Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft
File: cBKlLoiwGDLPDuN8zath3s59EsY.mft (raw, json)
Hash identifier: ST7KGlyhUD1cwDNlVNgrgH70Rvu76Ya4H1dHplFpVlw=
Subject key identifier: 6B:E3:02:82:A7:28:77:24:4E:D6:39:24:80:26:20:2F:2A:DE:50:AC
Authority key identifier: 70:12:A5:2E:88:B0:18:32:CF:0E:E3:7C:CD:AB:61:DE:CE:7D:12:C6
Certificate issuer: /CN=7012a52e88b01832cf0ee37ccdab61dece7d12c6
Certificate serial: 019355765C3ABE109A8DB0B27DB8110AD2F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cBKlLoiwGDLPDuN8zath3s59EsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft
Manifest number: 07F1
Signing time: Fri 22 Nov 2024 20:00:40 +0000
Manifest this update: Fri 22 Nov 2024 20:00:40 +0000
Manifest next update: Sat 23 Nov 2024 20:00:40 +0000
Files and hashes: 1: SlgaxSJ5H2B9Pbn_N_P3aWWA5yw.roa (hash: hPssqSExTPdrcJDjli/E3Ls1WtDkpjmOJmIQIOKeOFg=)
2: cBKlLoiwGDLPDuN8zath3s59EsY.crl (hash: nEAMadbovVwUbzgI7zNM9d6D6OFYy1N9/ydxL1qJqfA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cBKlLoiwGDLPDuN8zath3s59EsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:76:5c:3a:be:10:9a:8d:b0:b2:7d:b8:11:0a:d2:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7012a52e88b01832cf0ee37ccdab61dece7d12c6
Validity
Not Before: Nov 22 20:00:40 2024 GMT
Not After : Nov 23 20:00:40 2024 GMT
Subject: CN=6be30282a72877244ed639248026202f2ade50ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f6:7a:bd:82:79:05:f9:2a:6b:98:6b:45:8c:
c1:e5:98:5d:55:a6:18:24:83:e5:25:96:2c:05:0e:
7e:73:a6:d7:f4:bd:54:25:32:d0:a0:fe:36:34:59:
18:90:49:f3:0a:44:ae:d4:02:b7:47:2f:51:07:e5:
08:fe:4a:2d:e0:c4:dd:b8:68:52:3a:16:f5:f1:1c:
99:a2:69:79:8d:1c:ef:d2:eb:6c:ba:a4:9e:ac:ef:
be:19:f1:38:64:1a:66:0b:59:59:69:b3:49:d3:b3:
59:9b:cc:58:b7:4f:f5:c6:37:cc:2f:ad:20:d4:84:
7b:c6:e1:09:8a:19:bd:5f:ef:67:e0:9f:a5:c9:87:
bb:ef:31:9a:cb:40:54:38:f1:ab:1a:cf:e1:39:c0:
3f:7d:84:a3:2d:09:c1:8e:39:c2:3e:11:be:9c:f5:
7f:89:5f:a3:60:03:58:e5:69:b6:39:be:06:23:a9:
5f:a8:ad:5e:67:8f:db:fa:0b:09:dd:32:20:e1:72:
b6:6a:71:90:48:01:2a:f8:ef:59:3c:6a:da:77:f4:
5a:04:62:e6:5d:05:e4:2e:6a:7b:55:d0:71:5b:7c:
57:a4:02:e9:74:7f:24:6f:d0:67:de:0f:a0:8d:1f:
31:06:0b:52:5b:75:2c:28:c9:7a:5f:e0:cb:fa:cb:
b7:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:E3:02:82:A7:28:77:24:4E:D6:39:24:80:26:20:2F:2A:DE:50:AC
X509v3 Authority Key Identifier:
keyid:70:12:A5:2E:88:B0:18:32:CF:0E:E3:7C:CD:AB:61:DE:CE:7D:12:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cBKlLoiwGDLPDuN8zath3s59EsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:ca:86:f6:f6:08:59:a1:d4:67:24:11:76:80:48:dd:14:c0:
