Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
File: uXK9SdVRtK2lvWu2lWGKeUUa004.mft (raw, json)
Hash identifier: EQrl5OXwFQ2N6tCe0A5JnfeWxiZS89DP1Y87aT/d8k0=
Subject key identifier: 32:68:FA:15:0A:6D:5B:A4:7C:47:80:8A:3B:BC:58:FD:BD:84:FF:FD
Authority key identifier: B9:72:BD:49:D5:51:B4:AD:A5:BD:6B:B6:95:61:8A:79:45:1A:D3:4E
Certificate issuer: /CN=b972bd49d551b4ada5bd6bb695618a79451ad34e
Certificate serial: 0193553F4BC6ECEF4892EB7BF6583C01CBFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
Manifest number: 05D0
Signing time: Fri 22 Nov 2024 19:00:31 +0000
Manifest this update: Fri 22 Nov 2024 19:00:31 +0000
Manifest next update: Sat 23 Nov 2024 19:00:31 +0000
Files and hashes: 1: uXK9SdVRtK2lvWu2lWGKeUUa004.crl (hash: YvGD4P6EeJJYu6nbsh8BOJ+61x2Tc46hJQ88xwDsAn4=)
2: xprzbvmiU-QZBmO2k4mFqSAuVNw.roa (hash: JeVShNOjIMql86jIjNBeuq9m/6ceKScpKyKCXzGIctU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:3f:4b:c6:ec:ef:48:92:eb:7b:f6:58:3c:01:cb:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b972bd49d551b4ada5bd6bb695618a79451ad34e
Validity
Not Before: Nov 22 19:00:31 2024 GMT
Not After : Nov 23 19:00:31 2024 GMT
Subject: CN=3268fa150a6d5ba47c47808a3bbc58fdbd84fffd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d6:71:67:35:70:f8:d0:8d:8b:f9:ff:ea:eb:
d4:43:5a:7e:f4:0e:cf:46:20:57:11:e1:1d:52:00:
c5:38:d1:c7:b7:1d:ef:0c:27:37:45:37:78:bf:54:
91:46:2a:49:f0:27:e1:09:fb:b8:fb:10:c0:67:dd:
11:33:71:a5:1e:f7:a4:d0:70:09:2f:9d:89:ff:0d:
55:ca:19:a9:91:21:91:54:1b:c1:6b:8e:77:71:72:
a6:f6:80:59:6a:81:73:81:fd:65:0c:25:4b:50:57:
0e:7f:0d:f7:1d:29:0e:68:13:7b:c4:e4:8a:b8:32:
af:0a:bd:d6:44:ef:cd:3a:1e:b2:07:86:2d:2f:6a:
04:77:7b:6b:73:1b:94:87:ba:c6:d1:fd:d9:5b:17:
ee:53:dc:72:ce:71:76:da:72:bf:95:e4:16:f6:00:
8a:3d:26:2e:dc:eb:03:99:e8:b7:96:7e:03:8b:3c:
69:8a:c4:ad:aa:d8:69:92:39:62:2d:b8:06:5b:09:
da:27:f0:a4:95:d0:5e:fb:70:b0:6f:1f:17:50:2e:
7f:e5:23:19:f2:1e:1d:92:d6:d0:63:ad:03:07:23:
f7:d2:70:81:14:2b:44:02:9f:7b:d2:fb:d5:fb:cd:
9c:3f:d6:e0:18:b7:a8:61:38:b9:5f:a1:e2:bc:3b:
55:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:68:FA:15:0A:6D:5B:A4:7C:47:80:8A:3B:BC:58:FD:BD:84:FF:FD
X509v3 Authority Key Identifier:
keyid:B9:72:BD:49:D5:51:B4:AD:A5:BD:6B:B6:95:61:8A:79:45:1A:D3:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:d0:77:9e:c2:1a:d4:73:3c:b4:f6:8b:7c:72:95:92:27:c0:
77:b7:7e:68:84:88:ce:c8:a6:b2:30:aa:ac:90:66:1f:2f:9b:
