Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
File: O1RMoOK-GOn9dOKBMkowsOotHVI.mft (raw, json)
Hash identifier: fQBhrkBQgm+tQhW+mExi8xizG0Bwk6bR15/D5tw+Cw8=
Subject key identifier: F9:0B:59:C9:DB:1D:32:81:9C:1D:9B:8F:41:FF:38:0D:EF:19:4A:C5
Authority key identifier: 3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
Certificate issuer: /CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Certificate serial: 01936221410F88DEBA3F55D1E015C5FF2430
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
Manifest number: 0A1B
Signing time: Mon 25 Nov 2024 07:02:46 +0000
Manifest this update: Mon 25 Nov 2024 07:02:46 +0000
Manifest next update: Tue 26 Nov 2024 07:02:46 +0000
Files and hashes: 1: 0BgfBIP3JKMgwsZmzVRbjyNKKmk.roa (hash: pcE6r2Z0vCrxrU1nNrbMTXvhdWFLMvTnyL2D4/QR3H0=)
2: DEtFTLyhCZrz_ZFlK3LPe67oBBY.roa (hash: LhMG8+saryk2/SIY4SbDPKLFxjCO8OtH3KfSuhSz1KE=)
3: Fd-9HAFY74RiL1M3bJJl7JC4AjI.roa (hash: mUWb5epWrcrq9xVlmMq8fgch2kutj9t5piaB7ww+3RA=)
4: O1RMoOK-GOn9dOKBMkowsOotHVI.crl (hash: fO9lSVePP2331hUynGokLkFq7bLwCPNh3KEOp751ps8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 07:02:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:62:21:41:0f:88:de:ba:3f:55:d1:e0:15:c5:ff:24:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Validity
Not Before: Nov 25 07:02:46 2024 GMT
Not After : Nov 26 07:02:46 2024 GMT
Subject: CN=f90b59c9db1d32819c1d9b8f41ff380def194ac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:60:75:7a:21:2c:51:6b:1e:35:b9:80:3e:85:
99:50:4a:14:3b:55:d6:3b:c9:96:8d:13:b2:78:7c:
ca:71:5e:6a:12:1f:43:7e:c8:1e:e0:f5:af:39:20:
3c:7c:78:8e:74:16:16:05:44:74:35:ce:1d:70:a2:
e4:a6:9d:3c:41:7a:b9:f1:09:06:c1:22:d8:3b:db:
a8:4c:cc:f9:4b:13:37:d7:7a:53:35:3b:48:f6:72:
94:13:f2:e4:86:72:40:f9:59:c8:56:23:e1:9f:08:
5c:e7:be:b0:6e:87:af:c5:db:82:13:e3:96:13:6c:
14:99:67:c0:a8:e8:27:1e:95:08:7c:b7:4c:2c:b4:
b4:72:39:4d:af:44:5a:cb:5c:f3:e7:03:91:e5:83:
c3:fe:57:e4:47:5d:48:2b:03:34:d6:a9:36:e9:3c:
8b:f9:da:95:45:4a:ae:49:b0:17:f7:f1:47:b4:c7:
c8:6e:d0:3d:50:4b:fc:c9:39:ed:1b:17:ab:a2:26:
45:26:29:24:ae:33:84:da:98:9d:91:08:d3:54:97:
f8:64:b9:15:8a:50:40:94:e1:50:79:43:da:eb:65:
a1:0f:92:dc:f6:2d:4b:d3:a8:0c:7e:53:94:e2:bf:
15:59:21:54:69:16:ab:fa:86:82:7c:9c:81:05:12:
92:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:0B:59:C9:DB:1D:32:81:9C:1D:9B:8F:41:FF:38:0D:EF:19:4A:C5
X509v3 Authority Key Identifier:
keyid:3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:a7:2b:45:a2:7d:18:44:7e:80:7a:7c:cf:f4:7b:1f:36:60:
72:56:ac:4e:06:5e:c4:ea:9b:52:04:7c:fe:50:e8:ab:93:06:
8c:e5:3b:0b:f4:a7:62:4d:62:fb:a9:50:2d:d9:49:6e:04:5b:
ac:cd:ad:71:36:7e:95:d9:91:61:c1:4f:98:1e:3e:c4:5a:21:
09:20:d1:77:64:cb:b1:e7:62:f1:20:32:09:02:d0:dd:6b:94:
b1:bf:21:dd:52:e3:42:89:2c:8d:2a:1f:57:1a:eb:f9:75:4a:
12:5f:57:c0:d9:ea:6d:b9:4c:21:d0:66:78:45:0c:f5:81:52:
04:c8:47:21:85:b7:9d:12:2c:40:2c:65:1a:37:2c:41:78:d8:
e9:a5:12:99:86:c2:bc:fc:b2:8d:2d:d0:46:57:fe:5e:94:79:
30:a4:51:98:fd:e6:ae:6f:40:8c:07:a1:fd:54:80:9e:d1:51:
2d:8b:b3:3e:58:8a:dd:ac:ea:28:a9:30:8a:d2:22:8d:f2:e1:
19:cf:77:d3:91:6d:09:d8:4d:00:29:dd:1e:c7:5e:b7:dd:b0:
c1:c8:08:13:c7:8d:e5:69:d6:74:f6:02:25:53:ad:57:8f:ce:
25:79:ca:ee:7e:09:81:81:6e:df:8c:9f:ed:72:42:83:90:d4:
d8:8f:ab:98
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNiIUEPiN66P1XR4BXF/yQwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiNTQ0Y2EwZTJiZTE4ZTlmZDc0ZTI4MTMyNGEzMGIwZWEy
ZDFkNTIwHhcNMjQxMTI1MDcwMjQ2WhcNMjQxMTI2MDcwMjQ2WjAzMTEwLwYDVQQD
EyhmOTBiNTljOWRiMWQzMjgxOWMxZDliOGY0MWZmMzgwZGVmMTk0YWM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3WB1eiEsUWseNbmAPoWZUEoUO1XW
O8mWjROyeHzKcV5qEh9Dfsge4PWvOSA8fHiOdBYWBUR0Nc4dcKLkpp08QXq58QkG
wSLYO9uoTMz5SxM313pTNTtI9nKUE/LkhnJA+VnIViPhnwhc576wboevxduCE+OW
E2wUmWfAqOgnHpUIfLdMLLS0cjlNr0Ray1zz5wOR5YPD/lfkR11IKwM01qk26TyL
+dqVRUquSbAX9/FHtMfIbtA9UEv8yTntGxeroiZFJikkrjOE2pidkQjTVJf4ZLkV
ilBAlOFQeUPa62WhD5Lc9i1L06gMflOU4r8VWSFUaRar+oaCfJyBBRKSvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPkLWcnbHTKBnB2bj0H/OA3vGUrFMB8GA1UdIwQY
MBaAFDtUTKDivhjp/XTigTJKMLDqLR1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzFSTW9PSy1HT245ZE9LQk1rb3dzT290SFZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8zMDMwYmItNDJjMi00ZTNjLTg1OWEt
ODc2YTlkNzYyOWY2LzEvTzFSTW9PSy1HT245ZE9LQk1rb3dzT290SFZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy8zMDMwYmItNDJjMi00ZTNjLTg1OWEtODc2YTlkNzYyOWY2
LzEvTzFSTW9PSy1HT245ZE9LQk1rb3dzT290SFZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcKcrRaJ9
GER+gHp8z/R7HzZgclasTgZexOqbUgR8/lDoq5MGjOU7C/SnYk1i+6lQLdlJbgRb
rM2tcTZ+ldmRYcFPmB4+xFohCSDRd2TLsedi8SAyCQLQ3WuUsb8h3VLjQoksjSof
Vxrr+XVKEl9XwNnqbblMIdBmeEUM9YFSBMhHIYW3nRIsQCxlGjcsQXjY6aUSmYbC
vPyyjS3QRlf+XpR5MKRRmP3mrm9AjAeh/VSAntFRLYuzPliK3azqKKkwitIijfLh
Gc9305FtCdhNACndHsdet92wwcgIE8eN5WnWdPYCJVOtV4/OJXnK7n4JgYFu34yf
7XJCg5DU2I+rmA==
-----END CERTIFICATE-----
Generated at Mon Nov 25 14:06:57 2024 by rpki-client on console-fra.rpki-client.org