Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.mft
File: xFyYQwiFYolxMHxZtc8kFoIQI3g.mft (raw, json)
Hash identifier: x7+Vhqj58k8jvWYs2zWjIQB278hAotp+sc8bLuI42Ds=
Subject key identifier: F8:7F:A3:0B:1D:72:7A:30:C7:A0:D4:70:31:BD:D6:A3:E5:25:D2:C5
Authority key identifier: C4:5C:98:43:08:85:62:89:71:30:7C:59:B5:CF:24:16:82:10:23:78
Certificate issuer: /CN=c45c98430885628971307c59b5cf241682102378
Certificate serial: 019356F6A31E241679D4199FD62E6BC0A5D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xFyYQwiFYolxMHxZtc8kFoIQI3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.mft
Manifest number: 1371
Signing time: Sat 23 Nov 2024 03:00:24 +0000
Manifest this update: Sat 23 Nov 2024 03:00:24 +0000
Manifest next update: Sun 24 Nov 2024 03:00:24 +0000
Files and hashes: 1: IDpMKX9A814Gm6WDibW9qOARM18.roa (hash: v95q+RG3nzIq77DAnE760gzgQGZnd1mpBiO7UKcovlA=)
2: xFyYQwiFYolxMHxZtc8kFoIQI3g.crl (hash: kZ++UDNB/PghoV/nDtTnA8NExtYm2px1TLaw57yURZ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.mft
rsync://rpki.ripe.net/repository/DEFAULT/xFyYQwiFYolxMHxZtc8kFoIQI3g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:f6:a3:1e:24:16:79:d4:19:9f:d6:2e:6b:c0:a5:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c45c98430885628971307c59b5cf241682102378
Validity
Not Before: Nov 23 03:00:24 2024 GMT
Not After : Nov 24 03:00:24 2024 GMT
Subject: CN=f87fa30b1d727a30c7a0d47031bdd6a3e525d2c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c6:61:a5:78:60:37:70:c6:1c:fa:bd:c1:88:
04:50:7e:46:1c:37:c6:f3:6f:a6:de:19:dc:39:53:
0e:f8:88:41:78:5e:f6:61:eb:b5:49:29:58:14:cd:
71:f8:74:8e:78:59:3c:cc:2e:ab:4d:74:1e:0a:cf:
31:31:2d:3b:cc:6b:dc:af:a8:92:fa:b8:c2:66:bc:
00:76:88:0d:0e:e0:9d:6d:40:ac:82:1d:c4:9b:f7:
df:46:15:1b:8f:a0:41:3b:bc:52:ad:4a:34:84:27:
d0:d2:9a:98:e9:0d:68:75:d0:31:2a:92:6a:38:d9:
53:10:bc:92:62:c5:63:38:e3:ee:19:a0:d1:1d:df:
90:3e:00:68:a4:3f:bc:4b:62:9d:76:f3:88:f7:e8:
3a:3a:a0:c6:40:4d:2c:32:ac:94:56:ed:bb:7a:76:
62:23:0e:c2:cc:73:3e:f4:6e:0e:e1:c9:f1:3f:2d:
87:bd:a1:a7:39:36:1f:b5:67:c4:cd:1f:01:d5:0c:
3e:e1:d1:4f:df:e7:6c:8e:11:42:3f:d2:cb:b3:7b:
9e:d0:42:3f:25:c0:6c:82:e8:46:d8:ae:6c:5e:9f:
e9:3e:b1:cd:bc:f3:bf:a1:76:2c:55:81:24:7c:86:
5e:8d:28:95:ad:26:06:f7:a8:60:f6:ef:f8:c8:7a:
a5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:7F:A3:0B:1D:72:7A:30:C7:A0:D4:70:31:BD:D6:A3:E5:25:D2:C5
X509v3 Authority Key Identifier:
keyid:C4:5C:98:43:08:85:62:89:71:30:7C:59:B5:CF:24:16:82:10:23:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xFyYQwiFYolxMHxZtc8kFoIQI3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:b0:c2:e9:1e:10:2c:9d:71:64:64:6d:66:e3:a9:a0:04:03:
