Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft
File: I5Vy3fyrYpHmQQzNToYO42AA5mg.mft (raw, json)
Hash identifier: rkkKzoGz+02fFpYzcpRTsue7EuNrRcTdPxHwZCSdhnw=
Subject key identifier: 96:12:C7:5A:45:8F:B6:31:16:ED:A8:64:2A:6C:02:74:93:56:AA:A5
Authority key identifier: 23:95:72:DD:FC:AB:62:91:E6:41:0C:CD:4E:86:0E:E3:60:00:E6:68
Certificate issuer: /CN=239572ddfcab6291e6410ccd4e860ee36000e668
Certificate serial: 0193568AAFDFCB88638B3649FA1DBEFD5A0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I5Vy3fyrYpHmQQzNToYO42AA5mg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft
Manifest number: 1372
Signing time: Sat 23 Nov 2024 01:02:29 +0000
Manifest this update: Sat 23 Nov 2024 01:02:29 +0000
Manifest next update: Sun 24 Nov 2024 01:02:29 +0000
Files and hashes: 1: I5Vy3fyrYpHmQQzNToYO42AA5mg.crl (hash: n7POA2e5CiRs9CtZdQErhHFv1TCNTPLUK8CkodeBTbw=)
2: dPRGSxF8Jun1BG0qHd4WbhuUpV4.roa (hash: B4uFRpML8rK79qrZE1e3fB7UXX7FSvIZ9nOW5dZN1+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft
rsync://rpki.ripe.net/repository/DEFAULT/I5Vy3fyrYpHmQQzNToYO42AA5mg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:af:df:cb:88:63:8b:36:49:fa:1d:be:fd:5a:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=239572ddfcab6291e6410ccd4e860ee36000e668
Validity
Not Before: Nov 23 01:02:29 2024 GMT
Not After : Nov 24 01:02:29 2024 GMT
Subject: CN=9612c75a458fb63116eda8642a6c02749356aaa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:2f:6d:e5:ff:79:a6:f8:18:fe:89:29:ed:9d:
67:aa:96:89:f7:ea:8c:69:7c:e8:60:b6:1f:f5:4e:
93:28:f7:65:26:a5:95:f9:bc:16:a8:b9:37:58:4a:
0b:37:63:73:c5:ae:53:a7:be:3d:8e:d3:17:81:90:
41:0f:f0:1e:92:9c:79:ce:ab:76:96:9a:bd:29:53:
be:89:0c:b7:9e:3a:a4:2c:63:f0:fc:c6:f2:91:87:
f6:a0:34:cd:9e:6a:ab:40:66:be:33:ac:fd:bc:e1:
a6:fc:f8:16:99:b5:87:e9:f4:9f:50:e6:e5:94:2d:
52:77:39:5e:34:db:29:49:8e:0b:7c:14:5a:a0:e3:
e8:fa:29:6f:94:86:3f:82:67:c9:ac:b3:4f:ec:03:
58:99:47:de:01:c2:1b:4b:3a:1a:14:1c:74:6d:cd:
78:f0:23:2e:2d:7c:81:bb:06:de:5b:8c:10:a9:44:
9a:c4:3a:6d:f0:e4:64:d9:a3:2b:8e:b4:de:3a:39:
8d:3d:a1:6f:ba:c0:b2:f8:27:e8:f8:c5:92:b3:70:
25:69:d2:3f:f5:26:a7:6e:de:8b:63:30:5a:45:28:
11:1c:24:c5:fe:12:71:52:f6:32:13:40:36:76:29:
7f:aa:42:ce:a2:aa:8c:0f:7d:b3:01:1c:07:8d:91:
ef:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:12:C7:5A:45:8F:B6:31:16:ED:A8:64:2A:6C:02:74:93:56:AA:A5
X509v3 Authority Key Identifier:
keyid:23:95:72:DD:FC:AB:62:91:E6:41:0C:CD:4E:86:0E:E3:60:00:E6:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I5Vy3fyrYpHmQQzNToYO42AA5mg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:14:ee:67:4b:ee:09:10:f4:c9:57:19:8e:ad:6d:4a:2e:17:
