Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/d15b7f-708f-4155-8d31-c80a723d34f7/1/Z42bouOWhCO-_F7tBXGbMABX18s.mft
File: Z42bouOWhCO-_F7tBXGbMABX18s.mft (raw, json)
Hash identifier: nhfoKAA9cPxhiurUxBuSG/rk5zm4QImpcoNqt9QX51w=
Subject key identifier: A7:8F:31:55:33:16:B3:94:B6:76:26:B3:28:60:41:DB:26:0B:D2:B5
Authority key identifier: 67:8D:9B:A2:E3:96:84:23:BE:FC:5E:ED:05:71:9B:30:00:57:D7:CB
Certificate issuer: /CN=678d9ba2e3968423befc5eed05719b300057d7cb
Certificate serial: 01935840584A0F0031690E8079C856F5ED72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z42bouOWhCO-_F7tBXGbMABX18s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/d15b7f-708f-4155-8d31-c80a723d34f7/1/Z42bouOWhCO-_F7tBXGbMABX18s.mft
Manifest number: 68
Signing time: Sat 23 Nov 2024 09:00:31 +0000
Manifest this update: Sat 23 Nov 2024 09:00:31 +0000
Manifest next update: Sun 24 Nov 2024 09:00:31 +0000
Files and hashes: 1: Z42bouOWhCO-_F7tBXGbMABX18s.crl (hash: Y9wjlH7LoArr1dRhVAK7LklXQjyINRl10Fkr4a2At54=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/d15b7f-708f-4155-8d31-c80a723d34f7/1/Z42bouOWhCO-_F7tBXGbMABX18s.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/d15b7f-708f-4155-8d31-c80a723d34f7/1/Z42bouOWhCO-_F7tBXGbMABX18s.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z42bouOWhCO-_F7tBXGbMABX18s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:40:58:4a:0f:00:31:69:0e:80:79:c8:56:f5:ed:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=678d9ba2e3968423befc5eed05719b300057d7cb
Validity
Not Before: Nov 23 09:00:31 2024 GMT
Not After : Nov 24 09:00:31 2024 GMT
Subject: CN=a78f31553316b394b67626b3286041db260bd2b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:6b:9a:5d:9b:ad:83:57:95:34:87:bf:67:fa:
b6:7c:64:48:aa:59:02:6d:01:d3:3c:bd:bf:f3:a5:
85:bf:c3:af:35:a3:23:69:58:1d:05:c7:0c:a3:be:
46:cc:e9:a7:73:db:1b:de:6a:50:8b:d7:8a:33:0a:
f9:aa:15:0d:ee:24:5f:28:33:40:1a:fd:e8:c5:09:
64:54:d2:e8:22:f6:ca:c3:73:7a:49:1b:df:0c:1a:
37:c1:af:f1:8a:69:82:d9:20:d5:4d:1d:88:b2:f4:
6c:8b:f2:d4:fd:5d:47:ba:fa:c9:f5:30:fe:ce:af:
b9:0c:d8:3a:04:f9:48:44:42:7e:cc:cb:e8:58:9f:
8c:5b:55:f9:27:2b:e0:dc:69:81:85:96:7b:bf:46:
ee:9f:34:0b:54:f1:79:78:b7:3c:4c:98:89:b8:c7:
88:87:0b:e2:ad:9e:08:78:0c:c2:4a:13:00:ee:d2:
47:09:0a:13:38:9c:53:ed:b2:df:37:88:a7:40:f7:
0d:9e:4c:b9:5f:9f:f5:18:66:54:72:de:2a:7c:e5:
86:a3:bc:6f:32:08:b6:2e:b2:9e:ce:4f:75:ad:55:
bc:9d:e5:6a:bc:06:46:7c:7b:91:e2:81:1e:2c:ff:
95:a6:33:9f:db:c1:37:d0:d6:b3:d5:37:2a:93:9a:
5e:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:8F:31:55:33:16:B3:94:B6:76:26:B3:28:60:41:DB:26:0B:D2:B5
X509v3 Authority Key Identifier:
