Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
File: 2CsoRvCTvJQWBBvmiix4MWHrBN8.mft (raw, json)
Hash identifier: HjJ2+TmiVBj7tIZD1CDLze9Lf26xWtl48NzTXQrfUoM=
Subject key identifier: 7D:CA:11:39:1D:7B:13:99:A5:52:1C:B2:3B:54:02:ED:2F:01:EC:C2
Authority key identifier: D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF
Certificate issuer: /CN=d82b2846f093bc9416041be68a2c783161eb04df
Certificate serial: 019406EAF651708C50792DE4B14020BA4CFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
Manifest number: 0573
Signing time: Fri 27 Dec 2024 07:00:49 +0000
Manifest this update: Fri 27 Dec 2024 07:00:49 +0000
Manifest next update: Sat 28 Dec 2024 07:00:49 +0000
Files and hashes: 1: 2CsoRvCTvJQWBBvmiix4MWHrBN8.crl (hash: 9u9K//t8nBgKxmOpnZnwQpftwZqL/K60U27Xp87BPSk=)
2: VoILGmeBPHgIyhUzEaezncov9wY.roa (hash: VK5104+XzPhqmyo3EDTDVjcZYGmGqpJH2TX1PMKANpU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 00:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:06:ea:f6:51:70:8c:50:79:2d:e4:b1:40:20:ba:4c:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d82b2846f093bc9416041be68a2c783161eb04df
Validity
Not Before: Dec 27 07:00:49 2024 GMT
Not After : Dec 28 07:00:49 2024 GMT
Subject: CN=7dca11391d7b1399a5521cb23b5402ed2f01ecc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e8:15:b2:f5:5e:eb:5a:64:ac:86:9f:7d:6b:
03:87:89:15:3f:86:90:98:24:ea:fb:6e:d3:8d:60:
ab:97:79:df:16:46:8d:e3:1c:6c:90:88:f5:b5:82:
80:32:10:65:d5:b6:4c:96:40:27:e2:1f:03:ab:39:
9d:ef:0f:28:e3:28:63:c6:20:a2:c0:3c:ff:33:51:
44:23:fe:49:16:77:b8:b1:d6:3b:3a:39:d4:65:31:
3e:de:2e:2c:c8:2a:1f:c8:d9:6a:e0:dc:61:db:8b:
b7:7d:3e:ce:29:a8:e4:49:5d:cd:2e:38:e8:6f:01:
99:06:1a:c0:6b:8f:50:77:de:26:b0:a8:3f:bd:8d:
bd:5c:de:5f:7d:ad:e3:3f:64:69:6c:7f:4a:ad:1f:
52:dc:51:9c:ec:c3:d4:a2:3d:f7:57:1b:18:02:c0:
40:6e:e6:fc:f5:13:af:d3:30:29:5b:05:2b:0e:f7:
23:cf:2b:ca:3f:75:eb:5e:02:d8:f5:57:c0:71:c6:
7b:b7:b8:54:7c:53:89:9f:df:a6:83:9c:7a:93:78:
40:87:01:33:87:93:fe:df:52:23:7b:3c:c2:4d:1e:
fd:d5:0d:2d:65:01:80:7e:04:bf:83:6b:f5:b3:2f:
44:92:6d:dc:b7:2e:2c:05:00:53:96:71:71:d5:e1:
0d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:CA:11:39:1D:7B:13:99:A5:52:1C:B2:3B:54:02:ED:2F:01:EC:C2
X509v3 Authority Key Identifier:
keyid:D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:7a:0a:0f:e9:29:90:21:d3:47:63:b0:5f:23:f5:f2:25:f6:
70:a7:4a:20:d5:8c:cf:6a:f7:7b:61:10:e8:b1:e3:1d:9b:e5:
ec:ff:a8:51:72:20:de:46:7d:11:82:ee:7d:69:81:4e:29:61:
37:21:d8:94:bb:20:eb:4b:43:20:5f:14:37:49:49:7d:eb:7b:
8e:40:f0:1f:1b:d1:3b:94:6f:25:97:96:78:b5:b3:3f:08:5d:
7b:5b:7a:9e:df:16:3f:e5:bd:94:3a:f3:fc:d1:d8:e6:a9:c2:
2b:6e:35:d8:14:3c:b4:87:2b:3d:b2:dc:04:d5:3e:f0:45:b6:
dc:14:f0:1b:b9:5d:1b:58:9d:12:a1:53:85:23:a6:dd:d9:4f:
12:d4:99:68:fe:ac:b6:71:af:e1:8d:60:5f:0b:40:81:63:4e:
b5:e9:76:3c:38:49:93:56:a6:da:1a:21:68:48:40:33:74:dd:
0f:df:6f:1b:fd:5f:34:f1:b1:3a:da:73:d9:b3:ce:e4:62:58:
b7:e9:b7:f7:2c:03:13:3f:59:c8:4a:f5:69:49:e0:1b:76:16:
92:f8:6d:c7:e9:ba:75:94:17:15:b9:b2:1d:f3:31:2a:c5:4d:
9d:e5:b9:3c:0a:ca:a3:b6:61:0a:d4:8f:39:6e:83:56:47:0d:
e5:e6:f9:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZQG6vZRcIxQeS3ksUAgukz9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4MmIyODQ2ZjA5M2JjOTQxNjA0MWJlNjhhMmM3ODMxNjFl
YjA0ZGYwHhcNMjQxMjI3MDcwMDQ5WhcNMjQxMjI4MDcwMDQ5WjAzMTEwLwYDVQQD
Eyg3ZGNhMTEzOTFkN2IxMzk5YTU1MjFjYjIzYjU0MDJlZDJmMDFlY2MyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuegVsvVe61pkrIaffWsDh4kVP4aQ
mCTq+27TjWCrl3nfFkaN4xxskIj1tYKAMhBl1bZMlkAn4h8Dqzmd7w8o4yhjxiCi
wDz/M1FEI/5JFne4sdY7OjnUZTE+3i4syCofyNlq4Nxh24u3fT7OKajkSV3NLjjo
bwGZBhrAa49Qd94msKg/vY29XN5ffa3jP2RpbH9KrR9S3FGc7MPUoj33VxsYAsBA
bub89ROv0zApWwUrDvcjzyvKP3XrXgLY9VfAccZ7t7hUfFOJn9+mg5x6k3hAhwEz
h5P+31IjezzCTR791Q0tZQGAfgS/g2v1sy9Ekm3cty4sBQBTlnFx1eENOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH3KETkdexOZpVIcsjtUAu0vAezCMB8GA1UdIwQY
MBaAFNgrKEbwk7yUFgQb5ooseDFh6wTfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkNzb1J2Q1R2SlFXQkJ2bWlpeDRNV0hyQk44LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy81YjJkNmUtODI0Ny00NDhmLWEzNTgt
NTQ3M2VlMWRhYTliLzEvMkNzb1J2Q1R2SlFXQkJ2bWlpeDRNV0hyQk44Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy81YjJkNmUtODI0Ny00NDhmLWEzNTgtNTQ3M2VlMWRhYTli
LzEvMkNzb1J2Q1R2SlFXQkJ2bWlpeDRNV0hyQk44LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJXoKD+kp
kCHTR2OwXyP18iX2cKdKINWMz2r3e2EQ6LHjHZvl7P+oUXIg3kZ9EYLufWmBTilh
NyHYlLsg60tDIF8UN0lJfet7jkDwHxvRO5RvJZeWeLWzPwhde1t6nt8WP+W9lDrz
/NHY5qnCK2412BQ8tIcrPbLcBNU+8EW23BTwG7ldG1idEqFThSOm3dlPEtSZaP6s
tnGv4Y1gXwtAgWNOtel2PDhJk1am2hohaEhAM3TdD99vG/1fNPGxOtpz2bPO5GJY
t+m39ywDEz9ZyEr1aUngG3YWkvhtx+m6dZQXFbmyHfMxKsVNneW5PArKo7ZhCtSP
OW6DVkcN5eb5KA==
-----END CERTIFICATE-----
Generated at Fri Dec 27 10:01:13 2024 by rpki-client on console-ams.rpki-client.org