Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft
File: 2671wyvqS1TRfiQbXMyvB7wKjuk.mft (raw, json)
Hash identifier: 2Tj8JCvRYhG9aVpP+SbLu+l3GjxadyoOXbTwtTAUpUU=
Subject key identifier: 56:A5:48:4B:A1:ED:22:EC:75:B2:E3:8B:9A:C0:50:67:2C:51:2D:9D
Authority key identifier: DB:AE:F5:C3:2B:EA:4B:54:D1:7E:24:1B:5C:CC:AF:07:BC:0A:8E:E9
Certificate issuer: /CN=dbaef5c32bea4b54d17e241b5cccaf07bc0a8ee9
Certificate serial: 019369DAD9042B55F2E30BCD8FCD8EA241A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2671wyvqS1TRfiQbXMyvB7wKjuk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft
Manifest number: 0CF4
Signing time: Tue 26 Nov 2024 19:02:50 +0000
Manifest this update: Tue 26 Nov 2024 19:02:50 +0000
Manifest next update: Wed 27 Nov 2024 19:02:50 +0000
Files and hashes: 1: 0tp1nP42grcTIJ9Q1AbVzA-sh5I.roa (hash: dfSMq4r11nG9rR2z/jAoqnl58X5Caxmbhas0j6Lzf78=)
2: 2671wyvqS1TRfiQbXMyvB7wKjuk.crl (hash: jS/wYESMnbp3GrSaLnN6tb6DrKMCxDhNsK9SURplwXI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2671wyvqS1TRfiQbXMyvB7wKjuk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:da:d9:04:2b:55:f2:e3:0b:cd:8f:cd:8e:a2:41:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbaef5c32bea4b54d17e241b5cccaf07bc0a8ee9
Validity
Not Before: Nov 26 19:02:50 2024 GMT
Not After : Nov 27 19:02:50 2024 GMT
Subject: CN=56a5484ba1ed22ec75b2e38b9ac050672c512d9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ea:7d:6f:a4:59:1a:7a:a5:b2:d9:3a:b2:db:
01:31:82:44:3e:38:2b:8c:46:4e:60:83:f3:67:a9:
ed:9f:cc:ce:a2:46:f2:53:7a:17:99:95:51:c6:1c:
72:8f:9b:2d:e2:4f:00:12:2b:a6:7b:b9:9e:5b:c0:
67:19:e0:4c:bc:c1:50:16:9c:a0:0f:09:aa:8e:62:
62:a1:3b:14:18:c8:b9:51:32:41:3a:22:7e:e6:09:
2d:1e:19:b1:60:42:ac:ec:89:8f:0e:0b:00:1b:ac:
c9:ed:33:40:f6:b4:53:bd:01:6a:cb:1a:1c:00:df:
c6:4e:37:9e:bd:9a:5b:d4:cb:97:30:ed:c1:39:2e:
f0:b5:d3:1a:89:7c:9a:6b:ed:5f:3e:3b:ba:06:82:
cc:2f:91:9d:fc:74:46:9c:de:13:ac:0b:77:41:b9:
f4:bf:2a:2e:9f:e8:4b:e4:16:e9:f9:e8:d8:aa:29:
e4:51:12:f3:9b:5a:e2:a3:2a:3e:75:fb:1d:9b:57:
ee:58:54:ae:9a:0f:f6:1b:de:ff:ec:b1:62:18:bf:
16:ee:34:39:b1:71:77:6f:9b:55:25:71:c1:2c:c5:
9f:81:58:96:09:89:f1:fe:50:c7:c1:8e:b9:41:68:
71:13:be:93:40:74:d3:16:33:2e:a0:58:76:91:a7:
3e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:A5:48:4B:A1:ED:22:EC:75:B2:E3:8B:9A:C0:50:67:2C:51:2D:9D
X509v3 Authority Key Identifier:
keyid:DB:AE:F5:C3:2B:EA:4B:54:D1:7E:24:1B:5C:CC:AF:07:BC:0A:8E:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2671wyvqS1TRfiQbXMyvB7wKjuk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:6b:e4:c0:21:15:2f:f3:4b:84:95:2c:67:84:ac:30:d8:b8:
72:81:25:f9:f2:73:c3:9f:f0:57:76:72:40:e6:28:20:55:e0:
c5:99:97:cb:62:7a:32:25:32:ee:6e:82:9b:33:6e:60:9b:2f:
9a:d4:f3:d1:ff:b4:74:aa:b4:0f:24:05:ba:54:ff:95:5c:4b:
00:77:2f:d1:ee:0a:f8:b0:15:4e:98:a2:58:93:93:04:b6:96:
13:dd:e4:58:15:ec:42:40:10:b3:f8:d6:a8:01:b1:db:3d:7b:
22:41:c9:d7:95:80:c2:e8:27:6c:74:1b:3c:04:ad:18:f8:59:
6b:5c:b0:34:24:4c:3a:48:b3:53:fa:88:e1:da:37:fc:f9:2a:
c7:79:dd:de:9a:a1:c9:50:d3:3a:da:86:3a:99:29:6c:f8:e8:
cb:8a:bc:8a:3c:1a:34:11:3d:c0:12:06:d6:d4:3b:4f:b3:67:
3d:2e:06:f9:a6:0e:cc:44:a8:3b:9e:ff:83:bc:b4:d4:d3:7e:
93:f0:9d:2f:49:76:7d:ff:0c:87:34:33:63:57:b8:b9:fc:4e:
c0:d7:2f:4a:40:ed:f9:e1:b9:9e:20:8d:39:cd:9e:b9:c5:b7:
e3:71:cd:ee:6d:ed:55:1f:7a:fb:29:8f:48:45:1c:cd:81:aa:
21:7c:47:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNp2tkEK1Xy4wvNj82OokGlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiYWVmNWMzMmJlYTRiNTRkMTdlMjQxYjVjY2NhZjA3YmMw
YThlZTkwHhcNMjQxMTI2MTkwMjUwWhcNMjQxMTI3MTkwMjUwWjAzMTEwLwYDVQQD
Eyg1NmE1NDg0YmExZWQyMmVjNzViMmUzOGI5YWMwNTA2NzJjNTEyZDlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy+p9b6RZGnqlstk6stsBMYJEPjgr
jEZOYIPzZ6ntn8zOokbyU3oXmZVRxhxyj5st4k8AEiume7meW8BnGeBMvMFQFpyg
DwmqjmJioTsUGMi5UTJBOiJ+5gktHhmxYEKs7ImPDgsAG6zJ7TNA9rRTvQFqyxoc
AN/GTjeevZpb1MuXMO3BOS7wtdMaiXyaa+1fPju6BoLML5Gd/HRGnN4TrAt3Qbn0
vyoun+hL5Bbp+ejYqinkURLzm1rioyo+dfsdm1fuWFSumg/2G97/7LFiGL8W7jQ5
sXF3b5tVJXHBLMWfgViWCYnx/lDHwY65QWhxE76TQHTTFjMuoFh2kac+XwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFalSEuh7SLsdbLji5rAUGcsUS2dMB8GA1UdIwQY
MBaAFNuu9cMr6ktU0X4kG1zMrwe8Co7pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjY3MXd5dnFTMVRSZmlRYlhNeXZCN3dLanVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9kZWU2NmYtNDVjYy00Y2I0LTlmYmIt
NjQyY2U2NzRmOTc0LzEvMjY3MXd5dnFTMVRSZmlRYlhNeXZCN3dLanVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi9kZWU2NmYtNDVjYy00Y2I0LTlmYmItNjQyY2U2NzRmOTc0
LzEvMjY3MXd5dnFTMVRSZmlRYlhNeXZCN3dLanVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAimvkwCEV
L/NLhJUsZ4SsMNi4coEl+fJzw5/wV3ZyQOYoIFXgxZmXy2J6MiUy7m6CmzNuYJsv
mtTz0f+0dKq0DyQFulT/lVxLAHcv0e4K+LAVTpiiWJOTBLaWE93kWBXsQkAQs/jW
qAGx2z17IkHJ15WAwugnbHQbPAStGPhZa1ywNCRMOkizU/qI4do3/Pkqx3nd3pqh
yVDTOtqGOpkpbPjoy4q8ijwaNBE9wBIG1tQ7T7NnPS4G+aYOzESoO57/g7y01NN+
k/CdL0l2ff8MhzQzY1e4ufxOwNcvSkDt+eG5niCNOc2eucW343HN7m3tVR96+ymP
SEUczYGqIXxH0w==
-----END CERTIFICATE-----
Generated at Tue Nov 26 21:28:33 2024 by rpki-client on console-fra.rpki-client.org