keyid:67:8D:9B:A2:E3:96:84:23:BE:FC:5E:ED:05:71:9B:30:00:57:D7:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z42bouOWhCO-_F7tBXGbMABX18s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/d15b7f-708f-4155-8d31-c80a723d34f7/1/Z42bouOWhCO-_F7tBXGbMABX18s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/d15b7f-708f-4155-8d31-c80a723d34f7/1/Z42bouOWhCO-_F7tBXGbMABX18s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:b0:9b:e8:36:34:b8:ba:c1:9e:af:c9:1f:94:e2:2d:0f:e8:
17:6e:fe:3f:ed:fe:e5:af:ff:a9:bf:29:45:0e:4e:ac:91:2a:
be:46:27:ec:e9:34:73:9f:33:e9:34:16:a1:81:3d:96:2f:e3:
3b:1b:10:f0:3b:1f:da:4b:96:f1:29:b3:88:2d:9c:52:3e:e4:
cd:3d:76:5c:65:f7:ff:40:d0:4f:c7:4e:32:be:29:b7:07:68:
19:f5:b0:84:8e:1a:2e:e7:1b:8b:9f:b6:4d:76:a8:39:76:0e:
05:23:86:19:dc:f5:d7:93:40:c1:08:60:a2:3b:fc:69:fd:88:
84:5e:01:68:01:44:66:3b:2d:57:3a:b7:27:4a:58:95:88:9c:
86:16:ad:af:91:db:3b:87:69:45:c6:2d:3d:19:a3:91:c7:b8:
be:f9:92:de:68:0e:42:3b:3d:c3:cc:37:09:4f:2e:d9:78:49:
6f:8b:36:38:61:4e:fe:8d:d8:6f:e3:3a:87:63:02:d5:82:9b:
e2:c7:ca:7d:a7:f5:3c:7c:2b:41:3f:e1:f3:45:d6:1d:34:62:
0e:40:d7:e5:6b:b0:c6:74:2a:0a:25:58:51:81:a9:0c:88:d1:
d4:02:4b:48:b7:9d:54:5b:57:62:ba:97:0a:f5:7c:6c:66:7d:
8e:43:c1:a9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNYQFhKDwAxaQ6AechW9e1yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3OGQ5YmEyZTM5Njg0MjNiZWZjNWVlZDA1NzE5YjMwMDA1
N2Q3Y2IwHhcNMjQxMTIzMDkwMDMxWhcNMjQxMTI0MDkwMDMxWjAzMTEwLwYDVQQD
EyhhNzhmMzE1NTMzMTZiMzk0YjY3NjI2YjMyODYwNDFkYjI2MGJkMmI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1muaXZutg1eVNIe/Z/q2fGRIqlkC
bQHTPL2/86WFv8OvNaMjaVgdBccMo75GzOmnc9sb3mpQi9eKMwr5qhUN7iRfKDNA
Gv3oxQlkVNLoIvbKw3N6SRvfDBo3wa/ximmC2SDVTR2IsvRsi/LU/V1HuvrJ9TD+
zq+5DNg6BPlIREJ+zMvoWJ+MW1X5Jyvg3GmBhZZ7v0bunzQLVPF5eLc8TJiJuMeI
hwvirZ4IeAzCShMA7tJHCQoTOJxT7bLfN4inQPcNnky5X5/1GGZUct4qfOWGo7xv
Mgi2LrKezk91rVW8neVqvAZGfHuR4oEeLP+VpjOf28E30Naz1Tcqk5peowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKePMVUzFrOUtnYmsyhgQdsmC9K1MB8GA1UdIwQY
MBaAFGeNm6LjloQjvvxe7QVxmzAAV9fLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjQyYm91T1doQ08tX0Y3dEJYR2JNQUJYMThzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kMTViN2YtNzA4Zi00MTU1LThkMzEt
YzgwYTcyM2QzNGY3LzEvWjQyYm91T1doQ08tX0Y3dEJYR2JNQUJYMThzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9kMTViN2YtNzA4Zi00MTU1LThkMzEtYzgwYTcyM2QzNGY3
LzEvWjQyYm91T1doQ08tX0Y3dEJYR2JNQUJYMThzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWLCb6DY0
uLrBnq/JH5TiLQ/oF27+P+3+5a//qb8pRQ5OrJEqvkYn7Ok0c58z6TQWoYE9li/j
OxsQ8Dsf2kuW8SmziC2cUj7kzT12XGX3/0DQT8dOMr4ptwdoGfWwhI4aLucbi5+2
TXaoOXYOBSOGGdz115NAwQhgojv8af2IhF4BaAFEZjstVzq3J0pYlYichhatr5Hb
O4dpRcYtPRmjkce4vvmS3mgOQjs9w8w3CU8u2XhJb4s2OGFO/o3Yb+M6h2MC1YKb
4sfKfaf1PHwrQT/h80XWHTRiDkDX5WuwxnQqCiVYUYGpDIjR1AJLSLedVFtXYrqX
CvV8bGZ9jkPBqQ==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:54:52 2024 by rpki-client on console-ams.rpki-client.org