Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
File: KwFArTlBTE6rAqxVQitEFj7TSw8.mft (raw, json)
Hash identifier: WH41cK8ZtnSiUpbiSlargrPgKzb0Ems4Q7RVlMiaHoc=
Subject key identifier: 95:44:BF:3D:3B:E9:89:4A:FA:8B:2A:00:60:59:1F:AA:F5:F2:1C:71
Authority key identifier: 2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
Certificate issuer: /CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Certificate serial: 019356F6CF509759DFA474DD2816E1169D91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
Manifest number: C7
Signing time: Sat 23 Nov 2024 03:00:35 +0000
Manifest this update: Sat 23 Nov 2024 03:00:35 +0000
Manifest next update: Sun 24 Nov 2024 03:00:35 +0000
Files and hashes: 1: KwFArTlBTE6rAqxVQitEFj7TSw8.crl (hash: 5q9fUGMIFUWyJ23xIGi3M4FMb20ZhWmktymvDM8t35s=)
2: jNs533ylMl1gALd0dX2ldtxV7f0.roa (hash: bLUGBnQmVrZPNCazeIU7SIYQdYTRqfHuBMAz2J0ygQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:f6:cf:50:97:59:df:a4:74:dd:28:16:e1:16:9d:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Validity
Not Before: Nov 23 03:00:35 2024 GMT
Not After : Nov 24 03:00:35 2024 GMT
Subject: CN=9544bf3d3be9894afa8b2a0060591faaf5f21c71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:68:1f:7e:13:47:0b:f0:1b:9d:71:fe:bc:b4:
3a:6a:a0:c2:26:50:4c:01:cf:ae:72:4a:06:28:0c:
7b:3c:ae:6e:0b:34:66:97:c5:81:c5:1d:9a:2f:db:
83:06:24:af:a3:2b:1e:11:37:61:c8:7f:c6:af:ee:
a2:84:1a:a4:07:f9:03:d9:a3:58:34:2b:1b:9a:66:
c5:36:38:d1:4b:9f:d7:8a:92:38:95:93:0d:95:c2:
42:ba:d8:c7:78:af:1a:19:13:97:66:fb:83:32:8e:
d0:9a:b8:bd:09:5d:49:13:8e:4f:22:ba:74:ad:01:
a9:fe:60:28:3d:c1:cf:09:83:93:80:29:3a:5d:bb:
c1:50:c7:50:b8:fb:d3:71:06:ba:47:72:74:98:87:
cf:f6:a1:ac:d4:cb:16:cf:aa:72:3d:a5:2a:36:67:
50:94:7e:2d:f9:58:d2:64:47:20:c7:0a:79:54:3e:
ce:76:38:32:7c:d5:f5:e6:cc:f5:57:9e:6c:1f:5e:
1d:fa:6c:07:ac:74:38:0a:1b:71:e5:f1:f3:ad:74:
44:cb:32:0b:c0:c4:66:62:0a:88:7f:0c:90:c7:e5:
46:45:a0:ec:d2:bb:56:b7:66:26:ea:5c:49:65:87:
0d:1e:3a:37:61:3d:6e:86:e2:69:e0:7b:78:df:ed:
8d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:44:BF:3D:3B:E9:89:4A:FA:8B:2A:00:60:59:1F:AA:F5:F2:1C:71
X509v3 Authority Key Identifier:
keyid:2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:eb:d3:83:40:cb:d4:e1:de:fa:04:56:c4:d0:1d:5a:0e:db:
3d:ab:d5:f1:af:27:c2:35:14:d4:9d:af:79:fa:3e:a0:92:12:
48:a1:5d:39:bc:cf:dc:70:c4:39:57:9d:e5:fa:fb:aa:d9:c4:
