Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
File: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft (raw, json)
Hash identifier: G1CTxWKoIX1SFOO4O3vNyj/TnPBJENbVp428GGIRtfI=
Subject key identifier: 64:33:74:DE:66:C8:C1:96:BB:66:84:95:BC:A5:BF:68:15:EA:88:36
Authority key identifier: D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
Certificate issuer: /CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Certificate serial: 019369D9B987A91D22FD39C051DE6DA1F167
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
Manifest number: 0D42
Signing time: Tue 26 Nov 2024 19:01:36 +0000
Manifest this update: Tue 26 Nov 2024 19:01:36 +0000
Manifest next update: Wed 27 Nov 2024 19:01:36 +0000
Files and hashes: 1: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl (hash: +ujgnNWltXHL41SWrRxdVX2wf54hNz1+DxRz0bre7cQ=)
2: OG3XOwCckIClse_-73KQEJwQCWE.roa (hash: rABrls9mDGA+WVLh8PFJY+Ndk2Al9x12CJiCXuIFhPU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:d9:b9:87:a9:1d:22:fd:39:c0:51:de:6d:a1:f1:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Validity
Not Before: Nov 26 19:01:36 2024 GMT
Not After : Nov 27 19:01:36 2024 GMT
Subject: CN=643374de66c8c196bb668495bca5bf6815ea8836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:05:1d:55:89:19:03:e0:2b:3f:97:d6:b6:65:
3e:02:59:23:76:0b:b2:11:28:d6:1c:8a:0e:74:66:
fa:30:e4:b8:46:56:61:69:06:a0:a2:18:2a:a4:b1:
20:01:2d:b3:a4:69:9f:fe:88:d3:a9:cf:12:0a:10:
a7:55:fb:20:13:0f:3a:93:00:28:0a:ab:48:c1:0b:
29:f7:5a:b6:a4:45:65:86:d2:6c:ca:6c:4f:dc:4d:
d3:9a:41:37:75:55:23:e0:06:42:cd:34:98:73:39:
b3:62:76:a0:c3:5c:df:e8:9a:80:0e:d2:d4:3d:81:
1e:e6:b1:9e:81:e3:88:24:0e:0c:62:5e:7a:8a:d8:
f6:b2:67:9c:fa:c1:c7:2e:ba:16:65:0c:a3:d4:e2:
59:c3:9c:0c:d5:d9:af:f9:a6:45:83:7d:4a:e6:d0:
17:ac:1f:c8:de:35:f6:0b:94:84:ab:84:96:f2:10:
72:58:f6:42:0f:de:09:4b:ac:3c:a5:ce:25:49:1b:
dc:9e:76:d6:f2:41:ef:f2:05:ee:91:f8:60:e9:fe:
99:1a:31:2c:b2:6f:0b:a6:99:4b:a3:8c:35:1d:09:
18:7f:87:a3:92:7b:7f:6e:d0:70:c1:4c:d2:d3:a4:
e0:5a:b1:04:04:10:e5:e9:b2:40:23:6f:c3:3b:de:
50:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:33:74:DE:66:C8:C1:96:BB:66:84:95:BC:A5:BF:68:15:EA:88:36
X509v3 Authority Key Identifier:
keyid:D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:dd:54:f0:1b:1f:e4:ed:fe:07:2e:05:9d:cf:de:ce:d1:89:
71:cf:2b:10:f9:f8:f4:3d:f8:b2:30:b1:4b:9b:cb:f3:d6:23:
ee:4b:4a:2f:98:e1:bd:40:5f:3b:6d:e2:54:9f:74:41:a3:d2:
a9:a9:aa:90:db:cb:7c:fc:83:a0:7e:b4:cb:d6:e5:38:e9:cd:
aa:2c:c6:e5:14:3c:82:c3:a0:8f:b2:08:e1:36:ae:26:23:d9:
fe:cd:52:64:5a:b6:26:5b:55:b5:80:5b:53:22:0a:77:51:0b:
ff:84:f8:6d:6a:36:16:37:58:20:81:74:97:f9:98:27:eb:f2:
10:71:5d:be:2f:26:cb:63:69:0f:9e:c3:fd:4b:81:4f:dd:23:
8e:f1:f9:59:9b:97:2e:d5:3c:6c:af:6e:e5:e8:70:bf:49:2e:
5b:2b:a7:eb:55:a7:b7:b9:74:cb:23:b4:a6:65:a3:e9:0a:2d:
a6:d1:1d:89:f2:8f:c9:7c:e1:1f:76:e5:90:b4:6f:ca:23:08:
5d:d0:e6:b6:07:ad:82:3b:a2:80:b6:ca:c4:fc:82:55:cb:9e:
b5:5c:9f:ee:d5:7e:31:cf:fb:41:66:f8:51:6a:83:8c:63:55:
fd:c4:89:27:18:c5:e7:92:8d:01:81:fc:27:6a:70:03:f0:47:
da:ea:25:59
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNp2bmHqR0i/TnAUd5tofFnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyYTNjOGNjNjNkMGU3ZTA2OWNhNTIzZjM0ZWZiMzk1M2Vl
MjFiNjUwHhcNMjQxMTI2MTkwMTM2WhcNMjQxMTI3MTkwMTM2WjAzMTEwLwYDVQQD
Eyg2NDMzNzRkZTY2YzhjMTk2YmI2Njg0OTViY2E1YmY2ODE1ZWE4ODM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuQUdVYkZA+ArP5fWtmU+Alkjdguy
ESjWHIoOdGb6MOS4RlZhaQagohgqpLEgAS2zpGmf/ojTqc8SChCnVfsgEw86kwAo
CqtIwQsp91q2pEVlhtJsymxP3E3TmkE3dVUj4AZCzTSYczmzYnagw1zf6JqADtLU
PYEe5rGegeOIJA4MYl56itj2smec+sHHLroWZQyj1OJZw5wM1dmv+aZFg31K5tAX
rB/I3jX2C5SEq4SW8hByWPZCD94JS6w8pc4lSRvcnnbW8kHv8gXukfhg6f6ZGjEs
sm8LpplLo4w1HQkYf4ejknt/btBwwUzS06TgWrEEBBDl6bJAI2/DO95QkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGQzdN5myMGWu2aElbylv2gV6og2MB8GA1UdIwQY
MBaAFNKjyMxj0OfgacpSPzTvs5U+4htlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHFQSXpHUFE1LUJweWxJX05PLXpsVDdpRzJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9kMGExZmUtMGI2NS00ZDUwLWFlMmYt
MTI4OTg2OTdhODYyLzEvMHFQSXpHUFE1LUJweWxJX05PLXpsVDdpRzJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS9kMGExZmUtMGI2NS00ZDUwLWFlMmYtMTI4OTg2OTdhODYy
LzEvMHFQSXpHUFE1LUJweWxJX05PLXpsVDdpRzJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABN1U8Bsf
5O3+By4Fnc/eztGJcc8rEPn49D34sjCxS5vL89Yj7ktKL5jhvUBfO23iVJ90QaPS
qamqkNvLfPyDoH60y9blOOnNqizG5RQ8gsOgj7II4TauJiPZ/s1SZFq2JltVtYBb
UyIKd1EL/4T4bWo2FjdYIIF0l/mYJ+vyEHFdvi8my2NpD57D/UuBT90jjvH5WZuX
LtU8bK9u5ehwv0kuWyun61Wnt7l0yyO0pmWj6QotptEdifKPyXzhH3blkLRvyiMI
XdDmtgetgjuigLbKxPyCVcuetVyf7tV+Mc/7QWb4UWqDjGNV/cSJJxjF55KNAYH8
J2pwA/BH2uolWQ==
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:33:09 2024 by rpki-client on console-ams.rpki-client.org