Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
File: tPSWmNCOjCg8DfKoLxaZfmJZurY.mft (raw, json)
Hash identifier: a8s0pQJOxxz+/IKmmOR5L2bQoTizTpb2E7WoaKLOJ0w=
Subject key identifier: D8:04:4D:F8:DE:57:F2:B5:5D:8D:14:15:7E:C9:50:E8:23:29:85:EC
Authority key identifier: B4:F4:96:98:D0:8E:8C:28:3C:0D:F2:A8:2F:16:99:7E:62:59:BA:B6
Certificate issuer: /CN=b4f49698d08e8c283c0df2a82f16997e6259bab6
Certificate serial: 019369D9B9A8463187604A70C76E8B324B77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
Manifest number: 0547
Signing time: Tue 26 Nov 2024 19:01:36 +0000
Manifest this update: Tue 26 Nov 2024 19:01:36 +0000
Manifest next update: Wed 27 Nov 2024 19:01:36 +0000
Files and hashes: 1: nfkGuZvqoPK3fNHGrJ26HFR7mGg.roa (hash: 8Btqxaxvm07vz/8BHD7jJlHtcAVkm/4269S4XN5woeY=)
2: tPSWmNCOjCg8DfKoLxaZfmJZurY.crl (hash: H7Lkkf5cVs6Iy21xPCovX5cWdGbXzPxt2nF2c/4Dc8Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:d9:b9:a8:46:31:87:60:4a:70:c7:6e:8b:32:4b:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f49698d08e8c283c0df2a82f16997e6259bab6
Validity
Not Before: Nov 26 19:01:36 2024 GMT
Not After : Nov 27 19:01:36 2024 GMT
Subject: CN=d8044df8de57f2b55d8d14157ec950e8232985ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:01:98:de:e8:e4:81:ad:98:94:b3:42:9e:3c:
47:44:97:19:71:6b:9f:31:1e:66:90:05:d7:df:30:
6a:b7:1d:70:81:a6:d5:3d:a3:87:4e:fa:fe:77:ed:
38:85:b0:73:7a:ca:86:4f:d2:45:c0:13:f1:d6:d3:
8c:26:30:6f:cc:9a:32:85:48:b6:74:bd:51:de:75:
bc:db:54:62:26:c5:55:93:8e:d6:3f:20:62:f1:b8:
a2:49:9a:34:b1:9c:b0:f1:27:ec:27:da:93:c1:4e:
5a:cf:e8:c9:c2:ad:ea:e6:16:77:6a:7c:61:19:88:
f4:22:42:96:f9:31:97:fd:69:8f:c3:22:eb:1f:3c:
44:1e:dc:0c:de:9f:83:4c:07:65:0e:32:00:6c:b5:
cc:fb:0c:69:85:74:33:7f:42:e7:2a:59:4c:c6:db:
9e:08:b5:84:f9:67:e4:c1:bb:48:b6:6f:7e:3b:7e:
e6:28:32:0e:c7:90:66:7a:67:ca:0e:21:b0:d8:40:
71:e8:39:ac:de:5c:b9:79:13:62:37:b9:79:8e:a6:
fc:a5:20:17:17:fb:30:ad:10:33:97:d3:b8:cb:ec:
fe:18:5f:e9:db:6f:aa:94:f2:c5:1d:ed:cf:35:ea:
c5:43:d1:00:87:67:45:f2:2c:5b:06:ca:59:c5:3e:
25:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:04:4D:F8:DE:57:F2:B5:5D:8D:14:15:7E:C9:50:E8:23:29:85:EC
X509v3 Authority Key Identifier:
keyid:B4:F4:96:98:D0:8E:8C:28:3C:0D:F2:A8:2F:16:99:7E:62:59:BA:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:e9:b4:75:96:79:e3:66:d0:f4:28:6b:da:f4:20:e3:43:d1:
0f:a6:a7:d4:38:9b:1e:d6:d4:44:4b:3a:7f:e4:e7:56:68:79:
93:89:ce:3a:a5:6f:4a:56:66:a9:f9:58:ab:48:cb:1a:d1:d8:
39:45:5c:0f:17:85:66:69:fb:c7:ff:70:99:e3:e5:bb:0f:28:
33:3e:34:df:9f:a2:a9:e5:94:ce:b0:10:fe:be:a3:75:00:ba:
ba:65:a0:a0:c5:eb:13:80:7e:c1:25:ea:bf:98:44:ca:95:8d:
f6:a6:da:46:89:df:29:23:fb:3d:d4:8b:18:f5:29:4e:0b:46:
de:9e:5c:b2:cb:a9:ca:4e:17:72:74:69:e3:d0:b8:49:ae:a5:
31:e5:e1:42:9a:ad:54:c7:c0:e1:79:e6:22:21:78:18:89:f6:
0a:22:81:4e:8d:14:de:af:4b:6f:f9:4b:65:7b:52:96:58:9c:
6a:ee:23:b7:2d:40:c9:b1:26:36:23:79:d5:ca:15:13:66:1e:
0e:72:28:0c:00:ee:57:a8:78:9d:4b:dd:ef:d4:6b:1f:b2:2d:
ff:e9:e7:f8:82:07:54:5f:c8:f0:d7:f5:56:f8:68:6c:23:17:
99:a1:5c:eb:9d:f7:cc:57:b7:df:b1:ba:68:b2:49:3b:3c:0d:
02:88:f2:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNp2bmoRjGHYEpwx26LMkt3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0ZjQ5Njk4ZDA4ZThjMjgzYzBkZjJhODJmMTY5OTdlNjI1
OWJhYjYwHhcNMjQxMTI2MTkwMTM2WhcNMjQxMTI3MTkwMTM2WjAzMTEwLwYDVQQD
EyhkODA0NGRmOGRlNTdmMmI1NWQ4ZDE0MTU3ZWM5NTBlODIzMjk4NWVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApAGY3ujkga2YlLNCnjxHRJcZcWuf
MR5mkAXX3zBqtx1wgabVPaOHTvr+d+04hbBzesqGT9JFwBPx1tOMJjBvzJoyhUi2
dL1R3nW821RiJsVVk47WPyBi8biiSZo0sZyw8SfsJ9qTwU5az+jJwq3q5hZ3anxh
GYj0IkKW+TGX/WmPwyLrHzxEHtwM3p+DTAdlDjIAbLXM+wxphXQzf0LnKllMxtue
CLWE+WfkwbtItm9+O37mKDIOx5BmemfKDiGw2EBx6Dms3ly5eRNiN7l5jqb8pSAX
F/swrRAzl9O4y+z+GF/p22+qlPLFHe3PNerFQ9EAh2dF8ixbBspZxT4lhwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNgETfjeV/K1XY0UFX7JUOgjKYXsMB8GA1UdIwQY
MBaAFLT0lpjQjowoPA3yqC8WmX5iWbq2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFBTV21OQ09qQ2c4RGZLb0x4YVpmbUpadXJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9mNjNkNzYtMmZiNi00M2EyLWJmZWMt
OWY3YWEwOTQzMDNiLzEvdFBTV21OQ09qQ2c4RGZLb0x4YVpmbUpadXJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS9mNjNkNzYtMmZiNi00M2EyLWJmZWMtOWY3YWEwOTQzMDNi
LzEvdFBTV21OQ09qQ2c4RGZLb0x4YVpmbUpadXJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOum0dZZ5
42bQ9Chr2vQg40PRD6an1DibHtbUREs6f+TnVmh5k4nOOqVvSlZmqflYq0jLGtHY
OUVcDxeFZmn7x/9wmePluw8oMz4035+iqeWUzrAQ/r6jdQC6umWgoMXrE4B+wSXq
v5hEypWN9qbaRonfKSP7PdSLGPUpTgtG3p5cssupyk4XcnRp49C4Sa6lMeXhQpqt
VMfA4XnmIiF4GIn2CiKBTo0U3q9Lb/lLZXtSllicau4jty1AybEmNiN51coVE2Ye
DnIoDADuV6h4nUvd79RrH7It/+nn+IIHVF/I8Nf1VvhobCMXmaFc6533zFe337G6
aLJJOzwNAojytA==
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:33:42 2024 by rpki-client on console-ams.rpki-client.org