Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
File: raXVKzyodFRXW2W3IO74GiYqXzo.mft (raw, json)
Hash identifier: ig6ph9IE2oNBL/3Chj2+FWqMXX6rSJ1NVRYFGwIyinM=
Subject key identifier: 5C:0D:DB:99:46:FD:BA:83:2B:08:EE:26:D1:B9:BC:56:9B:2A:43:D4
Authority key identifier: AD:A5:D5:2B:3C:A8:74:54:57:5B:65:B7:20:EE:F8:1A:26:2A:5F:3A
Certificate issuer: /CN=ada5d52b3ca87454575b65b720eef81a262a5f3a
Certificate serial: 01935878827ED4249C8C71637D106B1A5CF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
Manifest number: 0CB0
Signing time: Sat 23 Nov 2024 10:01:52 +0000
Manifest this update: Sat 23 Nov 2024 10:01:52 +0000
Manifest next update: Sun 24 Nov 2024 10:01:52 +0000
Files and hashes: 1: 7b2Qox9u4Js-4ExWRi8J7FCWdic.roa (hash: 5zbFiA+C3xgEzyKkT4aygC7jGknLQSRyIRGxWO3b+2Q=)
2: raXVKzyodFRXW2W3IO74GiYqXzo.crl (hash: WlCAeu4NOVmIyn3jdqsLSK9QwGaJurcu58/GTtI/qYU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:78:82:7e:d4:24:9c:8c:71:63:7d:10:6b:1a:5c:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada5d52b3ca87454575b65b720eef81a262a5f3a
Validity
Not Before: Nov 23 10:01:52 2024 GMT
Not After : Nov 24 10:01:52 2024 GMT
Subject: CN=5c0ddb9946fdba832b08ee26d1b9bc569b2a43d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ed:db:0c:0e:25:a3:09:23:80:b8:26:10:17:
85:17:8b:ef:1f:cf:c5:44:f5:48:81:0d:ba:28:1d:
8a:03:e8:df:0c:44:ed:10:56:8b:14:a5:25:ba:9c:
4b:f4:ce:ca:ff:ab:d9:1f:2c:9a:d2:e2:27:ee:d7:
a6:8a:46:77:cb:90:6e:3d:00:0b:55:b1:af:d9:08:
28:0a:c1:d2:7c:c0:32:07:41:84:3b:34:91:bf:37:
e2:80:51:03:4e:68:86:dc:61:98:0b:f2:e1:91:28:
50:4b:35:b8:32:90:e6:b5:de:2f:e9:88:e5:41:89:
90:0b:9f:ac:a1:7d:86:e4:dc:0d:2d:d0:62:63:9c:
0f:88:ba:64:22:7c:50:a3:62:ed:39:e2:62:ff:8c:
33:6d:23:5f:d9:d0:89:1a:2d:e6:7e:25:27:3e:e1:
06:30:f3:1d:3c:dd:03:b8:b3:d3:10:4e:97:99:5a:
64:42:5e:e4:34:f1:81:41:e2:00:64:6d:16:c9:de:
5a:2e:17:8d:46:64:e1:6d:29:16:a0:81:95:f0:1f:
7c:c4:f3:dd:0b:dc:2d:a9:28:af:23:79:38:04:d0:
2e:7a:09:fa:2e:df:2c:e1:dd:cb:8d:c0:87:97:4c:
45:75:a3:33:c4:ca:01:8e:7d:b9:f5:91:66:d8:7e:
83:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:0D:DB:99:46:FD:BA:83:2B:08:EE:26:D1:B9:BC:56:9B:2A:43:D4
X509v3 Authority Key Identifier:
keyid:AD:A5:D5:2B:3C:A8:74:54:57:5B:65:B7:20:EE:F8:1A:26:2A:5F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:87:58:ff:49:d7:a4:9a:23:d4:ce:96:c8:f8:47:c2:d3:fa:
0d:85:b7:b5:65:62:3a:f1:90:ef:9e:1f:92:5f:c9:65:37:04:
bc:40:d4:f1:67:6a:57:bf:30:17:97:9f:ac:77:b7:1f:da:09:
5b:82:3c:72:09:4f:7d:7c:c1:ff:c1:ac:5b:97:c2:16:38:88:
02:4c:30:e0:85:50:15:ec:0c:2e:e9:24:b0:b2:24:a1:db:0f:
7e:14:ef:b3:25:c1:d0:3f:a9:b5:1f:59:df:6b:12:4f:0e:a7:
49:58:b7:47:a5:a6:75:a2:67:ad:19:a9:80:21:f6:8e:00:24:
31:43:4f:39:1b:91:1a:d5:f6:65:ad:b9:1d:e4:5d:fd:75:70:
60:c0:f1:5a:90:8c:e5:f0:4f:c7:0a:8d:79:3b:fc:3a:e3:1f:
0a:01:ce:56:85:8e:36:54:6d:2a:05:b4:12:c3:77:53:09:09:
4d:48:ed:6c:7a:59:4b:da:06:ce:b7:7e:17:46:a8:71:b5:6b:
96:f6:a4:90:dc:25:ae:20:e2:e7:6d:f7:27:a0:e7:1f:5c:e8:
4d:b0:32:2c:5b:4f:56:1a:6b:73:9c:5b:87:25:69:bf:37:bd:
3f:26:4a:8a:14:18:b1:c8:7d:a6:21:76:d8:eb:91:2d:21:37:
50:89:78:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNYeIJ+1CScjHFjfRBrGlzyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkYTVkNTJiM2NhODc0NTQ1NzViNjViNzIwZWVmODFhMjYy
YTVmM2EwHhcNMjQxMTIzMTAwMTUyWhcNMjQxMTI0MTAwMTUyWjAzMTEwLwYDVQQD
Eyg1YzBkZGI5OTQ2ZmRiYTgzMmIwOGVlMjZkMWI5YmM1NjliMmE0M2Q0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj+3bDA4lowkjgLgmEBeFF4vvH8/F
RPVIgQ26KB2KA+jfDETtEFaLFKUlupxL9M7K/6vZHyya0uIn7temikZ3y5BuPQAL
VbGv2QgoCsHSfMAyB0GEOzSRvzfigFEDTmiG3GGYC/LhkShQSzW4MpDmtd4v6Yjl
QYmQC5+soX2G5NwNLdBiY5wPiLpkInxQo2LtOeJi/4wzbSNf2dCJGi3mfiUnPuEG
MPMdPN0DuLPTEE6XmVpkQl7kNPGBQeIAZG0Wyd5aLheNRmThbSkWoIGV8B98xPPd
C9wtqSivI3k4BNAuegn6Lt8s4d3LjcCHl0xFdaMzxMoBjn259ZFm2H6DnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFwN25lG/bqDKwjuJtG5vFabKkPUMB8GA1UdIwQY
MBaAFK2l1Ss8qHRUV1tltyDu+BomKl86MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmFYVkt6eW9kRlJYVzJXM0lPNzRHaVlxWHpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS81ZDg0NTMtMDM4MC00NzVlLTllZGMt
ZDE4YWI0ZjdmNWRmLzEvcmFYVkt6eW9kRlJYVzJXM0lPNzRHaVlxWHpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS81ZDg0NTMtMDM4MC00NzVlLTllZGMtZDE4YWI0ZjdmNWRm
LzEvcmFYVkt6eW9kRlJYVzJXM0lPNzRHaVlxWHpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm4dY/0nX
pJoj1M6WyPhHwtP6DYW3tWViOvGQ754fkl/JZTcEvEDU8WdqV78wF5efrHe3H9oJ
W4I8cglPfXzB/8GsW5fCFjiIAkww4IVQFewMLukksLIkodsPfhTvsyXB0D+ptR9Z
32sSTw6nSVi3R6WmdaJnrRmpgCH2jgAkMUNPORuRGtX2Za25HeRd/XVwYMDxWpCM
5fBPxwqNeTv8OuMfCgHOVoWONlRtKgW0EsN3UwkJTUjtbHpZS9oGzrd+F0aocbVr
lvakkNwlriDi5233J6DnH1zoTbAyLFtPVhprc5xbhyVpvze9PyZKihQYsch9piF2
2OuRLSE3UIl4tA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 13:13:20 2024 by rpki-client on console-ams.rpki-client.org