Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
File: oL_QbOhVti2baIzYxTXV9JTNOTI.mft (raw, json)
Hash identifier: iEdpiz+Uj2tovYBt7nzr/XDNmx2ndsg7/2TiEt7c724=
Subject key identifier: 22:82:B0:03:AC:A1:1A:58:5F:74:7F:FE:4F:D8:E5:05:62:92:9E:41
Authority key identifier: A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
Certificate issuer: /CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Certificate serial: 0192395DB1AF3C6EF590EACBA4E6A2AB0DDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
Manifest number: 12E0
Signing time: Sat 28 Sep 2024 16:01:34 +0000
Manifest this update: Sat 28 Sep 2024 16:01:34 +0000
Manifest next update: Sun 29 Sep 2024 16:01:34 +0000
Files and hashes: 1: aGyy1q6RTQGqzii81fL5dCXOn44.roa (hash: hLjJV/3qHXRvpAG0JNbjeiSSZdXUkbaldo27jd4itZ8=)
2: oL_QbOhVti2baIzYxTXV9JTNOTI.crl (hash: 4L/4yk11Om96KhX54JXTae1xu/QguSOILjwSQ9IEumg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 16:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:39:5d:b1:af:3c:6e:f5:90:ea:cb:a4:e6:a2:ab:0d:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Validity
Not Before: Sep 28 16:01:34 2024 GMT
Not After : Sep 29 16:01:34 2024 GMT
Subject: CN=2282b003aca11a585f747ffe4fd8e50562929e41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f9:87:9d:e3:4a:73:c0:e8:d0:be:67:d9:e7:
5b:13:49:7c:0f:4e:5b:c2:82:3c:e2:9b:54:31:42:
e4:4d:b1:fe:ca:05:eb:dd:f7:6e:8a:a1:35:06:aa:
1b:d2:3f:4e:9c:cf:bf:d2:d7:85:dc:c6:bc:90:b9:
1b:94:ef:0d:bb:50:dc:e7:21:82:f2:f8:97:f5:66:
9b:a4:f5:92:01:91:30:c0:5d:aa:52:f9:ab:81:54:
75:86:a7:cf:fe:83:95:36:c5:38:9c:8a:0d:76:99:
df:41:0b:39:00:73:ef:26:94:4e:51:20:1d:60:48:
3c:fe:97:11:36:f3:53:8f:56:5a:98:90:ff:94:16:
8b:3a:7e:97:01:47:23:2e:9c:1c:66:25:5e:31:3a:
2a:c4:9c:8e:e6:13:88:e8:82:81:8b:b7:03:86:46:
23:05:ce:03:fb:f9:d0:59:12:a5:ea:48:0d:49:5a:
49:40:79:4c:3b:e3:bc:ff:13:44:2b:1f:ed:17:cc:
71:03:86:4b:8e:af:3d:6e:ab:55:45:1f:2c:87:9e:
78:8d:4d:92:df:99:21:c8:1a:3f:62:3f:af:a6:eb:
6f:25:8a:68:02:fd:95:e1:39:e1:48:89:20:ba:54:
24:0c:5b:de:b4:3b:cc:1b:37:35:02:8c:4e:07:9f:
c9:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:82:B0:03:AC:A1:1A:58:5F:74:7F:FE:4F:D8:E5:05:62:92:9E:41
X509v3 Authority Key Identifier:
keyid:A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:b6:a3:ab:0d:d4:25:64:26:02:02:5b:06:75:89:3d:1e:ab:
88:cb:dd:9f:54:f7:93:88:23:09:a7:23:b1:f8:cd:8a:e3:b1:
45:a3:f9:f3:bd:90:cf:55:1b:0d:42:c0:78:a3:22:b6:5d:c1:
ca:13:42:b1:17:54:da:30:7d:2c:d0:b7:c0:cc:af:0a:b8:b0:
20:a4:aa:98:1e:26:d6:73:0d:1f:86:fd:a0:53:f9:fd:7d:13:
e0:3d:61:5f:94:56:d0:e8:20:20:0b:62:cc:43:74:bf:24:f7:
91:41:4b:11:ea:2d:0c:b5:3f:9a:de:0a:41:1f:e0:41:c5:19:
0f:80:b4:42:48:78:dd:94:32:98:ae:73:3d:76:5f:1f:cc:29:
5f:20:29:b6:3a:3f:97:ea:17:32:44:9c:f5:ea:77:45:3d:53:
e7:2b:c3:ba:70:c7:a2:9d:67:dd:10:81:bb:a1:d3:9d:7b:27:
9b:7c:38:45:5a:aa:4a:f4:f6:2b:55:52:70:eb:1e:b4:04:11:
48:fe:8d:b3:9c:2d:e1:cd:23:38:30:36:f1:bb:03:40:00:de:
ff:3a:8d:ab:14:7a:35:e5:ce:77:be:9a:c6:6f:41:35:2e:36:
dd:c0:21:02:ec:63:80:17:01:b1:5b:6a:54:33:ce:d1:ca:85:
2d:c2:b2:0f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZI5XbGvPG71kOrLpOaiqw3eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwYmZkMDZjZTg1NWI2MmQ5YjY4OGNkOGM1MzVkNWY0OTRj
ZDM5MzIwHhcNMjQwOTI4MTYwMTM0WhcNMjQwOTI5MTYwMTM0WjAzMTEwLwYDVQQD
EygyMjgyYjAwM2FjYTExYTU4NWY3NDdmZmU0ZmQ4ZTUwNTYyOTI5ZTQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApvmHneNKc8Do0L5n2edbE0l8D05b
woI84ptUMULkTbH+ygXr3fduiqE1Bqob0j9OnM+/0teF3Ma8kLkblO8Nu1Dc5yGC
8viX9WabpPWSAZEwwF2qUvmrgVR1hqfP/oOVNsU4nIoNdpnfQQs5AHPvJpROUSAd
YEg8/pcRNvNTj1ZamJD/lBaLOn6XAUcjLpwcZiVeMToqxJyO5hOI6IKBi7cDhkYj
Bc4D+/nQWRKl6kgNSVpJQHlMO+O8/xNEKx/tF8xxA4ZLjq89bqtVRR8sh554jU2S
35khyBo/Yj+vputvJYpoAv2V4TnhSIkgulQkDFvetDvMGzc1AoxOB5/JswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCKCsAOsoRpYX3R//k/Y5QVikp5BMB8GA1UdIwQY
MBaAFKC/0GzoVbYtm2iM2MU11fSUzTkyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8wMzMxNmQtMDRlMC00NjYwLWE2M2Ut
NjcxODM5MjAwNjA0LzEvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS8wMzMxNmQtMDRlMC00NjYwLWE2M2UtNjcxODM5MjAwNjA0
LzEvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl7ajqw3U
JWQmAgJbBnWJPR6riMvdn1T3k4gjCacjsfjNiuOxRaP5872Qz1UbDULAeKMitl3B
yhNCsRdU2jB9LNC3wMyvCriwIKSqmB4m1nMNH4b9oFP5/X0T4D1hX5RW0OggIAti
zEN0vyT3kUFLEeotDLU/mt4KQR/gQcUZD4C0Qkh43ZQymK5zPXZfH8wpXyAptjo/
l+oXMkSc9ep3RT1T5yvDunDHop1n3RCBu6HTnXsnm3w4RVqqSvT2K1VScOsetAQR
SP6Ns5wt4c0jODA28bsDQADe/zqNqxR6NeXOd76axm9BNS423cAhAuxjgBcBsVtq
VDPO0cqFLcKyDw==
-----END CERTIFICATE-----
Generated at Sun Sep 29 02:02:35 2024 by rpki-client on console-ams.rpki-client.org