Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft
File: oKFURB35Yj7rWhlhONIb71gktEE.mft (raw, json)
Hash identifier: i87Dh5k+sk/mdTvyJkXs99SUA3JwJqZ/ZzjSrFcp66U=
Subject key identifier: B4:51:02:CF:25:C1:AB:EC:01:BC:5F:6F:7E:2C:8A:D5:C8:DD:C6:BB
Authority key identifier: A0:A1:54:44:1D:F9:62:3E:EB:5A:19:61:38:D2:1B:EF:58:24:B4:41
Certificate issuer: /CN=a0a154441df9623eeb5a196138d21bef5824b441
Certificate serial: 0193591C50AB915DA3E8C7D758F29BBA72D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft
Manifest number: 1378
Signing time: Sat 23 Nov 2024 13:00:47 +0000
Manifest this update: Sat 23 Nov 2024 13:00:47 +0000
Manifest next update: Sun 24 Nov 2024 13:00:47 +0000
Files and hashes: 1: F85ULovVku1lzD_d-Gb-cnTYqT8.roa (hash: o0T21BuHq60UeF2YU+WQyh84uM9EKqlSeS/U8dMTJk4=)
2: e9GshmbnpsPiaSD77v_YxzUq1gk.roa (hash: GAty3Ve0sd5Ji13CCcPVVfen6UEnuhf1YmqLs0bavQM=)
3: oKFURB35Yj7rWhlhONIb71gktEE.crl (hash: LQ39czV6qdm7HuPoHnDCkBLKF3yC32XWuNPYp4ZeVKQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:59:1c:50:ab:91:5d:a3:e8:c7:d7:58:f2:9b:ba:72:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a154441df9623eeb5a196138d21bef5824b441
Validity
Not Before: Nov 23 13:00:47 2024 GMT
Not After : Nov 24 13:00:47 2024 GMT
Subject: CN=b45102cf25c1abec01bc5f6f7e2c8ad5c8ddc6bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f4:40:18:af:81:a8:d0:a8:f8:65:e0:c9:57:
8e:7d:3e:25:b8:7b:b7:ec:d0:c9:7f:10:19:fd:91:
a5:be:b8:83:86:52:5f:32:35:6c:78:dd:68:c3:c1:
a1:79:3b:a6:23:4a:7a:53:a5:04:45:b3:1c:19:21:
09:03:2b:30:f0:a5:a8:75:db:65:0d:8e:d0:09:f2:
6e:bc:e1:5d:5c:ef:b4:8c:88:e7:90:3a:07:4b:8e:
22:40:5d:ae:b0:11:19:a8:c5:7e:71:c6:c2:f2:17:
85:7b:6b:6d:fd:d7:65:db:b9:d2:4a:f4:c2:d7:26:
9d:e5:2f:56:b5:59:cf:64:ff:36:52:b4:95:41:5b:
17:9d:b5:40:69:61:56:28:de:4a:2e:45:47:ee:68:
ae:78:17:e3:00:b0:27:e4:90:5f:45:c4:56:83:b4:
89:71:33:76:da:3a:6c:e8:74:e1:6e:5b:c6:6f:49:
75:44:b3:5f:09:f5:09:6b:b8:a6:c9:44:1f:5c:9c:
f5:20:de:47:21:7f:4c:d7:e8:8d:51:08:37:f5:98:
54:c1:d9:a8:44:70:9c:84:09:38:b3:5b:4f:fb:a1:
6d:68:e9:c2:fa:0d:d5:b1:87:8d:6e:a0:ad:da:c8:
52:f2:c1:6a:12:c7:c5:f1:a8:9f:30:1a:fc:32:8c:
77:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:51:02:CF:25:C1:AB:EC:01:BC:5F:6F:7E:2C:8A:D5:C8:DD:C6:BB
X509v3 Authority Key Identifier:
keyid:A0:A1:54:44:1D:F9:62:3E:EB:5A:19:61:38:D2:1B:EF:58:24:B4:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:a6:6d:59:9f:f5:f9:97:1c:b0:61:9f:a5:ab:f5:fa:2f:4b:
77:79:04:f8:4b:f5:55:16:0a:c6:e9:bb:6f:2a:24:b1:01:70:
cf:73:a6:e5:2f:99:b6:6f:23:d3:87:10:f5:d9:81:f3:b5:8d:
16:f6:54:61:3b:ea:ae:14:cf:49:8a:d7:fb:4a:c8:dc:ac:b4:
a2:31:47:8f:d4:9d:6d:ae:ea:3a:74:08:e5:61:f1:49:8e:7f:
d4:ef:5c:2a:5a:d7:ac:1e:ad:88:1e:91:1d:bb:d0:0e:21:80:
1a:46:75:f2:6f:24:14:5b:b2:86:98:73:3c:d7:ad:55:b4:40:
20:5d:25:0c:5b:34:bd:ff:ff:a0:dd:39:f0:c9:0c:56:a5:58:
57:aa:ee:d8:c4:55:0d:be:dd:ac:38:2a:07:ff:91:44:8c:10:
df:8a:15:35:b8:ac:c0:57:e3:8b:e7:e8:87:d7:8e:a8:aa:34:
6a:cd:a8:1f:f4:15:67:7e:78:28:ca:94:69:1e:7b:af:60:41:
e5:d2:dc:c1:6c:1c:a5:a3:dc:32:78:a1:eb:4f:38:1e:ec:f6:
4b:47:97:cc:5c:b3:ef:4b:29:3d:2d:ee:1d:b6:8c:ba:1d:c7:
43:07:ea:5d:ce:38:ed:4b:3d:7c:71:3a:03:ab:b6:a4:28:cd:
19:11:74:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNZHFCrkV2j6MfXWPKbunLWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwYTE1NDQ0MWRmOTYyM2VlYjVhMTk2MTM4ZDIxYmVmNTgy
NGI0NDEwHhcNMjQxMTIzMTMwMDQ3WhcNMjQxMTI0MTMwMDQ3WjAzMTEwLwYDVQQD
EyhiNDUxMDJjZjI1YzFhYmVjMDFiYzVmNmY3ZTJjOGFkNWM4ZGRjNmJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt/RAGK+BqNCo+GXgyVeOfT4luHu3
7NDJfxAZ/ZGlvriDhlJfMjVseN1ow8GheTumI0p6U6UERbMcGSEJAysw8KWoddtl
DY7QCfJuvOFdXO+0jIjnkDoHS44iQF2usBEZqMV+ccbC8heFe2tt/ddl27nSSvTC
1yad5S9WtVnPZP82UrSVQVsXnbVAaWFWKN5KLkVH7miueBfjALAn5JBfRcRWg7SJ
cTN22jps6HThblvGb0l1RLNfCfUJa7imyUQfXJz1IN5HIX9M1+iNUQg39ZhUwdmo
RHCchAk4s1tP+6FtaOnC+g3VsYeNbqCt2shS8sFqEsfF8aifMBr8Mox3QwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLRRAs8lwavsAbxfb34sitXI3ca7MB8GA1UdIwQY
MBaAFKChVEQd+WI+61oZYTjSG+9YJLRBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0tGVVJCMzVZajdyV2hsaE9OSWI3MWdrdEVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC81YjNkNmQtZTZmMS00N2FkLWI1MmIt
OWQ5NDM2NzFhOGEzLzEvb0tGVVJCMzVZajdyV2hsaE9OSWI3MWdrdEVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC81YjNkNmQtZTZmMS00N2FkLWI1MmItOWQ5NDM2NzFhOGEz
LzEvb0tGVVJCMzVZajdyV2hsaE9OSWI3MWdrdEVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWqZtWZ/1
+ZccsGGfpav1+i9Ld3kE+Ev1VRYKxum7byoksQFwz3Om5S+Ztm8j04cQ9dmB87WN
FvZUYTvqrhTPSYrX+0rI3Ky0ojFHj9Sdba7qOnQI5WHxSY5/1O9cKlrXrB6tiB6R
HbvQDiGAGkZ18m8kFFuyhphzPNetVbRAIF0lDFs0vf//oN058MkMVqVYV6ru2MRV
Db7drDgqB/+RRIwQ34oVNbiswFfji+foh9eOqKo0as2oH/QVZ354KMqUaR57r2BB
5dLcwWwcpaPcMnih6084Huz2S0eXzFyz70spPS3uHbaMuh3HQwfqXc447Us9fHE6
A6u2pCjNGRF0tA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 14:27:49 2024 by rpki-client on console-fra.rpki-client.org