Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/539171-574b-4451-b6d4-57f9bc6a5c30/1/x0heKfEYwBvobBnmaPrPpIXecYw.mft
File: x0heKfEYwBvobBnmaPrPpIXecYw.mft (raw, json)
Hash identifier: 9arHswjJ9yzPQgOXs57Przt3UGfECi0G9CwYXYEPrAg=
Subject key identifier: D8:91:94:4E:DE:C6:B9:51:61:7F:4B:52:9C:8E:6A:4E:DF:22:BB:B7
Authority key identifier: C7:48:5E:29:F1:18:C0:1B:E8:6C:19:E6:68:FA:CF:A4:85:DE:71:8C
Certificate issuer: /CN=c7485e29f118c01be86c19e668facfa485de718c
Certificate serial: 019368586835BA2027EE69F33F9F343B1EA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0heKfEYwBvobBnmaPrPpIXecYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/539171-574b-4451-b6d4-57f9bc6a5c30/1/x0heKfEYwBvobBnmaPrPpIXecYw.mft
Manifest number: 0A9F
Signing time: Tue 26 Nov 2024 12:00:44 +0000
Manifest this update: Tue 26 Nov 2024 12:00:44 +0000
Manifest next update: Wed 27 Nov 2024 12:00:44 +0000
Files and hashes: 1: TAkM8Kse39fYFWrzvcgYoZNIxNU.roa (hash: rBVftS0XyjzgWuJ1u7JhBvhPctvcwb9qnkCw9DXr2zA=)
2: x0heKfEYwBvobBnmaPrPpIXecYw.crl (hash: nuWEUZL0nGKgH5sp1kKdSUklD08i/Ks4J107bRC8OlQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/539171-574b-4451-b6d4-57f9bc6a5c30/1/x0heKfEYwBvobBnmaPrPpIXecYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/539171-574b-4451-b6d4-57f9bc6a5c30/1/x0heKfEYwBvobBnmaPrPpIXecYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/x0heKfEYwBvobBnmaPrPpIXecYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:58:68:35:ba:20:27:ee:69:f3:3f:9f:34:3b:1e:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7485e29f118c01be86c19e668facfa485de718c
Validity
Not Before: Nov 26 12:00:44 2024 GMT
Not After : Nov 27 12:00:44 2024 GMT
Subject: CN=d891944edec6b951617f4b529c8e6a4edf22bbb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:29:c8:11:df:07:35:8e:8a:e4:de:1e:d1:3e:
fb:dd:65:a6:ac:1d:d4:7e:81:db:fd:a7:3e:e6:cd:
e7:a6:11:31:d3:83:19:7d:26:a8:ec:61:34:69:4c:
fe:de:91:22:ff:74:ac:05:1b:80:ee:09:9b:a1:08:
9a:5d:fc:4c:f4:27:09:b9:19:f0:d0:03:af:30:d2:
08:c5:d3:66:bd:c0:72:c5:aa:5b:82:a2:5b:a5:ee:
56:9c:ff:4d:0c:97:e0:97:30:51:c7:32:ba:f3:e1:
b0:6a:be:fd:db:8f:22:22:6f:db:f7:b5:d4:e7:d7:
3d:6b:4f:e6:7e:e3:00:d4:db:4d:44:54:ab:d0:67:
c5:be:4b:1b:73:15:0e:c0:3e:61:49:73:9e:4f:a3:
3d:b6:06:65:59:ef:d7:a6:10:45:63:cc:43:a3:d6:
25:56:6a:38:0c:15:7c:9a:d6:69:05:b8:01:dd:64:
19:6a:98:1f:fc:0e:1b:0c:18:34:af:a8:53:44:45:
8c:99:47:51:89:8c:b8:2b:c5:63:9a:b4:45:1b:0c:
f1:c3:cc:54:a2:be:e4:93:82:ad:8f:9a:dd:f2:68:
6c:97:24:2c:f0:e9:28:11:f2:57:fa:cb:ba:76:3b:
16:62:76:fe:48:5c:52:40:e2:ca:54:88:0b:ae:b5:
9f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:91:94:4E:DE:C6:B9:51:61:7F:4B:52:9C:8E:6A:4E:DF:22:BB:B7
X509v3 Authority Key Identifier:
