Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
File: I32X8VCOekR4mfWaVfuKpiQe9RA.mft (raw, json)
Hash identifier: M5nyGSb0zI/3V3e76wt/5DIzBWatcw7kivI89VPTc/0=
Subject key identifier: 0C:C8:21:1C:A0:AF:25:85:07:AA:E6:56:F5:A6:B6:05:F1:A7:A2:2E
Authority key identifier: 23:7D:97:F1:50:8E:7A:44:78:99:F5:9A:55:FB:8A:A6:24:1E:F5:10
Certificate issuer: /CN=237d97f1508e7a447899f59a55fb8aa6241ef510
Certificate serial: 01935651D17D507B4B0AF26B2BC477901D12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
Manifest number: 01FC
Signing time: Sat 23 Nov 2024 00:00:22 +0000
Manifest this update: Sat 23 Nov 2024 00:00:22 +0000
Manifest next update: Sun 24 Nov 2024 00:00:22 +0000
Files and hashes: 1: I32X8VCOekR4mfWaVfuKpiQe9RA.crl (hash: PGn9X04dAMhhUgmxgMXoTcMkdK+3NEPZ3VxFJi9HYD0=)
2: a5sndIa6q1MWjCv6c0Hx0qw5SH4.roa (hash: RH61QgBl/yDVDS1E1Gs5fg/X4mgGQP8802e2+m+iEKY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:51:d1:7d:50:7b:4b:0a:f2:6b:2b:c4:77:90:1d:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237d97f1508e7a447899f59a55fb8aa6241ef510
Validity
Not Before: Nov 23 00:00:22 2024 GMT
Not After : Nov 24 00:00:22 2024 GMT
Subject: CN=0cc8211ca0af258507aae656f5a6b605f1a7a22e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a9:ae:16:6d:b9:54:51:42:15:7a:2f:6f:7e:
19:5d:50:ee:5a:e1:c3:01:47:e6:aa:db:a2:8f:8b:
9a:ab:89:0b:58:29:33:e2:6d:a8:2b:20:c5:62:42:
96:08:ef:55:77:f4:b4:ac:dd:f4:85:df:14:bb:e2:
76:45:6b:8b:a8:0b:ed:37:bf:25:f3:32:42:1e:85:
f8:52:3b:2b:2b:c9:40:83:fd:8c:20:41:86:63:6c:
1a:c1:55:bd:66:84:1b:90:fe:38:92:60:ff:ca:e7:
7b:9f:56:e5:64:5c:8b:22:89:30:0b:31:54:58:62:
f5:59:f8:85:af:eb:be:c7:6e:03:05:f7:52:90:1e:
f2:06:8d:09:19:5b:e9:9e:06:6f:b2:f9:53:89:f6:
86:0b:4f:a7:6c:8d:4d:88:92:08:03:6e:82:24:c0:
6d:52:2d:48:40:40:ca:82:8f:f4:71:68:82:ce:4c:
1f:13:49:45:f0:d9:69:a3:01:80:25:03:28:d4:5e:
96:c2:8f:cc:0f:36:b0:ce:84:f2:af:05:03:fd:1c:
6f:c9:e3:59:94:33:f6:f4:f6:07:30:69:e5:8d:28:
49:3f:ad:45:75:00:ee:6c:2e:71:8d:dc:71:26:72:
f1:79:03:7d:46:4e:b9:d8:10:3f:45:b0:62:c2:49:
07:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:C8:21:1C:A0:AF:25:85:07:AA:E6:56:F5:A6:B6:05:F1:A7:A2:2E
X509v3 Authority Key Identifier:
keyid:23:7D:97:F1:50:8E:7A:44:78:99:F5:9A:55:FB:8A:A6:24:1E:F5:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:99:3e:dc:fd:c8:0d:6d:50:95:ac:5e:7b:65:c8:c1:66:ce:
d8:50:3b:86:03:c5:a6:65:59:fd:55:b3:86:f3:db:86:b3:82:
