Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.mft
File: 6OcnETayGhWK70CdMOLGAB1bDak.mft (raw, json)
Hash identifier: ngvW3WFY6bBZPwGQjBqeGgfzZNV5vUKx4+JNM19o4I0=
Subject key identifier: 7F:07:EB:AE:CB:A4:08:D4:C2:88:37:65:1B:33:E7:CC:4E:65:B8:23
Authority key identifier: E8:E7:27:11:36:B2:1A:15:8A:EF:40:9D:30:E2:C6:00:1D:5B:0D:A9
Certificate issuer: /CN=e8e7271136b21a158aef409d30e2c6001d5b0da9
Certificate serial: 0193595349FFD3130C442BDF1A8C772BC4D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6OcnETayGhWK70CdMOLGAB1bDak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.mft
Manifest number: 0CC8
Signing time: Sat 23 Nov 2024 14:00:50 +0000
Manifest this update: Sat 23 Nov 2024 14:00:50 +0000
Manifest next update: Sun 24 Nov 2024 14:00:50 +0000
Files and hashes: 1: 6OcnETayGhWK70CdMOLGAB1bDak.crl (hash: 5mKecwCivswS/Z2c2zCyA/OsPQmsDhRUEuztaUfGcWM=)
2: J04ZRIGJ7eag6XPHLDgIPD5LGxU.roa (hash: Cht6tXwP66ZFEXysDMX8fgQRqZWO1doacXfGxX8v3DY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.mft
rsync://rpki.ripe.net/repository/DEFAULT/6OcnETayGhWK70CdMOLGAB1bDak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 14:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:59:53:49:ff:d3:13:0c:44:2b:df:1a:8c:77:2b:c4:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8e7271136b21a158aef409d30e2c6001d5b0da9
Validity
Not Before: Nov 23 14:00:50 2024 GMT
Not After : Nov 24 14:00:50 2024 GMT
Subject: CN=7f07ebaecba408d4c28837651b33e7cc4e65b823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:1b:06:47:09:81:59:2a:f3:68:80:6e:bc:ef:
f6:57:38:cb:be:e3:55:84:3a:ca:23:b8:82:61:6b:
71:11:38:45:d7:98:dd:02:dc:03:e6:59:0a:67:01:
a6:c0:cd:7a:94:fe:1a:e7:4e:4a:e4:66:ad:0a:46:
09:b8:93:6a:17:15:bc:68:7e:74:12:e5:29:7d:c0:
97:b2:0c:4d:83:b7:24:09:8a:de:26:af:8e:1a:8a:
bc:0d:73:fb:4f:7d:5b:ce:08:c3:f4:59:a1:77:45:
a7:d5:14:25:12:65:1d:c7:9f:b2:65:b2:11:4a:a4:
00:cf:c6:ae:55:37:17:bb:a4:10:f1:48:9e:aa:65:
90:28:b8:6d:1d:56:14:22:fb:28:a8:6f:ed:91:a4:
2c:9a:a8:71:27:35:b4:17:41:5b:80:33:0e:f3:bc:
08:b3:0f:0b:50:21:e8:f8:03:8e:16:12:d2:db:56:
b4:31:1c:f1:27:a3:18:04:85:5a:48:29:22:c9:5d:
90:f9:74:f9:97:94:dc:21:fc:20:ae:0b:d7:12:5f:
2d:71:55:0e:7a:6c:e1:07:78:e0:13:91:f8:04:e1:
34:13:72:12:25:83:d3:fe:7c:5d:97:69:d7:c7:fc:
aa:66:25:a7:4e:1d:a7:4f:08:16:1d:0e:61:36:24:
48:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:07:EB:AE:CB:A4:08:D4:C2:88:37:65:1B:33:E7:CC:4E:65:B8:23
X509v3 Authority Key Identifier:
keyid:E8:E7:27:11:36:B2:1A:15:8A:EF:40:9D:30:E2:C6:00:1D:5B:0D:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6OcnETayGhWK70CdMOLGAB1bDak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:3f:c5:7e:81:d3:e2:d0:fe:0d:2a:4c:84:34:74:49:db:08:
58:32:57:29:88:a9:e4:48:1a:3a:91:9a:fe:13:ed:43:29:09:
ee:0b:a1:66:3a:b8:1e:ae:07:df:1a:68:99:78:ca:e6:46:51:
d4:05:5f:99:21:64:25:12:63:89:40:4a:47:93:81:07:54:7a:
04:53:b5:cd:36:55:e2:4a:54:3f:56:80:a9:0d:12:fc:92:d5:
98:35:ac:cf:fb:e6:d9:0f:1e:1d:da:75:74:ce:20:2f:75:10:
dd:03:8d:1f:73:1d:c9:4e:70:6c:ad:94:cf:29:e2:1a:f0:86:
42:e2:f5:f6:4c:20:c5:41:13:e0:f0:00:30:df:3f:12:c3:95:
45:10:d3:55:9f:d4:6a:d2:36:10:88:08:12:ad:b7:09:f6:06:
0e:7d:9d:6b:87:18:92:98:d7:7e:45:e6:11:85:ae:b9:06:c7:
4f:83:b7:51:34:f0:d2:fe:92:79:fc:0c:b0:ae:2c:0a:58:8a:
3f:78:81:83:41:81:61:9c:77:b5:98:04:69:84:93:ac:61:29:
be:7c:9a:2a:78:e9:88:04:b9:3b:c3:6c:79:4f:cb:40:55:fb:
50:cd:7a:7e:4a:08:35:8d:e3:07:19:f4:b1:c5:30:bb:c1:23:
fd:1a:c0:2b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNZU0n/0xMMRCvfGox3K8TXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU4ZTcyNzExMzZiMjFhMTU4YWVmNDA5ZDMwZTJjNjAwMWQ1
YjBkYTkwHhcNMjQxMTIzMTQwMDUwWhcNMjQxMTI0MTQwMDUwWjAzMTEwLwYDVQQD
Eyg3ZjA3ZWJhZWNiYTQwOGQ0YzI4ODM3NjUxYjMzZTdjYzRlNjViODIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1xsGRwmBWSrzaIBuvO/2VzjLvuNV
hDrKI7iCYWtxEThF15jdAtwD5lkKZwGmwM16lP4a505K5GatCkYJuJNqFxW8aH50
EuUpfcCXsgxNg7ckCYreJq+OGoq8DXP7T31bzgjD9Fmhd0Wn1RQlEmUdx5+yZbIR
SqQAz8auVTcXu6QQ8UieqmWQKLhtHVYUIvsoqG/tkaQsmqhxJzW0F0FbgDMO87wI
sw8LUCHo+AOOFhLS21a0MRzxJ6MYBIVaSCkiyV2Q+XT5l5TcIfwgrgvXEl8tcVUO
emzhB3jgE5H4BOE0E3ISJYPT/nxdl2nXx/yqZiWnTh2nTwgWHQ5hNiRIqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH8H667LpAjUwog3ZRsz58xOZbgjMB8GA1UdIwQY
MBaAFOjnJxE2shoViu9AnTDixgAdWw2pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNk9jbkVUYXlHaFdLNzBDZE1PTEdBQjFiRGFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9jYmY0MjUtYjk1OC00ZTQ5LTljOTYt
ODM1NmQyZDQyNzcxLzEvNk9jbkVUYXlHaFdLNzBDZE1PTEdBQjFiRGFrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS9jYmY0MjUtYjk1OC00ZTQ5LTljOTYtODM1NmQyZDQyNzcx
LzEvNk9jbkVUYXlHaFdLNzBDZE1PTEdBQjFiRGFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAST/FfoHT
4tD+DSpMhDR0SdsIWDJXKYip5EgaOpGa/hPtQykJ7guhZjq4Hq4H3xpomXjK5kZR
1AVfmSFkJRJjiUBKR5OBB1R6BFO1zTZV4kpUP1aAqQ0S/JLVmDWsz/vm2Q8eHdp1
dM4gL3UQ3QONH3MdyU5wbK2UzyniGvCGQuL19kwgxUET4PAAMN8/EsOVRRDTVZ/U
atI2EIgIEq23CfYGDn2da4cYkpjXfkXmEYWuuQbHT4O3UTTw0v6SefwMsK4sCliK
P3iBg0GBYZx3tZgEaYSTrGEpvnyaKnjpiAS5O8NseU/LQFX7UM16fkoINY3jBxn0
scUwu8Ej/RrAKw==
-----END CERTIFICATE-----
Generated at Sat Nov 23 19:19:03 2024 by rpki-client on console-fra.rpki-client.org