Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft
File: cM9eaXxglK22vJcVazXgBf1M8uI.mft (raw, json)
Hash identifier: YIVtznza/w21xjv89vMEd6xhB/YFEqhhk8EDtLz8bUY=
Subject key identifier: 2F:53:B4:51:C2:6D:39:A5:37:3F:A9:9A:58:6D:01:26:95:30:BF:C8
Authority key identifier: 70:CF:5E:69:7C:60:94:AD:B6:BC:97:15:6B:35:E0:05:FD:4C:F2:E2
Certificate issuer: /CN=70cf5e697c6094adb6bc97156b35e005fd4cf2e2
Certificate serial: 019357D25C89FCEE2F972F711B3B9825D7B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft
Manifest number: 1371
Signing time: Sat 23 Nov 2024 07:00:24 +0000
Manifest this update: Sat 23 Nov 2024 07:00:24 +0000
Manifest next update: Sun 24 Nov 2024 07:00:24 +0000
Files and hashes: 1: YlSGgT2x9P7-UNtLUU2W1LplRXo.roa (hash: tGPr5PtecoHkpBQ+OlYvjsBTWBXZVGYhOuxdtFFXiTI=)
2: cM9eaXxglK22vJcVazXgBf1M8uI.crl (hash: ggvZjDlGQchkn98tLPkTKjpeli9xc6eLZOjINXaB/D8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft
rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:5c:89:fc:ee:2f:97:2f:71:1b:3b:98:25:d7:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cf5e697c6094adb6bc97156b35e005fd4cf2e2
Validity
Not Before: Nov 23 07:00:24 2024 GMT
Not After : Nov 24 07:00:24 2024 GMT
Subject: CN=2f53b451c26d39a5373fa99a586d01269530bfc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0a:a3:ab:51:fb:c9:27:39:ac:d1:44:5b:ea:
89:bc:7a:a6:98:81:fc:e1:31:6b:08:b2:c0:90:23:
87:08:74:84:25:e3:13:93:c7:38:d9:1d:94:9a:49:
eb:26:2b:12:a1:95:6c:7c:df:fd:03:53:66:68:be:
88:8d:c8:8f:5a:45:9a:fb:7f:9a:fd:9d:ae:74:b9:
27:51:6a:d9:a8:cf:0b:10:d2:0d:59:d4:13:0c:73:
11:0b:40:a9:7a:66:d7:48:09:e0:54:71:df:6c:30:
fc:6a:25:b3:9d:81:71:b5:4d:37:a9:47:be:a3:39:
f4:a9:fb:75:4f:d8:55:83:bf:5a:04:ee:dc:7a:bb:
ee:08:99:6c:5f:21:89:a0:5c:2b:3a:76:d1:9b:6c:
92:59:b7:8f:f8:29:5c:c6:6f:8f:50:23:d5:8e:fc:
72:8a:0c:2f:f0:e5:a0:e9:81:13:81:50:69:62:3c:
d2:bc:87:6c:c1:1d:f0:43:03:b6:b1:cb:e9:59:19:
6e:d3:4a:c5:6b:9f:a9:b3:ad:96:be:75:e0:ed:30:
df:99:d3:b6:bc:b0:0d:23:51:73:b0:7d:30:93:6a:
6f:40:8b:8d:27:ac:55:b3:f6:e6:1c:36:07:4e:15:
09:34:c7:de:33:b6:37:2d:8d:24:12:94:33:21:8b:
67:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:53:B4:51:C2:6D:39:A5:37:3F:A9:9A:58:6D:01:26:95:30:BF:C8
X509v3 Authority Key Identifier:
keyid:70:CF:5E:69:7C:60:94:AD:B6:BC:97:15:6B:35:E0:05:FD:4C:F2:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:9b:0a:f4:ca:e7:e2:58:c6:ba:d7:9a:c5:e3:87:56:d3:59:
8a:e6:39:48:f5:4f:71:53:64:d6:c4:8b:88:72:74:54:a2:9e:
52:a8:b8:49:28:55:7c:f4:a0:2b:1e:ce:c9:b2:83:cb:eb:48:
5b:bc:61:89:49:80:a2:3f:c6:27:f3:4e:c0:bb:7a:6b:27:75:
3b:72:43:72:45:44:95:27:f4:29:bd:31:33:24:d8:70:b8:ec:
f9:c6:04:67:43:7b:ea:91:5c:82:ce:43:4b:ea:d0:b4:f4:32:
41:f0:3e:30:4b:61:a7:4f:f3:2b:75:8f:28:b4:b3:a8:b3:6f:
12:01:d7:91:2e:d4:f3:2a:05:85:ab:0e:6f:fc:98:b6:8c:21:
ee:dd:01:81:73:69:57:ec:90:c6:48:ec:49:9c:3d:47:23:06:
8f:20:50:b9:b7:68:90:7b:d4:16:c7:41:67:35:88:e5:35:c0:
6f:bc:e9:31:2e:2f:6f:8d:90:96:8b:9c:28:64:b6:6e:8b:2e:
b6:7d:f4:7d:73:c8:d3:72:14:3e:9a:cb:51:c1:92:17:9e:f9:
3d:94:f8:30:1b:90:ac:c0:5c:72:8c:d9:45:ef:a1:53:96:5d:
77:d5:d2:9a:ef:9d:25:96:26:16:3c:fe:bd:23:7d:4d:9b:90:
c0:49:70:87
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNX0lyJ/O4vly9xGzuYJdeyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwY2Y1ZTY5N2M2MDk0YWRiNmJjOTcxNTZiMzVlMDA1ZmQ0
Y2YyZTIwHhcNMjQxMTIzMDcwMDI0WhcNMjQxMTI0MDcwMDI0WjAzMTEwLwYDVQQD
EygyZjUzYjQ1MWMyNmQzOWE1MzczZmE5OWE1ODZkMDEyNjk1MzBiZmM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuAqjq1H7ySc5rNFEW+qJvHqmmIH8
4TFrCLLAkCOHCHSEJeMTk8c42R2UmknrJisSoZVsfN/9A1NmaL6IjciPWkWa+3+a
/Z2udLknUWrZqM8LENINWdQTDHMRC0CpembXSAngVHHfbDD8aiWznYFxtU03qUe+
ozn0qft1T9hVg79aBO7cervuCJlsXyGJoFwrOnbRm2ySWbeP+Clcxm+PUCPVjvxy
igwv8OWg6YETgVBpYjzSvIdswR3wQwO2scvpWRlu00rFa5+ps62WvnXg7TDfmdO2
vLANI1FzsH0wk2pvQIuNJ6xVs/bmHDYHThUJNMfeM7Y3LY0kEpQzIYtnAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC9TtFHCbTmlNz+pmlhtASaVML/IMB8GA1UdIwQY
MBaAFHDPXml8YJSttryXFWs14AX9TPLiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY005ZWFYeGdsSzIydkpjVmF6WGdCZjFNOHVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy80ZDUyOTUtZjhmMi00ZTA1LWFkZDAt
NTE5Nzk1YTIyNTAyLzEvY005ZWFYeGdsSzIydkpjVmF6WGdCZjFNOHVJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy80ZDUyOTUtZjhmMi00ZTA1LWFkZDAtNTE5Nzk1YTIyNTAy
LzEvY005ZWFYeGdsSzIydkpjVmF6WGdCZjFNOHVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdpsK9Mrn
4ljGuteaxeOHVtNZiuY5SPVPcVNk1sSLiHJ0VKKeUqi4SShVfPSgKx7OybKDy+tI
W7xhiUmAoj/GJ/NOwLt6ayd1O3JDckVElSf0Kb0xMyTYcLjs+cYEZ0N76pFcgs5D
S+rQtPQyQfA+MEthp0/zK3WPKLSzqLNvEgHXkS7U8yoFhasOb/yYtowh7t0BgXNp
V+yQxkjsSZw9RyMGjyBQubdokHvUFsdBZzWI5TXAb7zpMS4vb42QloucKGS2bosu
tn30fXPI03IUPprLUcGSF575PZT4MBuQrMBccozZRe+hU5Zdd9XSmu+dJZYmFjz+
vSN9TZuQwElwhw==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:12:47 2024 by rpki-client on console-fra.rpki-client.org