5e:b7:53:82:5b:ce:e3:ab:06:ce:ca:e3:4a:b1:75:43:65:19:
f1:7c:06:44:36:eb:65:d5:cb:ae:df:23:70:12:ac:1f:0f:75:
28:c4:91:46:82:0e:7e:13:b5:85:cf:bc:94:32:ca:3f:62:2d:
32:c6:5c:ca:31:13:e8:bd:b4:e8:fe:5f:48:c0:c9:2e:94:c9:
8e:ec:04:e9:e8:9e:c0:00:ef:91:e5:85:b4:c4:fa:d0:c1:e3:
a5:1d:50:ca:30:a8:13:2a:69:9c:f4:2b:5b:87:8d:77:53:99:
9d:74:b1:af:1f:59:a5:ab:e7:8e:de:87:d8:23:88:97:b2:04:
41:a2:eb:06:bc:9b:b7:ee:01:1b:a1:eb:68:59:4e:17:96:87:
25:4a:bb:e6:72:31:30:ab:6e:b0:c4:7f:55:b5:cf:64:88:d2:
50:a0:9d:a2:f0:48:c5:89:08:ea:b1:01:36:f1:4e:e9:cf:0e:
f3:07:20:71:4e:c3:42:06:a1:25:2f:72:03:bf:49:35:2f:cd:
3f:3c:26:02:6f:4e:5c:e4:a2:00:cc:48:19:60:df:93:b2:2b:
de:9d:66:17:81:f1:d9:ff:e7:8c:23:99:36:ae:01:50:e7:67:
24:00:26:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNWiq/fy4hjizZJ+h2+/VoOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzOTU3MmRkZmNhYjYyOTFlNjQxMGNjZDRlODYwZWUzNjAw
MGU2NjgwHhcNMjQxMTIzMDEwMjI5WhcNMjQxMTI0MDEwMjI5WjAzMTEwLwYDVQQD
Eyg5NjEyYzc1YTQ1OGZiNjMxMTZlZGE4NjQyYTZjMDI3NDkzNTZhYWE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhS9t5f95pvgY/okp7Z1nqpaJ9+qM
aXzoYLYf9U6TKPdlJqWV+bwWqLk3WEoLN2Nzxa5Tp749jtMXgZBBD/Aekpx5zqt2
lpq9KVO+iQy3njqkLGPw/MbykYf2oDTNnmqrQGa+M6z9vOGm/PgWmbWH6fSfUObl
lC1SdzleNNspSY4LfBRaoOPo+ilvlIY/gmfJrLNP7ANYmUfeAcIbSzoaFBx0bc14
8CMuLXyBuwbeW4wQqUSaxDpt8ORk2aMrjrTeOjmNPaFvusCy+Cfo+MWSs3AladI/
9Sanbt6LYzBaRSgRHCTF/hJxUvYyE0A2dil/qkLOoqqMD32zARwHjZHvBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJYSx1pFj7YxFu2oZCpsAnSTVqqlMB8GA1UdIwQY
MBaAFCOVct38q2KR5kEMzU6GDuNgAOZoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTVWeTNmeXJZcEhtUVF6TlRvWU80MkFBNW1nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8xZDdmMDgtZTc3Yy00MzM4LTlhMzkt
OGUxOWMwZGI4NmMyLzEvSTVWeTNmeXJZcEhtUVF6TlRvWU80MkFBNW1nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC8xZDdmMDgtZTc3Yy00MzM4LTlhMzktOGUxOWMwZGI4NmMy
LzEvSTVWeTNmeXJZcEhtUVF6TlRvWU80MkFBNW1nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGRTuZ0vu
CRD0yVcZjq1tSi4XXrdTglvO46sGzsrjSrF1Q2UZ8XwGRDbrZdXLrt8jcBKsHw91
KMSRRoIOfhO1hc+8lDLKP2ItMsZcyjET6L206P5fSMDJLpTJjuwE6eiewADvkeWF
tMT60MHjpR1QyjCoEyppnPQrW4eNd1OZnXSxrx9Zpavnjt6H2COIl7IEQaLrBryb
t+4BG6HraFlOF5aHJUq75nIxMKtusMR/VbXPZIjSUKCdovBIxYkI6rEBNvFO6c8O
8wcgcU7DQgahJS9yA79JNS/NPzwmAm9OXOSiAMxIGWDfk7Ir3p1mF4Hx2f/njCOZ
Nq4BUOdnJAAmBA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:11:32 2024 by rpki-client on console-fra.rpki-client.org