYlhieWdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi84YTQzMGYtNDBjNS00NzRiLThmZDkt
MDc0ZWQ3MGI0NjczLzEvWGNZa1hLZ2dpWjEtdEJRREFzSVFRYlhieWdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi84YTQzMGYtNDBjNS00NzRiLThmZDktMDc0ZWQ3MGI0Njcz
LzEvWGNZa1hLZ2dpWjEtdEJRREFzSVFRYlhieWdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsnkoraDd
EH/oMphkR8KkER1vbkOk+RoS4MjdikY//TvKp/Ml3OiDWGPJ/OrBoVJa07briWZa
rAN5hKxNVCEpl4t0RMHqKvC3WmM/iHuHKWatyB+0aYeuAXouQd9bueERopAbs59i
SiCdWEwbUTRxjDVHmnLAfRDVOLpTdX9XLk7YPvkqXsGHflYJ/AuZHoQGaSfCurhg
a7a3m+tKZH6Y/LZHRHhcC5TVfRlP7C4se9RgEgDaGptEG2/2CK7yK/x6OjjQ/kOB
X3I/eGr7Yt2GM68jQdwNoReSXtvUD4YEVL0/Lv+M4PV9aDyfaQAxnk9uAMvf5/Qf
aUkpUGmg6ctkzQ==
-----END CERTIFICATE-----
Generated at Mon Nov 25 14:06:54 2024 by rpki-client on console-fra.rpki-client.org