Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
File: DKtCI5upRIWzELVRXczH_u2SIFw.mft (raw, json)
Hash identifier: vFmbcTvCjhNclyXf44Br9JuMhgJWG0Hut32zfcl4ybw=
Subject key identifier: AD:CB:A1:40:3A:4C:FC:1B:30:ED:11:52:AA:43:3A:96:3B:AC:8B:0C
Authority key identifier: 0C:AB:42:23:9B:A9:44:85:B3:10:B5:51:5D:CC:C7:FE:ED:92:20:5C
Certificate issuer: /CN=0cab42239ba94485b310b5515dccc7feed92205c
Certificate serial: 019356890618AF19E49573B6641205F9FAF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
Manifest number: 12AF
Signing time: Sat 23 Nov 2024 01:00:40 +0000
Manifest this update: Sat 23 Nov 2024 01:00:40 +0000
Manifest next update: Sun 24 Nov 2024 01:00:40 +0000
Files and hashes: 1: 1-1b9z8DT3daR0eMRlTELlMk-Whk.roa (hash: jVKcJRYecAThFUH51GOiYId6xTZNwLswxWG7jKLOQ/c=)
2: DKtCI5upRIWzELVRXczH_u2SIFw.crl (hash: aebmUmVhrnw0awUoaE60+wFVsqLKUEdI5Ycf4At+aw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:06:18:af:19:e4:95:73:b6:64:12:05:f9:fa:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cab42239ba94485b310b5515dccc7feed92205c
Validity
Not Before: Nov 23 01:00:40 2024 GMT
Not After : Nov 24 01:00:40 2024 GMT
Subject: CN=adcba1403a4cfc1b30ed1152aa433a963bac8b0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:18:7b:15:f5:a0:0b:cb:23:53:ef:c3:31:89:
4f:44:06:bc:ca:6f:88:61:23:d4:11:b3:8a:b1:4f:
4b:89:71:a0:b1:81:c8:37:ec:d5:55:c6:b9:86:d3:
65:8a:7c:f3:d9:04:56:ae:c7:23:ed:0b:6d:7b:dc:
50:37:eb:fc:08:cb:6e:d8:8f:f9:99:bd:1b:f9:91:
8d:46:d7:ed:cd:a3:e7:3e:4e:d4:be:d2:d1:0d:91:
b7:04:d7:3d:58:ed:c9:01:e4:26:4a:c2:76:a4:99:
c8:61:7d:a3:20:6b:df:72:86:d4:1e:dc:17:3f:96:
9b:34:33:c7:e5:13:9d:20:0c:c9:fc:95:3c:c4:eb:
cb:8f:60:96:2e:79:74:bb:75:5f:2b:f6:04:6f:fd:
b0:35:ba:db:89:92:41:da:8b:13:5e:27:3a:66:f4:
46:b0:75:6c:89:b3:91:bd:75:ae:61:ea:0f:c7:03:
c8:76:7e:24:72:1a:13:f4:3a:38:b9:6e:44:13:42:
1f:62:7b:99:7f:84:ec:25:b5:3c:32:8d:ab:91:6a:
dd:9c:17:93:f5:59:50:1b:94:10:2a:64:87:7d:e1:
21:fa:68:23:ba:0b:cf:f3:df:a3:30:a1:83:ad:cf:
28:7a:1f:b7:86:50:e2:35:b4:31:f0:53:05:a2:5e:
b9:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:CB:A1:40:3A:4C:FC:1B:30:ED:11:52:AA:43:3A:96:3B:AC:8B:0C
X509v3 Authority Key Identifier:
keyid:0C:AB:42:23:9B:A9:44:85:B3:10:B5:51:5D:CC:C7:FE:ED:92:20:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:d1:ba:83:b5:be:62:f2:40:66:6c:98:b2:e8:13:13:c7:09:
98:28:bf:99:d4:70:0f:ae:b1:35:89:87:70:24:ff:68:44:fa:
c8:fa:fa:2a:c2:2a:3b:a3:99:8d:d1:45:5f:a4:7a:d4:11:1f:
33:fa:1a:7f:b7:81:ed:6c:d9:d0:01:ee:c3:d2:14:8f:ec:d8:
0f:fa:c2:76:83:fd:68:f3:97:c2:3b:7c:7b:ab:8e:c4:08:84:
75:06:2c:e0:77:a9:fa:ef:fa:54:2f:10:2c:0a:8e:f2:15:9e:
a8:b3:22:31:69:f5:f3:28:73:9f:26:dd:13:17:c5:75:cc:e5:
4b:a4:8d:e3:02:b3:55:30:69:87:b6:a3:77:4c:23:95:c0:ce:
b7:90:53:d9:cb:6f:da:76:75:7b:74:67:65:8e:72:ab:2f:b1:
57:cf:53:3b:41:2f:1d:7d:03:a3:a3:03:ce:26:5c:b5:d7:c7:
ba:72:e4:ac:3b:f6:c9:48:af:03:b6:34:69:53:a0:67:9c:d0:
b8:a0:94:e1:ce:56:26:f6:00:98:41:9f:ca:5c:31:ae:f3:40:
1f:4c:85:e9:65:94:d1:29:2b:e2:69:82:52:68:73:60:90:62:
5a:7c:5c:02:1c:eb:9c:59:f1:d4:27:68:ca:89:98:ee:30:db:
62:0f:2b:a7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNWiQYYrxnklXO2ZBIF+fr5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjYWI0MjIzOWJhOTQ0ODViMzEwYjU1MTVkY2NjN2ZlZWQ5
MjIwNWMwHhcNMjQxMTIzMDEwMDQwWhcNMjQxMTI0MDEwMDQwWjAzMTEwLwYDVQQD
EyhhZGNiYTE0MDNhNGNmYzFiMzBlZDExNTJhYTQzM2E5NjNiYWM4YjBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0xh7FfWgC8sjU+/DMYlPRAa8ym+I
YSPUEbOKsU9LiXGgsYHIN+zVVca5htNlinzz2QRWrscj7Qtte9xQN+v8CMtu2I/5
mb0b+ZGNRtftzaPnPk7UvtLRDZG3BNc9WO3JAeQmSsJ2pJnIYX2jIGvfcobUHtwX
P5abNDPH5ROdIAzJ/JU8xOvLj2CWLnl0u3VfK/YEb/2wNbrbiZJB2osTXic6ZvRG
sHVsibORvXWuYeoPxwPIdn4kchoT9Do4uW5EE0IfYnuZf4TsJbU8Mo2rkWrdnBeT
9VlQG5QQKmSHfeEh+mgjugvP89+jMKGDrc8oeh+3hlDiNbQx8FMFol65twIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK3LoUA6TPwbMO0RUqpDOpY7rIsMMB8GA1UdIwQY
MBaAFAyrQiObqUSFsxC1UV3Mx/7tkiBcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvREt0Q0k1dXBSSVd6RUxWUlhjekhfdTJTSUZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9hYWI2MmUtNDA4Yy00ODNkLTk1ZmEt
Y2MxMTlkMjc3MTQ4LzEvREt0Q0k1dXBSSVd6RUxWUlhjekhfdTJTSUZ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi9hYWI2MmUtNDA4Yy00ODNkLTk1ZmEtY2MxMTlkMjc3MTQ4
LzEvREt0Q0k1dXBSSVd6RUxWUlhjekhfdTJTSUZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAitG6g7W+
YvJAZmyYsugTE8cJmCi/mdRwD66xNYmHcCT/aET6yPr6KsIqO6OZjdFFX6R61BEf
M/oaf7eB7WzZ0AHuw9IUj+zYD/rCdoP9aPOXwjt8e6uOxAiEdQYs4Hep+u/6VC8Q
LAqO8hWeqLMiMWn18yhznybdExfFdczlS6SN4wKzVTBph7ajd0wjlcDOt5BT2ctv
2nZ1e3RnZY5yqy+xV89TO0EvHX0Do6MDziZctdfHunLkrDv2yUivA7Y0aVOgZ5zQ
uKCU4c5WJvYAmEGfylwxrvNAH0yF6WWU0Skr4mmCUmhzYJBiWnxcAhzrnFnx1Cdo
yomY7jDbYg8rpw==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:56:51 2024 by rpki-client on console-ams.rpki-client.org