Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.mft
File: m1GT2EOvGT4kh1aGZzyViW6uNJc.mft (raw, json)
Hash identifier: okviBaS5W0R0pblFq9siiAbja9fEL089i4Hmd51rHoA=
Subject key identifier: 98:D7:3C:13:B1:43:22:9B:F1:C0:AC:A2:9F:ED:06:97:24:01:D3:1D
Authority key identifier: 9B:51:93:D8:43:AF:19:3E:24:87:56:86:67:3C:95:89:6E:AE:34:97
Certificate issuer: /CN=9b5193d843af193e24875686673c95896eae3497
Certificate serial: 0193609F0AFAEAF269B33A785C420689D86C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m1GT2EOvGT4kh1aGZzyViW6uNJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.mft
Manifest number: 0783
Signing time: Mon 25 Nov 2024 00:00:55 +0000
Manifest this update: Mon 25 Nov 2024 00:00:55 +0000
Manifest next update: Tue 26 Nov 2024 00:00:55 +0000
Files and hashes: 1: LtjWQfUgtU4IZpbz5NRk6kgQmQo.roa (hash: 6gUxK5T8V4pbNKMp13IKYImJNZWmrA01j0P9utXrw9Y=)
2: m1GT2EOvGT4kh1aGZzyViW6uNJc.crl (hash: V+g9kFNlfC7kih05c8n2VAHUe23qJYOxTBH9InVpvhU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/m1GT2EOvGT4kh1aGZzyViW6uNJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 00:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:60:9f:0a:fa:ea:f2:69:b3:3a:78:5c:42:06:89:d8:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b5193d843af193e24875686673c95896eae3497
Validity
Not Before: Nov 25 00:00:55 2024 GMT
Not After : Nov 26 00:00:55 2024 GMT
Subject: CN=98d73c13b143229bf1c0aca29fed06972401d31d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:bb:c1:2a:a4:1e:f1:35:c6:6f:21:fb:50:b0:
5e:55:b5:e4:d0:a3:9b:74:d1:13:92:32:3a:40:a8:
11:db:43:ec:a5:d2:4d:8f:e3:0e:61:d0:c1:4d:45:
00:09:b5:e4:55:69:ad:e8:b0:b1:ce:6a:07:d8:df:
c0:67:50:c6:eb:78:bd:db:08:bc:26:d7:1d:bc:5c:
ad:3c:e4:cc:23:21:39:41:99:99:5f:79:7a:41:ac:
f2:cd:d5:5a:f8:19:d8:98:a1:9d:2d:e4:0a:0c:c8:
a7:77:df:65:c9:20:45:cb:45:e3:0d:a3:d0:6d:c1:
99:e9:1d:82:04:17:5d:cd:e1:82:86:ab:d6:f3:8e:
5c:de:58:fe:76:4c:94:8e:ff:8d:d6:c4:e7:25:d7:
20:28:bf:74:75:18:5e:2b:fa:ad:b9:ca:1c:ee:b4:
2a:cb:19:11:2a:cc:0b:47:7d:9f:2d:75:74:39:a5:
ed:dd:96:6b:af:e6:32:d2:e7:04:4f:9d:51:58:ac:
5c:77:9a:29:ff:33:a8:43:c3:e8:c6:93:bb:da:81:
74:1c:c9:6b:e6:1b:ce:bc:0e:e6:62:da:c9:54:63:
bd:23:11:46:0d:db:b8:dc:90:61:3b:04:1b:dd:b4:
45:e3:ab:36:f8:e2:8d:f2:e7:c3:18:bc:97:e2:40:
9d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:D7:3C:13:B1:43:22:9B:F1:C0:AC:A2:9F:ED:06:97:24:01:D3:1D
X509v3 Authority Key Identifier:
keyid:9B:51:93:D8:43:AF:19:3E:24:87:56:86:67:3C:95:89:6E:AE:34:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m1GT2EOvGT4kh1aGZzyViW6uNJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:48:0e:29:c0:89:c1:d6:ef:9e:59:0b:74:2e:cd:58:2a:64:
26:a5:2a:2f:5e:1c:4c:8c:ca:ef:51:3d:52:01:d7:aa:87:4d:
71:95:51:e6:63:e3:18:ea:fb:4c:2f:94:6c:49:a8:48:d1:37:
d2:03:3a:88:17:9d:d3:40:f1:fb:f7:1d:79:3f:63:e1:81:c2:
6b:0f:03:b5:41:32:6b:46:db:e3:50:4f:9b:a6:0a:df:18:c0:
db:4b:ad:2b:32:90:ca:31:c7:01:3b:83:12:a5:25:3d:64:2a:
0b:ad:07:16:f1:88:92:b0:d3:b8:8f:4a:f9:6f:1f:26:cc:f9:
86:7e:cf:53:38:93:f7:0c:d5:00:dd:82:27:33:01:4e:c2:79:
8b:19:c4:c4:5e:ef:c3:2c:d8:87:26:d7:ac:fc:22:8f:74:d5:
c8:b7:34:80:94:cc:89:3e:c9:1d:73:77:c5:00:92:0d:88:3c:
79:50:71:14:a3:91:d7:23:ea:20:77:4f:7d:2c:0f:db:d4:c6:
29:aa:1c:c3:c4:98:be:9a:83:45:aa:07:12:c9:90:aa:f8:d0:
af:4a:8a:f1:02:38:f3:f3:0c:2c:9a:b3:1a:78:78:fa:f0:85:
99:18:2d:af:b1:5b:f3:76:a7:85:dd:5e:41:77:e6:ca:c8:e5:
09:3c:0b:20
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNgnwr66vJpszp4XEIGidhsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliNTE5M2Q4NDNhZjE5M2UyNDg3NTY4NjY3M2M5NTg5NmVh
ZTM0OTcwHhcNMjQxMTI1MDAwMDU1WhcNMjQxMTI2MDAwMDU1WjAzMTEwLwYDVQQD
Eyg5OGQ3M2MxM2IxNDMyMjliZjFjMGFjYTI5ZmVkMDY5NzI0MDFkMzFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3LvBKqQe8TXGbyH7ULBeVbXk0KOb
dNETkjI6QKgR20PspdJNj+MOYdDBTUUACbXkVWmt6LCxzmoH2N/AZ1DG63i92wi8
JtcdvFytPOTMIyE5QZmZX3l6QazyzdVa+BnYmKGdLeQKDMind99lySBFy0XjDaPQ
bcGZ6R2CBBddzeGChqvW845c3lj+dkyUjv+N1sTnJdcgKL90dRheK/qtucoc7rQq
yxkRKswLR32fLXV0OaXt3ZZrr+Yy0ucET51RWKxcd5op/zOoQ8PoxpO72oF0HMlr
5hvOvA7mYtrJVGO9IxFGDdu43JBhOwQb3bRF46s2+OKN8ufDGLyX4kCdFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJjXPBOxQyKb8cCsop/tBpckAdMdMB8GA1UdIwQY
MBaAFJtRk9hDrxk+JIdWhmc8lYlurjSXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbTFHVDJFT3ZHVDRraDFhR1p6eVZpVzZ1TkpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9iNWU5NDAtNjUxMS00ODA1LThkMGMt
MDAwZWFkMzk3NjVhLzEvbTFHVDJFT3ZHVDRraDFhR1p6eVZpVzZ1TkpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS9iNWU5NDAtNjUxMS00ODA1LThkMGMtMDAwZWFkMzk3NjVh
LzEvbTFHVDJFT3ZHVDRraDFhR1p6eVZpVzZ1TkpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdUgOKcCJ
wdbvnlkLdC7NWCpkJqUqL14cTIzK71E9UgHXqodNcZVR5mPjGOr7TC+UbEmoSNE3
0gM6iBed00Dx+/cdeT9j4YHCaw8DtUEya0bb41BPm6YK3xjA20utKzKQyjHHATuD
EqUlPWQqC60HFvGIkrDTuI9K+W8fJsz5hn7PUziT9wzVAN2CJzMBTsJ5ixnExF7v
wyzYhybXrPwij3TVyLc0gJTMiT7JHXN3xQCSDYg8eVBxFKOR1yPqIHdPfSwP29TG
Kaocw8SYvpqDRaoHEsmQqvjQr0qK8QI48/MMLJqzGnh4+vCFmRgtr7Fb83anhd1e
QXfmysjlCTwLIA==
-----END CERTIFICATE-----
Generated at Mon Nov 25 07:46:58 2024 by rpki-client on console-ams.rpki-client.org