47:7f:d4:18:90:11:de:6a:92:4a:50:e3:c5:50:c7:f0:f1:9b:
3d:3a:b5:54:59:89:fc:3f:56:41:c5:fd:97:b3:07:d1:0d:71:
fc:91:4e:9b:8c:87:e1:e4:18:f7:b8:da:96:26:4e:58:28:b1:
05:41:3c:14:42:bb:2f:9d:ca:f2:e1:e0:37:d1:92:fe:95:77:
fa:02:05:79:5c:37:3c:56:9a:f6:7d:96:63:47:f0:5d:35:c9:
53:d6:cf:c3:e5:8e:57:a2:71:62:74:ec:58:7e:22:86:9b:53:
33:b3:de:fa:dc:40:5b:ba:3f:ef:54:29:62:d2:08:f6:c9:02:
7d:56:77:76:d1:9c:7c:28:8f:54:28:a8:96:57:4e:30:43:6e:
54:64:89:80:5d:a1:f2:a6:73:fe:2c:03:9a:62:ce:4b:ce:9d:
bf:21:ea:53:4f:7d:6f:fb:fc:3c:34:50:c8:e2:44:d4:46:71:
cd:06:f5:5d:4e:e5:ec:13:a5:2d:45:92:8c:cd:d8:de:df:3d:
13:e5:c6:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNW9s9Ql1nfpHTdKBbhFp2RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiMDE0MGFkMzk0MTRjNGVhYjAyYWM1NTQyMmI0NDE2M2Vk
MzRiMGYwHhcNMjQxMTIzMDMwMDM1WhcNMjQxMTI0MDMwMDM1WjAzMTEwLwYDVQQD
Eyg5NTQ0YmYzZDNiZTk4OTRhZmE4YjJhMDA2MDU5MWZhYWY1ZjIxYzcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt2gffhNHC/AbnXH+vLQ6aqDCJlBM
Ac+uckoGKAx7PK5uCzRml8WBxR2aL9uDBiSvoyseETdhyH/Gr+6ihBqkB/kD2aNY
NCsbmmbFNjjRS5/XipI4lZMNlcJCutjHeK8aGROXZvuDMo7Qmri9CV1JE45PIrp0
rQGp/mAoPcHPCYOTgCk6XbvBUMdQuPvTcQa6R3J0mIfP9qGs1MsWz6pyPaUqNmdQ
lH4t+VjSZEcgxwp5VD7OdjgyfNX15sz1V55sH14d+mwHrHQ4Chtx5fHzrXREyzIL
wMRmYgqIfwyQx+VGRaDs0rtWt2Ym6lxJZYcNHjo3YT1uhuJp4Ht43+2NtQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJVEvz076YlK+osqAGBZH6r18hxxMB8GA1UdIwQY
MBaAFCsBQK05QUxOqwKsVUIrRBY+00sPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3dGQXJUbEJURTZyQXF4VlFpdEVGajdUU3c4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy84OWMzZTQtYjYxMy00OWVjLWFlMjUt
MmU3NTIyOGY5MjYxLzEvS3dGQXJUbEJURTZyQXF4VlFpdEVGajdUU3c4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy84OWMzZTQtYjYxMy00OWVjLWFlMjUtMmU3NTIyOGY5MjYx
LzEvS3dGQXJUbEJURTZyQXF4VlFpdEVGajdUU3c4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb+vTg0DL
1OHe+gRWxNAdWg7bPavV8a8nwjUU1J2vefo+oJISSKFdObzP3HDEOVed5fr7qtnE
R3/UGJAR3mqSSlDjxVDH8PGbPTq1VFmJ/D9WQcX9l7MH0Q1x/JFOm4yH4eQY97ja
liZOWCixBUE8FEK7L53K8uHgN9GS/pV3+gIFeVw3PFaa9n2WY0fwXTXJU9bPw+WO
V6JxYnTsWH4ihptTM7Pe+txAW7o/71QpYtII9skCfVZ3dtGcfCiPVCiolldOMENu
VGSJgF2h8qZz/iwDmmLOS86dvyHqU099b/v8PDRQyOJE1EZxzQb1XU7l7BOlLUWS
jM3Y3t89E+XGYA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 04:44:56 2024 by rpki-client on console-ams.rpki-client.org