de:d8:03:1d:ca:03:1e:b7:4a:b6:64:91:67:e7:ef:71:96:95:
c0:a4:42:42:f5:ae:f3:4c:f4:fa:db:cf:25:a2:14:fd:e4:68:
6b:00:66:91:85:d1:f0:2f:ef:30:db:8b:5f:a8:2f:56:12:0d:
27:bc:95:51:ed:9a:04:14:05:3b:fe:d1:f5:f8:d4:43:cf:b6:
29:ca:b6:61:ef:d3:24:d9:0a:bc:d4:01:86:87:63:d6:0f:5e:
64:b2:cd:51:ff:3d:1e:2d:58:4a:1d:f6:6c:91:2f:62:44:2d:
f1:61:b3:d4:69:b8:bb:48:27:69:b6:90:14:45:51:07:e3:30:
0a:75:fa:1c:18:80:2f:a2:a7:8f:29:0b:86:c3:b4:9d:70:fa:
7e:ea:df:ca:14:64:42:ba:90:f5:44:9f:02:d7:f2:85:e8:36:
a6:59:f4:10:27:47:3a:23:ea:0d:1f:a8:95:6c:95:68:90:7a:
3e:2b:54:5d:64:25:12:f0:41:96:f0:f9:c8:8c:77:b4:84:34:
da:0a:f9:82:d3:28:14:5d:c7:25:84:7a:87:88:20:b9:3c:0a:
45:41:6e:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNWUdF9UHtLCvJrK8R3kB0SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzN2Q5N2YxNTA4ZTdhNDQ3ODk5ZjU5YTU1ZmI4YWE2MjQx
ZWY1MTAwHhcNMjQxMTIzMDAwMDIyWhcNMjQxMTI0MDAwMDIyWjAzMTEwLwYDVQQD
EygwY2M4MjExY2EwYWYyNTg1MDdhYWU2NTZmNWE2YjYwNWYxYTdhMjJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjKmuFm25VFFCFXovb34ZXVDuWuHD
AUfmqtuij4uaq4kLWCkz4m2oKyDFYkKWCO9Vd/S0rN30hd8Uu+J2RWuLqAvtN78l
8zJCHoX4UjsrK8lAg/2MIEGGY2wawVW9ZoQbkP44kmD/yud7n1blZFyLIokwCzFU
WGL1WfiFr+u+x24DBfdSkB7yBo0JGVvpngZvsvlTifaGC0+nbI1NiJIIA26CJMBt
Ui1IQEDKgo/0cWiCzkwfE0lF8NlpowGAJQMo1F6Wwo/MDzawzoTyrwUD/RxvyeNZ
lDP29PYHMGnljShJP61FdQDubC5xjdxxJnLxeQN9Rk652BA/RbBiwkkHHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAzIIRygryWFB6rmVvWmtgXxp6IuMB8GA1UdIwQY
MBaAFCN9l/FQjnpEeJn1mlX7iqYkHvUQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTMyWDhWQ09la1I0bWZXYVZmdUtwaVFlOVJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9mNTAzZDctMWZiNi00MzcwLWI0NGYt
NDRhNDFhOTMxMTNlLzEvSTMyWDhWQ09la1I0bWZXYVZmdUtwaVFlOVJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy9mNTAzZDctMWZiNi00MzcwLWI0NGYtNDRhNDFhOTMxMTNl
LzEvSTMyWDhWQ09la1I0bWZXYVZmdUtwaVFlOVJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs5k+3P3I
DW1Qlaxee2XIwWbO2FA7hgPFpmVZ/VWzhvPbhrOC3tgDHcoDHrdKtmSRZ+fvcZaV
wKRCQvWu80z0+tvPJaIU/eRoawBmkYXR8C/vMNuLX6gvVhINJ7yVUe2aBBQFO/7R
9fjUQ8+2Kcq2Ye/TJNkKvNQBhodj1g9eZLLNUf89Hi1YSh32bJEvYkQt8WGz1Gm4
u0gnabaQFEVRB+MwCnX6HBiAL6KnjykLhsO0nXD6furfyhRkQrqQ9USfAtfyheg2
pln0ECdHOiPqDR+olWyVaJB6PitUXWQlEvBBlvD5yIx3tIQ02gr5gtMoFF3HJYR6
h4gguTwKRUFuTw==
-----END CERTIFICATE-----
Generated at Sat Nov 23 02:21:17 2024 by rpki-client on console-ams.rpki-client.org