Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.mft
File: yABBYZAh42MorViY6Jl4cEa48Pk.mft (raw, json)
Hash identifier: TwLXygEaP7MyoCzw/xN0ZKP/+c8njzmmflySKo0lPwc=
Subject key identifier: 85:04:74:94:ED:A8:30:82:13:2B:DA:55:18:47:68:92:09:A3:74:F8
Authority key identifier: C8:00:41:61:90:21:E3:63:28:AD:58:98:E8:99:78:70:46:B8:F0:F9
Certificate issuer: /CN=c80041619021e36328ad5898e899787046b8f0f9
Certificate serial: 01936BC78576C2944226911DC9C7B6E84C2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yABBYZAh42MorViY6Jl4cEa48Pk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.mft
Manifest number: 040A
Signing time: Wed 27 Nov 2024 04:00:57 +0000
Manifest this update: Wed 27 Nov 2024 04:00:57 +0000
Manifest next update: Thu 28 Nov 2024 04:00:57 +0000
Files and hashes: 1: ExOhs3Q1STMU49pYKZgPqymCNK8.roa (hash: ZtxLkG+3P5o8qzYkH5Li9sLyLqmpXn3wi3g/2UXJ/Fs=)
2: yABBYZAh42MorViY6Jl4cEa48Pk.crl (hash: N5ucTi6Zb6m23N5H4+XzLnDMGwO2LaARNK8gKFIfN3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.mft
rsync://rpki.ripe.net/repository/DEFAULT/yABBYZAh42MorViY6Jl4cEa48Pk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 28 Nov 2024 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6b:c7:85:76:c2:94:42:26:91:1d:c9:c7:b6:e8:4c:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c80041619021e36328ad5898e899787046b8f0f9
Validity
Not Before: Nov 27 04:00:57 2024 GMT
Not After : Nov 28 04:00:57 2024 GMT
Subject: CN=85047494eda83082132bda551847689209a374f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:07:1b:26:b6:5e:b3:14:bd:ca:6e:a0:bd:2c:
e2:3f:97:d8:af:7b:a8:8f:42:42:f6:cf:bc:67:19:
d3:d8:bf:de:7d:72:4e:1a:13:23:99:0f:b6:5a:c2:
71:a9:4f:9e:05:80:00:30:b4:1c:13:72:fc:f0:10:
a2:2e:fe:a2:07:de:c7:be:46:3b:9b:70:ea:0a:f7:
17:58:09:c4:34:ed:b8:b7:46:1b:61:ec:69:c3:6a:
99:10:50:9b:64:32:01:de:eb:82:93:4e:23:cc:6a:
ab:74:9c:ed:04:0d:c3:fc:82:cc:bc:d0:ef:e9:4b:
9b:f5:8b:e1:e4:4c:a9:36:40:ab:b7:74:de:79:47:
01:61:b8:03:6e:0a:48:29:60:88:87:9d:ec:5e:69:
a1:bc:65:8b:df:dd:6e:f2:60:32:4f:04:d5:8f:9a:
73:41:e3:80:f2:0b:5a:74:7c:07:80:62:b7:53:33:
c0:3a:96:e3:13:f3:98:40:8b:85:d2:cc:78:8b:c1:
17:84:48:d6:06:3f:13:af:da:4d:0a:c1:ca:39:d4:
82:b3:d8:50:69:ce:96:9f:47:28:63:c0:f6:9d:13:
00:0b:1f:c7:c0:05:cc:8d:e4:7c:5e:07:d0:84:e3:
18:5b:b0:d4:9a:e6:c7:87:ed:b0:03:49:17:09:01:
0d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:04:74:94:ED:A8:30:82:13:2B:DA:55:18:47:68:92:09:A3:74:F8
X509v3 Authority Key Identifier:
keyid:C8:00:41:61:90:21:E3:63:28:AD:58:98:E8:99:78:70:46:B8:F0:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yABBYZAh42MorViY6Jl4cEa48Pk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:ea:8e:54:57:5c:d2:b2:87:ed:8a:fc:b7:aa:8e:9b:cf:84:
71:ea:10:69:44:00:7b:67:4c:dc:55:da:98:8c:16:45:b1:4f:
d1:18:3b:a6:20:8a:cf:30:4d:ff:4c:4b:6a:ad:84:20:b7:f4:
90:f1:1d:d8:61:aa:0c:62:36:11:90:bd:61:90:8c:0c:2d:d4:
e6:1e:d2:f1:c8:5b:63:09:7a:d5:d6:08:41:62:8e:8f:86:7e:
4c:02:dd:98:1c:e0:76:51:c0:c2:71:b9:87:d2:a4:92:28:95:
73:48:32:83:b0:45:82:6f:f3:36:04:5d:c5:45:db:bd:dd:51:
c2:53:96:4e:d7:17:43:94:44:1e:c6:b4:6e:db:60:51:4d:62:
cf:19:12:1f:be:f0:30:3c:12:0a:35:dd:9a:85:db:9c:dd:85:
94:90:cb:91:49:06:bc:61:c0:8d:48:4b:2d:93:85:39:e8:8b:
0a:22:c5:f6:61:6c:7a:c0:c8:df:8a:43:0d:15:e6:d5:9c:96:
b8:1c:55:b0:67:94:dc:58:32:0a:79:57:87:9b:ab:d9:aa:ad:
e7:2b:08:cf:4d:af:55:4c:c8:2a:90:c9:b9:9f:f5:e6:f5:50:
ce:6f:64:ea:26:61:4f:2d:dd:6f:e7:46:82:b2:9d:a3:2c:12:
a3:8f:98:e1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNrx4V2wpRCJpEdyce26EwrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4MDA0MTYxOTAyMWUzNjMyOGFkNTg5OGU4OTk3ODcwNDZi
OGYwZjkwHhcNMjQxMTI3MDQwMDU3WhcNMjQxMTI4MDQwMDU3WjAzMTEwLwYDVQQD
Eyg4NTA0NzQ5NGVkYTgzMDgyMTMyYmRhNTUxODQ3Njg5MjA5YTM3NGY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnwcbJrZesxS9ym6gvSziP5fYr3uo
j0JC9s+8ZxnT2L/efXJOGhMjmQ+2WsJxqU+eBYAAMLQcE3L88BCiLv6iB97HvkY7
m3DqCvcXWAnENO24t0YbYexpw2qZEFCbZDIB3uuCk04jzGqrdJztBA3D/ILMvNDv
6Uub9Yvh5EypNkCrt3TeeUcBYbgDbgpIKWCIh53sXmmhvGWL391u8mAyTwTVj5pz
QeOA8gtadHwHgGK3UzPAOpbjE/OYQIuF0sx4i8EXhEjWBj8Tr9pNCsHKOdSCs9hQ
ac6Wn0coY8D2nRMACx/HwAXMjeR8XgfQhOMYW7DUmubHh+2wA0kXCQENbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIUEdJTtqDCCEyvaVRhHaJIJo3T4MB8GA1UdIwQY
MBaAFMgAQWGQIeNjKK1YmOiZeHBGuPD5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveUFCQllaQWg0Mk1vclZpWTZKbDRjRWE0OFBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82ODVjOTktY2ZkZi00MmEwLTg0MzYt
ZDI5N2RiMjMwYTE0LzEveUFCQllaQWg0Mk1vclZpWTZKbDRjRWE0OFBrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC82ODVjOTktY2ZkZi00MmEwLTg0MzYtZDI5N2RiMjMwYTE0
LzEveUFCQllaQWg0Mk1vclZpWTZKbDRjRWE0OFBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfuqOVFdc
0rKH7Yr8t6qOm8+EceoQaUQAe2dM3FXamIwWRbFP0Rg7piCKzzBN/0xLaq2EILf0
kPEd2GGqDGI2EZC9YZCMDC3U5h7S8chbYwl61dYIQWKOj4Z+TALdmBzgdlHAwnG5
h9KkkiiVc0gyg7BFgm/zNgRdxUXbvd1RwlOWTtcXQ5REHsa0bttgUU1izxkSH77w
MDwSCjXdmoXbnN2FlJDLkUkGvGHAjUhLLZOFOeiLCiLF9mFsesDI34pDDRXm1ZyW
uBxVsGeU3FgyCnlXh5ur2aqt5ysIz02vVUzIKpDJuZ/15vVQzm9k6iZhTy3db+dG
grKdoywSo4+Y4Q==
-----END CERTIFICATE-----
Generated at Wed Nov 27 08:55:39 2024 by rpki-client on console-fra.rpki-client.org