Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
File: o2n7GRvuUc3HQUppYxl_hrvzE6s.mft (raw, json)
Hash identifier: 4+ICWiWw242TD22WArnIiJlrCMF2486UgAUIOIGKaCg=
Subject key identifier: 47:67:F7:A3:26:CC:43:20:AC:DB:53:3E:11:8F:ED:00:48:7D:40:46
Authority key identifier: A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB
Certificate issuer: /CN=a369fb191bee51cdc7414a6963197f86bbf313ab
Certificate serial: 019369D94FA26AD5E228075AF9097FCBD923
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
Manifest number: 0DDB
Signing time: Tue 26 Nov 2024 19:01:09 +0000
Manifest this update: Tue 26 Nov 2024 19:01:09 +0000
Manifest next update: Wed 27 Nov 2024 19:01:09 +0000
Files and hashes: 1: 8Umg6eVtRsPMV0mzwlBJQoSsbCQ.roa (hash: iLAWHhxdSrtPwSRNnB5zc79IbXFMHTbmnboH3BYb3fs=)
2: o2n7GRvuUc3HQUppYxl_hrvzE6s.crl (hash: dVL01P6qGr6MDf3Z1tDufx1C33+qHimJxwA9epd/q80=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:d9:4f:a2:6a:d5:e2:28:07:5a:f9:09:7f:cb:d9:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a369fb191bee51cdc7414a6963197f86bbf313ab
Validity
Not Before: Nov 26 19:01:09 2024 GMT
Not After : Nov 27 19:01:09 2024 GMT
Subject: CN=4767f7a326cc4320acdb533e118fed00487d4046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:57:0f:52:34:0e:d6:64:3a:3e:66:39:3e:68:
28:73:48:5a:11:33:7e:c9:37:5c:a8:9a:22:31:23:
34:84:36:54:75:3d:a7:2a:11:6d:3d:48:ef:c5:3f:
8f:f3:d6:ea:04:70:7a:d1:7d:63:1c:70:c7:dd:69:
2e:14:86:02:c8:23:8b:bf:8e:36:67:3f:9d:8d:be:
1d:f2:98:7c:e5:f1:d3:8c:a3:84:d1:94:fc:e7:ba:
69:b1:6f:06:9a:b4:4b:57:10:c2:be:10:3b:d0:e7:
36:be:2b:bd:e9:1a:0a:bd:cf:f9:ae:03:b7:1c:f7:
5b:2b:f4:88:70:78:e5:3d:4e:45:3f:c3:54:37:f2:
67:42:f9:6a:59:bf:bc:57:54:64:e0:dc:65:3c:9d:
2e:ae:7b:24:8d:e5:77:c6:56:5b:47:28:cb:55:37:
58:b7:72:a1:48:49:fc:b3:78:27:f2:45:2c:c8:b7:
28:9c:b6:02:04:32:b7:49:09:9c:f5:7b:25:c6:35:
41:56:df:46:82:ce:4c:11:21:e3:fe:d7:7d:1f:cb:
b5:77:10:72:10:c4:3c:e5:ec:08:89:7d:eb:2c:74:
08:b1:e5:84:4b:f3:ea:6d:b0:23:e7:3e:54:17:b5:
26:e6:d1:49:ea:f2:af:a4:fd:6c:bd:b8:78:4b:d7:
c7:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:67:F7:A3:26:CC:43:20:AC:DB:53:3E:11:8F:ED:00:48:7D:40:46
X509v3 Authority Key Identifier:
keyid:A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e2:64:2d:8e:9c:89:a7:8f:2a:04:90:e6:51:b5:cb:01:44:d9:
f5:e5:89:b0:9b:99:4c:96:cd:21:c6:49:3f:58:d1:0e:cb:58:
a0:ec:bc:a6:c5:02:67:db:c2:4d:7e:97:0e:bb:3e:2c:f5:bf:
df:e4:f3:87:6b:df:95:c4:07:03:8c:0c:f1:5a:fc:30:7a:c4:
96:2b:45:ca:25:04:a3:d5:26:e1:40:6c:e8:22:0e:5d:fa:4b:
93:71:fe:6a:5d:44:1e:e5:79:84:34:86:10:10:cb:82:dd:2e:
7d:09:f8:6e:7c:e9:e4:0a:2f:6f:8b:46:38:ea:c3:a1:74:38:
e1:6a:56:94:ea:28:76:e4:73:aa:d2:6a:b1:6b:39:c2:38:de:
5e:87:61:45:53:b6:18:64:a2:84:7f:d3:0a:82:08:53:1b:76:
f8:89:fd:48:6e:6f:6f:19:0a:5a:ba:f3:e7:35:31:f4:09:48:
2e:4b:0c:a4:8b:90:e1:f2:6a:e9:30:cc:32:50:e4:65:93:6f:
e6:f9:89:0a:6e:0b:64:83:ac:30:ae:ff:bf:9d:75:5a:db:1f:
e1:15:12:58:50:c6:02:2a:27:46:6b:3a:68:5c:fd:f5:4e:c4:
0a:52:d3:ea:3d:e7:60:0d:cb:a1:94:18:c5:a6:67:7e:e1:f1:
e2:e0:9b:08
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNp2U+iatXiKAda+Ql/y9kjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzNjlmYjE5MWJlZTUxY2RjNzQxNGE2OTYzMTk3Zjg2YmJm
MzEzYWIwHhcNMjQxMTI2MTkwMTA5WhcNMjQxMTI3MTkwMTA5WjAzMTEwLwYDVQQD
Eyg0NzY3ZjdhMzI2Y2M0MzIwYWNkYjUzM2UxMThmZWQwMDQ4N2Q0MDQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArVcPUjQO1mQ6PmY5Pmgoc0haETN+
yTdcqJoiMSM0hDZUdT2nKhFtPUjvxT+P89bqBHB60X1jHHDH3WkuFIYCyCOLv442
Zz+djb4d8ph85fHTjKOE0ZT857ppsW8GmrRLVxDCvhA70Oc2viu96RoKvc/5rgO3
HPdbK/SIcHjlPU5FP8NUN/JnQvlqWb+8V1Rk4NxlPJ0urnskjeV3xlZbRyjLVTdY
t3KhSEn8s3gn8kUsyLconLYCBDK3SQmc9XslxjVBVt9Ggs5MESHj/td9H8u1dxBy
EMQ85ewIiX3rLHQIseWES/PqbbAj5z5UF7Um5tFJ6vKvpP1svbh4S9fHQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEdn96MmzEMgrNtTPhGP7QBIfUBGMB8GA1UdIwQY
MBaAFKNp+xkb7lHNx0FKaWMZf4a78xOrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzJuN0dSdnVVYzNIUVVwcFl4bF9ocnZ6RTZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8yMGRhNjAtYzcxOS00YmUxLThlNGYt
ZTE4MDUyZjM4MWJiLzEvbzJuN0dSdnVVYzNIUVVwcFl4bF9ocnZ6RTZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS8yMGRhNjAtYzcxOS00YmUxLThlNGYtZTE4MDUyZjM4MWJi
LzEvbzJuN0dSdnVVYzNIUVVwcFl4bF9ocnZ6RTZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA4mQtjpyJ
p48qBJDmUbXLAUTZ9eWJsJuZTJbNIcZJP1jRDstYoOy8psUCZ9vCTX6XDrs+LPW/
3+Tzh2vflcQHA4wM8Vr8MHrElitFyiUEo9Um4UBs6CIOXfpLk3H+al1EHuV5hDSG
EBDLgt0ufQn4bnzp5Aovb4tGOOrDoXQ44WpWlOooduRzqtJqsWs5wjjeXodhRVO2
GGSihH/TCoIIUxt2+In9SG5vbxkKWrrz5zUx9AlILksMpIuQ4fJq6TDMMlDkZZNv
5vmJCm4LZIOsMK7/v511Wtsf4RUSWFDGAionRms6aFz99U7EClLT6j3nYA3LoZQY
xaZnfuHx4uCbCA==
-----END CERTIFICATE-----
Generated at Wed Nov 27 01:00:50 2024 by rpki-client on console-fra.rpki-client.org