Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
File: OkjgM962SsQkPHLOiZ1Tgi32mW0.mft (raw, json)
Hash identifier: ucr5G0KUm4kPp49FyQ0EBGkjZ12sB8ncaT55jM1/utY=
Subject key identifier: E1:12:37:1E:65:B2:EC:3D:34:51:58:13:C9:E7:9F:3C:71:9E:C8:AE
Authority key identifier: 3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
Certificate issuer: /CN=3a48e033deb64ac4243c72ce899d53822df6996d
Certificate serial: 019365FC90276AE4CB302AEAB8ACA4E4F3DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
Manifest number: 130A
Signing time: Tue 26 Nov 2024 01:01:10 +0000
Manifest this update: Tue 26 Nov 2024 01:01:10 +0000
Manifest next update: Wed 27 Nov 2024 01:01:10 +0000
Files and hashes: 1: OkjgM962SsQkPHLOiZ1Tgi32mW0.crl (hash: q11aPywdqXIxbEnOiFFASVUBzFbRO+KluLHOdeRh7lo=)
2: r3VfElHFlzgK18PLPSTKOe0t4zY.roa (hash: qDgPmuY3Bge/MAqaTZc/fphRBdx65Bthn+EKEw8dADI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:65:fc:90:27:6a:e4:cb:30:2a:ea:b8:ac:a4:e4:f3:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a48e033deb64ac4243c72ce899d53822df6996d
Validity
Not Before: Nov 26 01:01:10 2024 GMT
Not After : Nov 27 01:01:10 2024 GMT
Subject: CN=e112371e65b2ec3d34515813c9e79f3c719ec8ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fc:cc:56:7e:d2:1a:af:2b:63:a1:75:f5:b5:
57:36:7e:f5:28:77:4b:13:3b:fe:6b:dd:47:cd:1d:
8b:7d:7e:17:f9:79:72:99:94:c1:59:e6:b1:63:2d:
09:1f:d1:ae:4d:27:ea:a2:b2:65:9d:3f:c0:80:43:
56:30:12:7b:b8:d0:8f:75:07:53:88:a5:e1:fd:c4:
87:d0:54:4f:c2:67:74:cf:7b:ea:44:95:01:b5:2a:
9c:25:b6:56:ae:ad:21:e4:8d:7c:4f:5a:c2:f8:38:
c4:16:79:6d:29:d5:57:2c:cc:77:3c:70:33:d9:1c:
83:da:b1:bc:97:36:8e:0e:be:05:f0:77:a9:3c:df:
c7:90:42:e4:b3:37:dd:e8:28:15:c5:d4:08:08:e6:
84:bb:02:2a:d2:79:ad:b3:99:c9:9e:86:23:5c:df:
73:9f:ed:10:19:b5:e6:f1:81:06:ea:80:ff:25:4e:
4d:56:49:78:58:9c:d8:46:47:16:5a:ca:d4:e0:46:
63:cd:57:d2:90:1a:66:96:f3:b0:0b:34:85:58:c6:
d3:a6:12:c1:28:8e:cc:db:e5:07:7a:4c:f7:bb:96:
95:4a:4c:13:5c:ee:83:8f:60:fa:ee:f3:4d:c9:cc:
b3:ed:d8:44:47:e3:da:01:a1:d4:a4:dc:ca:2a:1c:
5a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:12:37:1E:65:B2:EC:3D:34:51:58:13:C9:E7:9F:3C:71:9E:C8:AE
X509v3 Authority Key Identifier:
keyid:3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:81:e4:92:35:a7:54:0a:ff:da:1c:0d:89:21:f5:b8:c3:22:
00:97:50:6a:1f:ff:07:60:5c:c4:c5:fb:e4:05:31:f3:fa:01:
de:b2:1f:0e:ec:34:22:e2:47:87:a4:7b:03:04:fa:ec:12:fc:
64:2b:cc:b5:ab:57:d1:a5:57:1f:fe:b6:d1:cc:88:c3:29:9a:
64:e6:5d:8a:a9:3e:ce:1a:c6:92:ba:ec:b7:42:67:1c:2d:b6:
b2:51:9e:05:7b:0d:fa:39:e4:b5:fe:90:48:b7:9b:aa:7c:31:
85:75:fb:8b:a5:32:17:46:ca:ef:c8:e0:c3:e9:39:bc:35:43:
5b:6f:b0:bb:3d:34:9f:ed:c8:b7:e1:09:ed:aa:c1:d0:06:18:
92:f1:ea:eb:2b:e9:0a:06:de:89:2f:ea:bf:23:c9:eb:75:09:
02:3a:d5:13:e3:ce:c4:e8:23:b6:de:48:89:d1:8f:1f:87:88:
45:6c:62:9f:5e:b4:c3:21:bd:7f:39:80:63:67:9f:3c:ae:8a:
6c:7d:cb:53:4f:8f:66:ef:ea:fb:bb:d2:de:c1:90:b3:82:9d:
db:5b:b5:6d:d4:79:23:0e:2e:f2:57:5e:2f:41:f5:44:fb:cd:
1a:a0:ad:f3:94:e1:10:9a:88:e5:54:3c:28:aa:b2:55:3c:65:
43:33:cd:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNl/JAnauTLMCrquKyk5PPbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhNDhlMDMzZGViNjRhYzQyNDNjNzJjZTg5OWQ1MzgyMmRm
Njk5NmQwHhcNMjQxMTI2MDEwMTEwWhcNMjQxMTI3MDEwMTEwWjAzMTEwLwYDVQQD
EyhlMTEyMzcxZTY1YjJlYzNkMzQ1MTU4MTNjOWU3OWYzYzcxOWVjOGFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo/zMVn7SGq8rY6F19bVXNn71KHdL
Ezv+a91HzR2LfX4X+XlymZTBWeaxYy0JH9GuTSfqorJlnT/AgENWMBJ7uNCPdQdT
iKXh/cSH0FRPwmd0z3vqRJUBtSqcJbZWrq0h5I18T1rC+DjEFnltKdVXLMx3PHAz
2RyD2rG8lzaODr4F8HepPN/HkELkszfd6CgVxdQICOaEuwIq0nmts5nJnoYjXN9z
n+0QGbXm8YEG6oD/JU5NVkl4WJzYRkcWWsrU4EZjzVfSkBpmlvOwCzSFWMbTphLB
KI7M2+UHekz3u5aVSkwTXO6Dj2D67vNNycyz7dhER+PaAaHUpNzKKhxaLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOESNx5lsuw9NFFYE8nnnzxxnsiuMB8GA1UdIwQY
MBaAFDpI4DPetkrEJDxyzomdU4It9pltMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2tqZ005NjJTc1FrUEhMT2laMVRnaTMybVcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy83ZmE3YjAtYWNlNC00OTJkLThlOTEt
YzUzMjFkYzllNjRiLzEvT2tqZ005NjJTc1FrUEhMT2laMVRnaTMybVcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy83ZmE3YjAtYWNlNC00OTJkLThlOTEtYzUzMjFkYzllNjRi
LzEvT2tqZ005NjJTc1FrUEhMT2laMVRnaTMybVcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiIHkkjWn
VAr/2hwNiSH1uMMiAJdQah//B2BcxMX75AUx8/oB3rIfDuw0IuJHh6R7AwT67BL8
ZCvMtatX0aVXH/620cyIwymaZOZdiqk+zhrGkrrst0JnHC22slGeBXsN+jnktf6Q
SLebqnwxhXX7i6UyF0bK78jgw+k5vDVDW2+wuz00n+3It+EJ7arB0AYYkvHq6yvp
CgbeiS/qvyPJ63UJAjrVE+POxOgjtt5IidGPH4eIRWxin160wyG9fzmAY2efPK6K
bH3LU0+PZu/q+7vS3sGQs4Kd21u1bdR5Iw4u8ldeL0H1RPvNGqCt85ThEJqI5VQ8
KKqyVTxlQzPN/A==
-----END CERTIFICATE-----
Generated at Tue Nov 26 09:32:11 2024 by rpki-client on console-fra.rpki-client.org