Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.mft
File: mbj9KSyKG4lrh1I0Sj2pI3jyrlo.mft (raw, json)
Hash identifier: yQDQCHDprnHFOkjxDti92VJEJasCEJ9gmcXsZsnJ2+Q=
Subject key identifier: CF:28:58:64:A4:72:1F:2E:DC:C7:FA:52:0F:83:51:24:68:1A:07:8D
Authority key identifier: 99:B8:FD:29:2C:8A:1B:89:6B:87:52:34:4A:3D:A9:23:78:F2:AE:5A
Certificate issuer: /CN=99b8fd292c8a1b896b8752344a3da92378f2ae5a
Certificate serial: 0193640E64E91B23CEFE511B771B52ABF8D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.mft
Manifest number: 026B
Signing time: Mon 25 Nov 2024 16:01:25 +0000
Manifest this update: Mon 25 Nov 2024 16:01:25 +0000
Manifest next update: Tue 26 Nov 2024 16:01:25 +0000
Files and hashes: 1: mbj9KSyKG4lrh1I0Sj2pI3jyrlo.crl (hash: wZ8Jf/SipRVmcPGqMmV8aykgQREOj0w+00eWsEhXZLQ=)
2: waMMIyyy0TWRXdPJtgo3qAjucX8.roa (hash: edEfhCbrB7wt8Pwrz41roI2h/r6CTpVfXPgg6mIiGDw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.mft
rsync://rpki.ripe.net/repository/DEFAULT/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:64:0e:64:e9:1b:23:ce:fe:51:1b:77:1b:52:ab:f8:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99b8fd292c8a1b896b8752344a3da92378f2ae5a
Validity
Not Before: Nov 25 16:01:25 2024 GMT
Not After : Nov 26 16:01:25 2024 GMT
Subject: CN=cf285864a4721f2edcc7fa520f835124681a078d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:29:8c:c1:51:48:68:15:73:08:b0:3f:da:28:
cd:d4:22:ec:42:3b:70:5c:5a:95:6d:ff:a9:ac:2c:
91:18:f6:30:72:c6:67:64:3c:7e:00:fd:20:bd:45:
f1:ff:db:f3:0f:fc:35:2c:e9:5c:ed:34:bf:be:2c:
0b:2a:d5:66:ef:58:e0:99:75:15:f8:da:1e:b5:f4:
6a:47:f2:7f:25:d9:3f:0e:c5:57:16:17:05:d9:a0:
09:34:3b:0d:34:0b:54:21:e8:6f:d0:10:69:e8:79:
84:14:fb:99:97:23:10:00:ab:ae:0e:3f:6b:1b:a5:
4b:f0:1a:7d:1d:8d:50:ea:6f:7d:03:3d:f7:2c:73:
77:b3:28:db:fd:17:e7:94:ed:d7:c0:05:d9:50:b8:
37:ef:c3:7a:24:5a:2e:7f:86:dc:ab:64:11:40:93:
66:6d:63:f4:79:21:73:30:3f:70:27:7e:aa:32:5a:
76:b0:b6:f3:08:b1:43:9b:fa:f9:78:91:d5:6c:ee:
18:44:42:25:e2:39:11:46:bc:99:0e:f2:85:28:e3:
9c:1f:a6:28:cb:e5:7e:5b:c1:49:c0:79:9f:dd:ed:
d6:9a:a9:4b:be:7a:3d:9b:68:93:4d:fb:56:c6:1e:
5d:36:d7:bc:e1:8d:91:0e:5c:a1:df:2f:a3:a3:6d:
90:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:28:58:64:A4:72:1F:2E:DC:C7:FA:52:0F:83:51:24:68:1A:07:8D
X509v3 Authority Key Identifier:
keyid:99:B8:FD:29:2C:8A:1B:89:6B:87:52:34:4A:3D:A9:23:78:F2:AE:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:69:8e:de:d7:27:71:7d:f1:04:40:d4:87:2b:21:bd:aa:cc:
82:90:d3:57:65:57:f2:7b:cd:27:c0:07:57:35:3e:4d:0d:5b:
21:1a:0b:93:46:c5:89:b0:e9:90:9a:ed:1a:26:a3:13:a1:d2:
f7:f7:97:c2:28:2c:c2:bc:74:86:08:75:28:13:97:4e:08:8c:
1c:a8:00:ea:b5:90:2d:83:c8:ac:21:4c:43:3b:84:63:77:76:
9f:7d:94:16:52:79:bb:1b:d0:da:42:a6:71:ce:e9:fb:18:9e:
22:08:d9:80:72:21:f6:42:3d:04:f6:bb:09:a9:3b:92:9a:6e:
f8:37:1f:82:c3:a5:0b:b0:8e:62:97:e1:a8:80:f2:05:00:92:
75:2f:5b:3b:6f:17:45:a3:a1:ae:c3:ff:34:2e:25:c5:d7:74:
6e:61:e6:90:f7:2a:a8:60:eb:ff:29:35:dd:a0:36:3b:4a:62:
b2:92:23:56:48:fe:ac:b3:c6:df:ee:43:e2:11:1c:2d:1e:4e:
07:bc:2f:8c:5b:aa:ab:99:c0:84:23:6d:ea:8c:6d:d4:77:c8:
4c:77:58:aa:2b:40:38:4e:29:75:a4:61:1c:e7:24:62:6d:71:
c2:1c:1b:d8:49:22:f2:c2:b6:23:92:0d:7d:b0:22:04:d0:d8:
4a:cd:c8:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNkDmTpGyPO/lEbdxtSq/jZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5YjhmZDI5MmM4YTFiODk2Yjg3NTIzNDRhM2RhOTIzNzhm
MmFlNWEwHhcNMjQxMTI1MTYwMTI1WhcNMjQxMTI2MTYwMTI1WjAzMTEwLwYDVQQD
EyhjZjI4NTg2NGE0NzIxZjJlZGNjN2ZhNTIwZjgzNTEyNDY4MWEwNzhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvymMwVFIaBVzCLA/2ijN1CLsQjtw
XFqVbf+prCyRGPYwcsZnZDx+AP0gvUXx/9vzD/w1LOlc7TS/viwLKtVm71jgmXUV
+NoetfRqR/J/Jdk/DsVXFhcF2aAJNDsNNAtUIehv0BBp6HmEFPuZlyMQAKuuDj9r
G6VL8Bp9HY1Q6m99Az33LHN3syjb/RfnlO3XwAXZULg378N6JFouf4bcq2QRQJNm
bWP0eSFzMD9wJ36qMlp2sLbzCLFDm/r5eJHVbO4YREIl4jkRRryZDvKFKOOcH6Yo
y+V+W8FJwHmf3e3WmqlLvno9m2iTTftWxh5dNte84Y2RDlyh3y+jo22QqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM8oWGSkch8u3Mf6Ug+DUSRoGgeNMB8GA1UdIwQY
MBaAFJm4/SksihuJa4dSNEo9qSN48q5aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWJqOUtTeUtHNGxyaDFJMFNqMnBJM2p5cmxvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9hMjhjYTYtYWYyZi00MGNkLWI1NDkt
N2VlYWQxNDYxYTU0LzEvbWJqOUtTeUtHNGxyaDFJMFNqMnBJM2p5cmxvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC9hMjhjYTYtYWYyZi00MGNkLWI1NDktN2VlYWQxNDYxYTU0
LzEvbWJqOUtTeUtHNGxyaDFJMFNqMnBJM2p5cmxvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIWmO3tcn
cX3xBEDUhyshvarMgpDTV2VX8nvNJ8AHVzU+TQ1bIRoLk0bFibDpkJrtGiajE6HS
9/eXwigswrx0hgh1KBOXTgiMHKgA6rWQLYPIrCFMQzuEY3d2n32UFlJ5uxvQ2kKm
cc7p+xieIgjZgHIh9kI9BPa7Cak7kppu+DcfgsOlC7COYpfhqIDyBQCSdS9bO28X
RaOhrsP/NC4lxdd0bmHmkPcqqGDr/yk13aA2O0pispIjVkj+rLPG3+5D4hEcLR5O
B7wvjFuqq5nAhCNt6oxt1HfITHdYqitAOE4pdaRhHOckYm1xwhwb2Eki8sK2I5IN
fbAiBNDYSs3Igg==
-----END CERTIFICATE-----
Generated at Mon Nov 25 18:28:10 2024 by rpki-client on console-fra.rpki-client.org