d6:90:ec:d1:33:f6:3c:c5:dd:75:3c:54:b8:32:0a:4f:71:f7:
1c:05:82:53:d1:8a:3b:5a:a2:32:8c:66:37:b1:b4:cd:0f:9e:
52:8c:8d:e2:23:82:2a:f7:22:58:28:4a:5a:12:bd:53:31:a9:
b2:1a:1e:72:36:f4:dc:00:b9:35:5c:4f:b2:5a:f7:f2:ff:79:
f2:9e:99:71:c8:cc:2f:49:f7:08:38:1b:ea:64:55:c5:77:81:
05:51:d8:b2:db:31:5e:ae:1e:14:07:34:d8:d1:9b:81:08:4c:
f6:fa:c6:d0:d0:91:50:76:db:ad:1c:8b:c7:75:63:7d:08:71:
64:93:6b:4d:f0:e7:c7:91:79:48:ae:12:ce:2f:3a:0e:de:c9:
f3:48:b2:7d:cf:a0:91:9b:2f:88:30:40:0e:eb:b6:f5:16:46:
0e:e9:ba:d8:f3:7f:3d:6a:53:58:20:f4:4b:55:33:29:bf:75:
67:c9:c7:79:85:e1:1e:dd:a4:42:bf:68:36:d2:0f:17:c2:da:
e3:e7:2b:b5:12:b7:ea:cf:82:49:6f:30:05:f5:86:d3:a2:72:
0f:91:2f:62:45:00:f3:ee:a5:87:96:86:06:ab:ea:23:4d:9c:
67:93:be:20
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNW9qMeJBZ51Bmf1i5rwKXZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0NWM5ODQzMDg4NTYyODk3MTMwN2M1OWI1Y2YyNDE2ODIx
MDIzNzgwHhcNMjQxMTIzMDMwMDI0WhcNMjQxMTI0MDMwMDI0WjAzMTEwLwYDVQQD
EyhmODdmYTMwYjFkNzI3YTMwYzdhMGQ0NzAzMWJkZDZhM2U1MjVkMmM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvcZhpXhgN3DGHPq9wYgEUH5GHDfG
82+m3hncOVMO+IhBeF72Yeu1SSlYFM1x+HSOeFk8zC6rTXQeCs8xMS07zGvcr6iS
+rjCZrwAdogNDuCdbUCsgh3Em/ffRhUbj6BBO7xSrUo0hCfQ0pqY6Q1oddAxKpJq
ONlTELySYsVjOOPuGaDRHd+QPgBopD+8S2KddvOI9+g6OqDGQE0sMqyUVu27enZi
Iw7CzHM+9G4O4cnxPy2HvaGnOTYftWfEzR8B1Qw+4dFP3+dsjhFCP9LLs3ue0EI/
JcBsguhG2K5sXp/pPrHNvPO/oXYsVYEkfIZejSiVrSYG96hg9u/4yHqlvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPh/owsdcnowx6DUcDG91qPlJdLFMB8GA1UdIwQY
MBaAFMRcmEMIhWKJcTB8WbXPJBaCECN4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEZ5WVF3aUZZb2x4TUh4WnRjOGtGb0lRSTNnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC8zMDdjMzMtMzhhNy00ZmRhLTlhMDgt
OWFiZGNhMzlkNGY3LzEveEZ5WVF3aUZZb2x4TUh4WnRjOGtGb0lRSTNnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC8zMDdjMzMtMzhhNy00ZmRhLTlhMDgtOWFiZGNhMzlkNGY3
LzEveEZ5WVF3aUZZb2x4TUh4WnRjOGtGb0lRSTNnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW7DC6R4Q
LJ1xZGRtZuOpoAQD1pDs0TP2PMXddTxUuDIKT3H3HAWCU9GKO1qiMoxmN7G0zQ+e
UoyN4iOCKvciWChKWhK9UzGpshoecjb03AC5NVxPslr38v958p6ZccjML0n3CDgb
6mRVxXeBBVHYstsxXq4eFAc02NGbgQhM9vrG0NCRUHbbrRyLx3VjfQhxZJNrTfDn
x5F5SK4Szi86Dt7J80iyfc+gkZsviDBADuu29RZGDum62PN/PWpTWCD0S1UzKb91
Z8nHeYXhHt2kQr9oNtIPF8La4+crtRK36s+CSW8wBfWG06JyD5EvYkUA8+6lh5aG
BqvqI02cZ5O+IA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:13:55 2024 by rpki-client on console-fra.rpki-client.org