Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft
File: TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft (raw, json)
Hash identifier: +/hrDRt46shjip08WmJMiD7Kk7Zr4FXVisHDzvQ3kVQ=
Subject key identifier: 3F:B6:1C:5E:3F:34:63:88:41:28:8D:6E:B2:83:18:5D:AF:CA:28:31
Authority key identifier: 4E:91:16:2B:B0:D9:B5:51:BF:5F:7B:1C:15:EE:31:5A:51:A6:77:F4
Certificate issuer: /CN=4e91162bb0d9b551bf5f7b1c15ee315a51a677f4
Certificate serial: 01935764EBF90558E080C5343E97D40D21A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TpEWK7DZtVG_X3scFe4xWlGmd_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft
Manifest number: 08E4
Signing time: Sat 23 Nov 2024 05:00:51 +0000
Manifest this update: Sat 23 Nov 2024 05:00:51 +0000
Manifest next update: Sun 24 Nov 2024 05:00:51 +0000
Files and hashes: 1: TpEWK7DZtVG_X3scFe4xWlGmd_Q.crl (hash: Kp8v7P0tZP0uyVaajQOvJ2SLJcU4iM7CVrWcvSMG0fc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/TpEWK7DZtVG_X3scFe4xWlGmd_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:64:eb:f9:05:58:e0:80:c5:34:3e:97:d4:0d:21:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e91162bb0d9b551bf5f7b1c15ee315a51a677f4
Validity
Not Before: Nov 23 05:00:51 2024 GMT
Not After : Nov 24 05:00:51 2024 GMT
Subject: CN=3fb61c5e3f34638841288d6eb283185dafca2831
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:67:c1:9d:b0:82:0e:c3:13:e8:b3:e6:ff:69:
ef:21:37:c4:74:4a:4e:e4:fe:97:be:c2:3c:92:40:
9b:5e:ea:3f:d7:77:c5:5b:9e:02:39:e0:f9:3d:2d:
18:e2:9c:90:6d:86:f6:68:19:9f:4d:8f:89:fb:23:
f0:88:2d:12:1d:3a:94:12:6f:fa:1c:fb:73:4f:ef:
05:06:f4:bb:56:71:73:60:5a:57:05:d9:93:a1:31:
a1:11:1e:70:87:e9:ba:b8:e3:92:e2:24:b6:e8:32:
c9:74:d2:19:10:15:ac:5f:66:1b:8d:28:71:51:55:
aa:03:fd:55:df:2b:31:76:c9:4d:10:84:f9:4c:67:
e9:3b:aa:d9:03:b1:20:5c:db:3c:b4:75:63:05:4a:
d9:b0:fd:9c:e0:24:d7:d2:c2:c1:98:bc:69:94:9a:
e0:f6:4a:ef:8d:e5:de:29:08:8a:6d:e2:d3:a4:2a:
e7:ed:27:c2:63:5d:ba:af:33:2d:d2:a4:c1:18:24:
e6:b5:26:fb:ad:20:8a:8c:ac:67:32:56:73:f5:e7:
83:1f:4c:02:f5:97:ac:7d:32:04:73:f5:8c:ae:5c:
5d:11:08:8c:af:a9:99:df:b9:33:d4:3c:83:49:12:
8e:4d:c9:b1:2d:49:44:fe:73:da:2a:25:e4:da:e9:
fc:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:B6:1C:5E:3F:34:63:88:41:28:8D:6E:B2:83:18:5D:AF:CA:28:31
X509v3 Authority Key Identifier:
keyid:4E:91:16:2B:B0:D9:B5:51:BF:5F:7B:1C:15:EE:31:5A:51:A6:77:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TpEWK7DZtVG_X3scFe4xWlGmd_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:fb:66:1f:7d:2f:f9:ba:eb:91:69:ba:43:42:d5:6e:8a:7b:
40:2f:4a:c3:4e:8a:75:a7:71:55:bc:66:bc:f4:42:32:f7:0a:
26:0f:79:b9:34:a2:42:3b:d7:f9:29:3a:73:9e:90:d9:f0:57:
55:16:7d:40:f1:08:fb:8e:ce:0b:eb:0a:14:9d:88:98:6b:d6:
ba:be:90:ee:ac:27:b7:27:fd:98:31:89:03:9e:8a:d5:d1:7c:
78:39:59:17:c4:fe:3c:39:10:65:7b:46:03:92:2e:58:67:fd:
56:b4:f6:6a:ce:fd:7f:5d:66:5e:52:73:84:b1:13:23:cd:25:
b8:c6:7c:ea:4e:d6:a6:12:37:20:e7:9f:2d:a3:af:dd:10:da:
b8:5a:e3:8d:6d:4b:75:a4:d7:28:c6:1b:cc:7a:a3:71:86:76:
39:a3:6d:db:5e:44:e6:18:77:69:f7:2b:3b:e9:c8:d4:71:6e:
79:86:eb:2a:31:e9:21:e4:9a:73:af:62:32:76:0f:c5:97:bd:
dc:d2:e3:7f:61:1a:62:e0:54:89:9f:e9:f8:71:0e:53:d0:5f:
ad:c2:46:65:a3:bf:df:4b:f6:8f:12:f5:89:eb:33:f5:91:c4:
23:e2:78:de:3f:00:0f:1c:60:de:67:99:f2:28:2b:17:d4:2b:
81:14:e3:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNXZOv5BVjggMU0PpfUDSGoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlOTExNjJiYjBkOWI1NTFiZjVmN2IxYzE1ZWUzMTVhNTFh
Njc3ZjQwHhcNMjQxMTIzMDUwMDUxWhcNMjQxMTI0MDUwMDUxWjAzMTEwLwYDVQQD
EygzZmI2MWM1ZTNmMzQ2Mzg4NDEyODhkNmViMjgzMTg1ZGFmY2EyODMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmfBnbCCDsMT6LPm/2nvITfEdEpO
5P6XvsI8kkCbXuo/13fFW54COeD5PS0Y4pyQbYb2aBmfTY+J+yPwiC0SHTqUEm/6
HPtzT+8FBvS7VnFzYFpXBdmToTGhER5wh+m6uOOS4iS26DLJdNIZEBWsX2YbjShx
UVWqA/1V3ysxdslNEIT5TGfpO6rZA7EgXNs8tHVjBUrZsP2c4CTX0sLBmLxplJrg
9krvjeXeKQiKbeLTpCrn7SfCY126rzMt0qTBGCTmtSb7rSCKjKxnMlZz9eeDH0wC
9ZesfTIEc/WMrlxdEQiMr6mZ37kz1DyDSRKOTcmxLUlE/nPaKiXk2un8GwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD+2HF4/NGOIQSiNbrKDGF2vyigxMB8GA1UdIwQY
MBaAFE6RFiuw2bVRv197HBXuMVpRpnf0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHBFV0s3RFp0VkdfWDNzY0ZlNHhXbEdtZF9RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi8yMjljM2YtOTk3Mi00M2Q2LThlNDIt
NTcxM2YxNzQ5YzFkLzEvVHBFV0s3RFp0VkdfWDNzY0ZlNHhXbEdtZF9RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi8yMjljM2YtOTk3Mi00M2Q2LThlNDItNTcxM2YxNzQ5YzFk
LzEvVHBFV0s3RFp0VkdfWDNzY0ZlNHhXbEdtZF9RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzPtmH30v
+brrkWm6Q0LVbop7QC9Kw06KdadxVbxmvPRCMvcKJg95uTSiQjvX+Sk6c56Q2fBX
VRZ9QPEI+47OC+sKFJ2ImGvWur6Q7qwntyf9mDGJA56K1dF8eDlZF8T+PDkQZXtG
A5IuWGf9VrT2as79f11mXlJzhLETI80luMZ86k7WphI3IOefLaOv3RDauFrjjW1L
daTXKMYbzHqjcYZ2OaNt215E5hh3afcrO+nI1HFueYbrKjHpIeSac69iMnYPxZe9
3NLjf2EaYuBUiZ/p+HEOU9BfrcJGZaO/30v2jxL1iesz9ZHEI+J43j8ADxxg3meZ
8igrF9QrgRTjBA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:55:36 2024 by rpki-client on console-ams.rpki-client.org