ad:7e:f7:78:c4:31:fa:bd:b0:e7:9b:a7:1f:e4:2c:59:a5:c1:
ec:ef:26:e5:00:c0:08:41:de:0a:b1:10:e9:1f:cf:69:8c:00:
04:0d:19:6e:de:cf:bf:9e:b2:59:35:f4:40:8f:4f:bc:6d:a4:
c7:5a:0f:87:76:5e:df:61:b2:73:c1:3e:ea:d2:66:5c:ba:6c:
c2:93:51:a0:d3:dd:7e:80:05:8a:f1:5b:f4:fb:c3:a1:04:bd:
c7:a1:f9:da:db:25:a7:4d:b7:fe:15:f9:57:18:67:0a:c5:74:
e0:45:c4:3a:ef:b9:bc:3d:32:27:f2:ca:e9:23:61:d7:a8:ce:
5c:64:de:61:38:da:14:ee:19:4f:a5:0e:71:e6:e4:02:05:ea:
7e:f7:bf:f9:d7:f2:41:be:38:d2:5b:be:94:93:f8:ca:86:a6:
2e:70:34:c6:a8:dc:aa:fa:a1:62:93:c8:b6:cd:96:0f:bf:4a:
41:bd:dd:9f:c5:3f:7b:52:75:1d:be:85:56:7f:fd:52:c2:72:
50:e0:16:15:88:83:84:93:90:31:47:e8:6e:27:2c:d1:b4:16:
be:5d:d3:d4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNVP0vG7O9Ikut79lg8Acv6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5NzJiZDQ5ZDU1MWI0YWRhNWJkNmJiNjk1NjE4YTc5NDUx
YWQzNGUwHhcNMjQxMTIyMTkwMDMxWhcNMjQxMTIzMTkwMDMxWjAzMTEwLwYDVQQD
EygzMjY4ZmExNTBhNmQ1YmE0N2M0NzgwOGEzYmJjNThmZGJkODRmZmZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAntZxZzVw+NCNi/n/6uvUQ1p+9A7P
RiBXEeEdUgDFONHHtx3vDCc3RTd4v1SRRipJ8CfhCfu4+xDAZ90RM3GlHvek0HAJ
L52J/w1VyhmpkSGRVBvBa453cXKm9oBZaoFzgf1lDCVLUFcOfw33HSkOaBN7xOSK
uDKvCr3WRO/NOh6yB4YtL2oEd3trcxuUh7rG0f3ZWxfuU9xyznF22nK/leQW9gCK
PSYu3OsDmei3ln4DizxpisStqthpkjliLbgGWwnaJ/CkldBe+3Cwbx8XUC5/5SMZ
8h4dktbQY60DByP30nCBFCtEAp970vvV+82cP9bgGLeoYTi5X6HivDtV2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDJo+hUKbVukfEeAiju8WP29hP/9MB8GA1UdIwQY
MBaAFLlyvUnVUbStpb1rtpVhinlFGtNOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVhLOVNkVlJ0SzJsdld1MmxXR0tlVVVhMDA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mZTA3YjctZjQ2NC00ZTY3LTgyOTkt
Y2E1ZTY4NTQzOGEyLzEvdVhLOVNkVlJ0SzJsdld1MmxXR0tlVVVhMDA0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC9mZTA3YjctZjQ2NC00ZTY3LTgyOTktY2E1ZTY4NTQzOGEy
LzEvdVhLOVNkVlJ0SzJsdld1MmxXR0tlVVVhMDA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl9B3nsIa
1HM8tPaLfHKVkifAd7d+aISIzsimsjCqrJBmHy+brX73eMQx+r2w55unH+QsWaXB
7O8m5QDACEHeCrEQ6R/PaYwABA0Zbt7Pv56yWTX0QI9PvG2kx1oPh3Ze32Gyc8E+
6tJmXLpswpNRoNPdfoAFivFb9PvDoQS9x6H52tslp023/hX5VxhnCsV04EXEOu+5
vD0yJ/LK6SNh16jOXGTeYTjaFO4ZT6UOcebkAgXqfve/+dfyQb440lu+lJP4yoam
LnA0xqjcqvqhYpPIts2WD79KQb3dn8U/e1J1Hb6FVn/9UsJyUOAWFYiDhJOQMUfo
bics0bQWvl3T1A==
-----END CERTIFICATE-----
Generated at Fri Nov 22 22:33:39 2024 by rpki-client on console-ams.rpki-client.org