Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
File: KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft (raw, json)
Hash identifier: IIOnMuOFikQfbR5VaEmFvFh5cgUe6JapzqqX+pY7h5A=
Subject key identifier: 3D:BC:6A:32:51:9E:FC:4A:7A:58:44:D5:00:E7:89:9C:33:CA:FA:F3
Authority key identifier: 28:BB:B5:4E:37:82:6C:03:90:B0:43:79:27:9F:8E:06:CF:F3:A2:34
Certificate issuer: /CN=28bbb54e37826c0390b04379279f8e06cff3a234
Certificate serial: 019359F77B34BC49B2DD2CCD1A85A1F58768
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
Manifest number: 028B
Signing time: Sat 23 Nov 2024 17:00:11 +0000
Manifest this update: Sat 23 Nov 2024 17:00:11 +0000
Manifest next update: Sun 24 Nov 2024 17:00:11 +0000
Files and hashes: 1: KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl (hash: dkSkYjoQPbNITl/kDKbd/Q5Pi5ju+04SiDj8+1WVAOs=)
2: a7YB7BqRT3x_pM10h7O5WYRyGGQ.roa (hash: n9Mlqr7G0Sn5x2iQvYbQlAdC13UNclJCd+0k20elryw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:59:f7:7b:34:bc:49:b2:dd:2c:cd:1a:85:a1:f5:87:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bbb54e37826c0390b04379279f8e06cff3a234
Validity
Not Before: Nov 23 17:00:11 2024 GMT
Not After : Nov 24 17:00:11 2024 GMT
Subject: CN=3dbc6a32519efc4a7a5844d500e7899c33cafaf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b5:d8:3c:aa:c7:7b:7a:6d:79:88:77:bf:61:
6c:92:3a:eb:98:d7:ca:de:13:e7:1a:a0:00:44:f7:
42:fd:e0:2f:e1:02:8c:e9:9f:d7:d6:02:4e:c0:e4:
bf:9d:93:3a:53:c7:36:8b:9d:20:ae:ff:ac:a7:1a:
a3:d4:20:dd:2f:65:f8:36:92:65:2c:b5:1e:f4:48:
69:83:a2:88:2c:5f:a4:26:22:7b:28:83:86:43:7e:
77:fd:8c:58:a8:82:bc:ec:21:9f:cb:64:c8:91:4c:
b7:27:f7:5e:f2:8c:f5:0b:6b:8c:0f:4b:cb:05:9a:
8c:b6:ed:0c:ab:75:da:5f:d8:01:93:b9:f3:ef:e7:
54:0e:1f:53:4b:35:3b:a6:72:7c:4b:93:57:0b:9b:
72:9d:8c:94:ce:0b:22:6b:87:3e:41:42:53:fa:c4:
08:ef:f2:05:4f:5b:45:72:cd:a6:a5:57:d9:22:78:
82:0b:1c:a5:e4:3e:54:a4:12:99:5a:65:a4:d8:53:
d2:de:e2:ae:f3:30:f3:c4:65:ae:e2:b0:75:06:a6:
ec:89:9c:d0:21:5e:fc:71:c4:35:d3:8a:6c:28:ab:
f6:5d:e1:e5:ea:8f:fb:2f:d5:b9:2a:29:59:e4:43:
ff:e5:cb:15:d2:3e:a4:de:bc:48:7c:01:1a:75:81:
0d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:BC:6A:32:51:9E:FC:4A:7A:58:44:D5:00:E7:89:9C:33:CA:FA:F3
X509v3 Authority Key Identifier:
keyid:28:BB:B5:4E:37:82:6C:03:90:B0:43:79:27:9F:8E:06:CF:F3:A2:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:26:df:d5:e3:a7:83:3c:98:4e:3a:ac:f6:0c:ff:ef:9c:e1:
a1:2d:88:ab:bb:b1:b1:52:d1:1c:8d:9c:55:7b:8b:35:41:ea:
0c:d6:a7:03:75:c9:79:60:ce:86:7f:0f:30:52:32:ca:f2:5b:
ef:a6:3e:b9:ad:db:2f:3e:ef:e1:4b:98:7d:6f:ac:f9:d3:86:
4d:34:48:ea:1c:a9:64:5c:b7:3d:d2:de:e4:58:09:cd:51:03:
7c:80:17:12:9f:fb:7b:19:31:4d:11:92:ec:f6:3e:fc:94:a4:
52:89:f8:55:2c:58:66:44:ac:cc:63:31:80:aa:ef:2d:f1:a8:
91:7d:91:5d:f2:54:d5:4f:03:86:d7:dd:90:49:4a:32:af:de:
bc:68:69:75:ff:ce:f2:84:26:71:58:e0:50:e9:74:dd:83:04:
5d:8e:7d:41:c8:ec:7c:92:ce:b9:d1:11:73:69:81:28:54:3b:
09:e5:79:83:87:41:c6:4f:33:f8:10:8c:2e:3e:9a:a3:39:eb:
ee:5d:3e:67:05:c4:47:9a:5f:50:95:7e:3a:01:ec:4f:d9:ec:
2d:4c:c4:fa:b8:e7:ac:7f:ee:f0:7f:3d:05:26:b6:55:b4:fd:
14:6a:75:0c:aa:17:9a:69:75:f8:92:90:9a:fb:50:51:0e:1a:
08:f0:a4:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNZ93s0vEmy3SzNGoWh9YdoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4YmJiNTRlMzc4MjZjMDM5MGIwNDM3OTI3OWY4ZTA2Y2Zm
M2EyMzQwHhcNMjQxMTIzMTcwMDExWhcNMjQxMTI0MTcwMDExWjAzMTEwLwYDVQQD
EygzZGJjNmEzMjUxOWVmYzRhN2E1ODQ0ZDUwMGU3ODk5YzMzY2FmYWYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLXYPKrHe3pteYh3v2FskjrrmNfK
3hPnGqAARPdC/eAv4QKM6Z/X1gJOwOS/nZM6U8c2i50grv+spxqj1CDdL2X4NpJl
LLUe9Ehpg6KILF+kJiJ7KIOGQ353/YxYqIK87CGfy2TIkUy3J/de8oz1C2uMD0vL
BZqMtu0Mq3XaX9gBk7nz7+dUDh9TSzU7pnJ8S5NXC5tynYyUzgsia4c+QUJT+sQI
7/IFT1tFcs2mpVfZIniCCxyl5D5UpBKZWmWk2FPS3uKu8zDzxGWu4rB1BqbsiZzQ
IV78ccQ104psKKv2XeHl6o/7L9W5KilZ5EP/5csV0j6k3rxIfAEadYEN8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD28ajJRnvxKelhE1QDniZwzyvrzMB8GA1UdIwQY
MBaAFCi7tU43gmwDkLBDeSefjgbP86I0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0x1MVRqZUNiQU9Rc0VONUo1LU9Cc196b2pRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9mZTcyOTYtZWM4Yy00MTYzLWE1NTQt
NzhjMDE3NzYyZjlmLzEvS0x1MVRqZUNiQU9Rc0VONUo1LU9Cc196b2pRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC9mZTcyOTYtZWM4Yy00MTYzLWE1NTQtNzhjMDE3NzYyZjlm
LzEvS0x1MVRqZUNiQU9Rc0VONUo1LU9Cc196b2pRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiybf1eOn
gzyYTjqs9gz/75zhoS2Iq7uxsVLRHI2cVXuLNUHqDNanA3XJeWDOhn8PMFIyyvJb
76Y+ua3bLz7v4UuYfW+s+dOGTTRI6hypZFy3PdLe5FgJzVEDfIAXEp/7exkxTRGS
7PY+/JSkUon4VSxYZkSszGMxgKrvLfGokX2RXfJU1U8DhtfdkElKMq/evGhpdf/O
8oQmcVjgUOl03YMEXY59QcjsfJLOudERc2mBKFQ7CeV5g4dBxk8z+BCMLj6aoznr
7l0+ZwXER5pfUJV+OgHsT9nsLUzE+rjnrH/u8H89BSa2VbT9FGp1DKoXmml1+JKQ
mvtQUQ4aCPCkkQ==
-----END CERTIFICATE-----
Generated at Sat Nov 23 19:18:29 2024 by rpki-client on console-fra.rpki-client.org