keyid:C7:48:5E:29:F1:18:C0:1B:E8:6C:19:E6:68:FA:CF:A4:85:DE:71:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0heKfEYwBvobBnmaPrPpIXecYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/539171-574b-4451-b6d4-57f9bc6a5c30/1/x0heKfEYwBvobBnmaPrPpIXecYw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/539171-574b-4451-b6d4-57f9bc6a5c30/1/x0heKfEYwBvobBnmaPrPpIXecYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:f7:0f:9f:ef:da:e1:eb:c2:9a:6c:4e:8c:67:0a:7a:5c:07:
d6:69:b6:91:89:a2:df:44:3d:86:59:fb:6c:ea:bd:bc:aa:cb:
cc:a2:bf:a4:eb:b2:94:14:f8:da:4b:e1:25:fc:0f:fb:55:60:
39:52:5f:79:f2:ab:77:0d:bd:b0:85:cf:6a:9b:31:d9:db:a5:
07:b9:b3:47:e4:5f:87:65:43:60:24:a1:9a:2f:a4:71:bf:6c:
7c:e0:83:2e:83:50:0b:18:4a:03:57:86:82:9a:23:38:83:6a:
7b:0f:e0:22:ab:77:bb:ed:77:4e:bd:f1:cf:a2:92:10:9c:ef:
9a:94:ef:2d:08:a6:a8:10:4b:4b:d9:7b:01:a2:84:22:e0:76:
d9:b1:a8:d9:85:2e:50:ee:0f:3e:00:bb:a5:d2:c2:96:0f:28:
14:73:13:d9:7b:03:a3:c1:64:d7:04:68:21:db:9d:5d:d5:5b:
23:ad:62:da:d8:cb:c7:c9:59:8a:f3:d9:19:59:70:70:2d:b4:
dc:72:98:63:2c:3f:81:4b:15:58:bd:58:a9:43:d6:14:50:33:
34:6b:16:c8:61:c8:f8:57:fc:85:73:8c:ca:c2:c4:48:32:4e:
5d:60:9e:1a:72:29:8b:ff:a7:54:94:e5:75:6b:be:3a:20:83:
4e:d6:fd:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNoWGg1uiAn7mnzP580Ox6gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3NDg1ZTI5ZjExOGMwMWJlODZjMTllNjY4ZmFjZmE0ODVk
ZTcxOGMwHhcNMjQxMTI2MTIwMDQ0WhcNMjQxMTI3MTIwMDQ0WjAzMTEwLwYDVQQD
EyhkODkxOTQ0ZWRlYzZiOTUxNjE3ZjRiNTI5YzhlNmE0ZWRmMjJiYmI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ynIEd8HNY6K5N4e0T773WWmrB3U
foHb/ac+5s3nphEx04MZfSao7GE0aUz+3pEi/3SsBRuA7gmboQiaXfxM9CcJuRnw
0AOvMNIIxdNmvcByxapbgqJbpe5WnP9NDJfglzBRxzK68+Gwar79248iIm/b97XU
59c9a0/mfuMA1NtNRFSr0GfFvksbcxUOwD5hSXOeT6M9tgZlWe/XphBFY8xDo9Yl
Vmo4DBV8mtZpBbgB3WQZapgf/A4bDBg0r6hTREWMmUdRiYy4K8VjmrRFGwzxw8xU
or7kk4Ktj5rd8mhslyQs8OkoEfJX+su6djsWYnb+SFxSQOLKVIgLrrWf+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNiRlE7exrlRYX9LUpyOak7fIru3MB8GA1UdIwQY
MBaAFMdIXinxGMAb6GwZ5mj6z6SF3nGMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveDBoZUtmRVl3QnZvYkJubWFQclBwSVhlY1l3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC81MzkxNzEtNTc0Yi00NDUxLWI2ZDQt
NTdmOWJjNmE1YzMwLzEveDBoZUtmRVl3QnZvYkJubWFQclBwSVhlY1l3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC81MzkxNzEtNTc0Yi00NDUxLWI2ZDQtNTdmOWJjNmE1YzMw
LzEveDBoZUtmRVl3QnZvYkJubWFQclBwSVhlY1l3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ/cPn+/a
4evCmmxOjGcKelwH1mm2kYmi30Q9hln7bOq9vKrLzKK/pOuylBT42kvhJfwP+1Vg
OVJfefKrdw29sIXPapsx2dulB7mzR+Rfh2VDYCShmi+kcb9sfOCDLoNQCxhKA1eG
gpojOINqew/gIqt3u+13Tr3xz6KSEJzvmpTvLQimqBBLS9l7AaKEIuB22bGo2YUu
UO4PPgC7pdLClg8oFHMT2XsDo8Fk1wRoIdudXdVbI61i2tjLx8lZivPZGVlwcC20
3HKYYyw/gUsVWL1YqUPWFFAzNGsWyGHI+Ff8hXOMysLESDJOXWCeGnIpi/+nVJTl
dWu+OiCDTtb9Gg==
-----END CERTIFICATE-----
Generated at Tue Nov 26 17:55:54 2024 by rpki-client on console-ams.rpki-client.org