fa:05:ad:6d:93:f1:e0:a5:10:26:5b:09:f0:20:8e:d8:39:bd:
68:85:7f:a2:84:a5:96:40:1b:29:05:ce:2a:6e:9c:70:98:a0:
57:1e:46:d9:f4:a5:03:60:02:34:d2:8e:a1:ba:b4:55:44:ba:
3d:e3:63:26:dc:78:2c:af:98:d9:69:81:7f:a4:50:a5:bc:21:
b8:5c:d0:e4:dc:5f:65:ff:52:82:a8:16:60:04:ae:72:81:5e:
75:ca:06:6e:cc:c0:a2:e9:d9:99:74:5c:6a:bb:1c:dd:47:b5:
db:34:03:bd:eb:fe:fa:c7:f8:45:7a:ca:83:1f:99:7c:7f:48:
1f:26:81:2a:91:ea:06:70:14:fd:b3:94:96:5a:e8:ae:b3:47:
7b:ad:e7:30:53:a2:f2:80:55:3c:1b:56:f8:3e:e8:e0:55:a6:
88:28:b1:7f:0b:68:ef:59:6e:ac:15:94:53:76:9a:33:58:c3:
50:18:55:59:bb:7d:ee:c5:a5:96:1b:57:89:8a:ae:4a:7e:06:
5d:22:e2:52:17:2d:d1:0f:2b:77:33:a0:de:01:c5:1d:d7:21:
10:f3:9b:aa:ee:b1:fb:3d:ff:0e:52:9a:af:9b:20:97:9f:86:
a1:e8:29:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNVdlw6vhCajbCyfbgRCtLxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwMTJhNTJlODhiMDE4MzJjZjBlZTM3Y2NkYWI2MWRlY2U3
ZDEyYzYwHhcNMjQxMTIyMjAwMDQwWhcNMjQxMTIzMjAwMDQwWjAzMTEwLwYDVQQD
Eyg2YmUzMDI4MmE3Mjg3NzI0NGVkNjM5MjQ4MDI2MjAyZjJhZGU1MGFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxvZ6vYJ5Bfkqa5hrRYzB5ZhdVaYY
JIPlJZYsBQ5+c6bX9L1UJTLQoP42NFkYkEnzCkSu1AK3Ry9RB+UI/kot4MTduGhS
Ohb18RyZoml5jRzv0utsuqSerO++GfE4ZBpmC1lZabNJ07NZm8xYt0/1xjfML60g
1IR7xuEJihm9X+9n4J+lyYe77zGay0BUOPGrGs/hOcA/fYSjLQnBjjnCPhG+nPV/
iV+jYANY5Wm2Ob4GI6lfqK1eZ4/b+gsJ3TIg4XK2anGQSAEq+O9ZPGrad/RaBGLm
XQXkLmp7VdBxW3xXpALpdH8kb9Bn3g+gjR8xBgtSW3UsKMl6X+DL+su3PwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGvjAoKnKHckTtY5JIAmIC8q3lCsMB8GA1UdIwQY
MBaAFHASpS6IsBgyzw7jfM2rYd7OfRLGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0JLbExvaXdHRExQRHVOOHphdGgzczU5RXNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8wZTU0NWItNDQzZi00Y2ZiLThjMjgt
MzIwMWI4N2YxNDkwLzEvY0JLbExvaXdHRExQRHVOOHphdGgzczU5RXNZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8wZTU0NWItNDQzZi00Y2ZiLThjMjgtMzIwMWI4N2YxNDkw
LzEvY0JLbExvaXdHRExQRHVOOHphdGgzczU5RXNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANcqG9vYI
WaHUZyQRdoBI3RTA+gWtbZPx4KUQJlsJ8CCO2Dm9aIV/ooSllkAbKQXOKm6ccJig
Vx5G2fSlA2ACNNKOobq0VUS6PeNjJtx4LK+Y2WmBf6RQpbwhuFzQ5NxfZf9SgqgW
YASucoFedcoGbszAounZmXRcarsc3Ue12zQDvev++sf4RXrKgx+ZfH9IHyaBKpHq
BnAU/bOUllrorrNHe63nMFOi8oBVPBtW+D7o4FWmiCixfwto71lurBWUU3aaM1jD
UBhVWbt97sWllhtXiYquSn4GXSLiUhct0Q8rdzOg3gHFHdchEPObqu6x+z3/DlKa
r5sgl5+GoegpoA==
-----END CERTIFICATE-----
Generated at Fri Nov 22 21:15:54 2024 by rpki-client on console-fra.rpki-client.org