Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
File: UGF1T3aJFp9qFQZQlUcmcrorRYk.mft (raw, json)
Hash identifier: pJQ/cmq5nalfGziv+XQ90BtzPs9Uea/AoCPX6QnZXwM=
Subject key identifier: E1:2F:22:8F:5E:84:36:2B:1C:70:6D:FE:47:71:56:C9:59:21:60:42
Authority key identifier: 50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89
Certificate issuer: /CN=5061754f7689169f6a15065095472672ba2b4589
Certificate serial: 019367EB3E0BC656D521103D75336CB433B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
Manifest number: 0AED
Signing time: Tue 26 Nov 2024 10:01:30 +0000
Manifest this update: Tue 26 Nov 2024 10:01:30 +0000
Manifest next update: Wed 27 Nov 2024 10:01:30 +0000
Files and hashes: 1: Dm4V2AUXx_cChrIeXcWSewu0WiU.roa (hash: XNGeDtwmg/EVerEEd2+0Dxpjg/2V/SgJ6je+zgVlVcE=)
2: UGF1T3aJFp9qFQZQlUcmcrorRYk.crl (hash: tsMEXl8IhHVr/QP1KKAV6yxzwiyxLyUZAWSIPPN8jpY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:67:eb:3e:0b:c6:56:d5:21:10:3d:75:33:6c:b4:33:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5061754f7689169f6a15065095472672ba2b4589
Validity
Not Before: Nov 26 10:01:30 2024 GMT
Not After : Nov 27 10:01:30 2024 GMT
Subject: CN=e12f228f5e84362b1c706dfe477156c959216042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4a:d0:32:57:74:f6:c1:81:3a:05:81:44:f5:
07:42:ac:29:d9:71:27:03:33:9f:c0:7d:ab:23:ae:
a6:f6:9d:0d:05:13:69:85:f2:12:0f:8a:30:66:31:
cd:8e:98:b5:64:cb:17:97:f0:0b:94:73:56:57:84:
55:17:0d:72:de:e5:e5:26:5d:9b:be:07:af:bb:a8:
6b:0e:1e:8e:fc:f0:67:a3:f0:90:c1:44:22:17:53:
8c:2c:51:73:58:c7:1a:06:f6:b2:95:86:38:56:4f:
d6:d6:ea:81:ac:63:56:5e:56:9f:34:20:e0:ab:43:
a4:6d:16:cf:2d:d1:5c:90:68:9a:3b:01:77:39:7e:
72:e1:ec:69:2d:d0:ea:40:c5:5c:46:08:38:dc:ac:
b8:e9:6c:6d:5b:15:df:f9:d2:b0:36:2e:dd:9a:81:
b2:8e:38:41:57:a9:b8:31:2e:70:6d:eb:a9:a0:d6:
92:12:1d:3a:f1:1f:f2:34:17:e3:a9:7a:1b:8e:da:
85:55:ae:b8:f1:c5:24:11:69:62:a0:5c:93:21:c0:
f7:fc:1c:1c:43:6f:74:0c:a6:40:b1:4b:38:7d:19:
5d:ae:f3:1c:d5:0b:f7:34:be:2d:87:99:e3:8e:bb:
fd:76:f2:45:d7:7d:cf:c4:f0:4b:4a:95:03:38:d7:
0d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:2F:22:8F:5E:84:36:2B:1C:70:6D:FE:47:71:56:C9:59:21:60:42
X509v3 Authority Key Identifier:
keyid:50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:ab:52:21:f1:31:d6:38:78:85:82:35:37:49:35:d2:42:5d:
16:b5:14:f0:55:38:9f:65:cd:9d:ae:b2:26:84:ac:25:f2:94:
a3:c2:14:31:74:7a:88:cc:f6:9d:4e:03:6e:f6:f0:4a:6e:88:
7d:a6:d4:84:53:fe:10:ec:8b:d2:8b:c3:5f:45:32:30:44:45:
7e:35:e2:aa:a8:45:f9:c5:a4:d1:3b:57:0d:a1:86:0a:87:2f:
f8:4f:ac:2e:f3:91:ad:7a:47:b9:3a:bd:0a:25:85:13:c8:48:
02:21:e2:6e:28:0c:8a:bc:84:bf:dd:f3:0b:00:bb:de:fb:44:
b8:4f:9e:cd:23:64:a2:ce:37:13:13:6c:b8:af:3d:6a:75:f1:
8b:41:c8:f0:fa:eb:4b:90:34:51:d5:04:f6:bd:27:61:c7:66:
8e:7a:a8:58:53:1c:7b:e8:d7:71:8f:1c:6b:bd:a0:20:03:a2:
45:d4:f0:38:ae:13:98:5d:3b:a7:34:f9:66:de:73:fa:cf:22:
9b:f5:09:32:e6:17:6a:75:92:57:9b:b8:14:d0:22:b2:aa:36:
f0:fe:19:d1:ff:c0:2c:fc:17:70:2d:22:86:5c:99:9a:3d:8c:
13:d1:e4:30:8d:a2:ec:2a:51:36:66:79:3f:3a:d8:30:6f:7f:
21:9b:bf:12
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNn6z4LxlbVIRA9dTNstDOwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwNjE3NTRmNzY4OTE2OWY2YTE1MDY1MDk1NDcyNjcyYmEy
YjQ1ODkwHhcNMjQxMTI2MTAwMTMwWhcNMjQxMTI3MTAwMTMwWjAzMTEwLwYDVQQD
EyhlMTJmMjI4ZjVlODQzNjJiMWM3MDZkZmU0NzcxNTZjOTU5MjE2MDQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo0rQMld09sGBOgWBRPUHQqwp2XEn
AzOfwH2rI66m9p0NBRNphfISD4owZjHNjpi1ZMsXl/ALlHNWV4RVFw1y3uXlJl2b
vgevu6hrDh6O/PBno/CQwUQiF1OMLFFzWMcaBvaylYY4Vk/W1uqBrGNWXlafNCDg
q0OkbRbPLdFckGiaOwF3OX5y4expLdDqQMVcRgg43Ky46WxtWxXf+dKwNi7dmoGy
jjhBV6m4MS5wbeupoNaSEh068R/yNBfjqXobjtqFVa648cUkEWlioFyTIcD3/Bwc
Q290DKZAsUs4fRldrvMc1Qv3NL4th5njjrv9dvJF133PxPBLSpUDONcN/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOEvIo9ehDYrHHBt/kdxVslZIWBCMB8GA1UdIwQY
MBaAFFBhdU92iRafahUGUJVHJnK6K0WJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUdGMVQzYUpGcDlxRlFaUWxVY21jcm9yUllrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi8zYjU5ZDUtNjAyZC00MzUxLTk2YmMt
YTEwODY0OWQ1MWUyLzEvVUdGMVQzYUpGcDlxRlFaUWxVY21jcm9yUllrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi8zYjU5ZDUtNjAyZC00MzUxLTk2YmMtYTEwODY0OWQ1MWUy
LzEvVUdGMVQzYUpGcDlxRlFaUWxVY21jcm9yUllrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAr6tSIfEx
1jh4hYI1N0k10kJdFrUU8FU4n2XNna6yJoSsJfKUo8IUMXR6iMz2nU4DbvbwSm6I
fabUhFP+EOyL0ovDX0UyMERFfjXiqqhF+cWk0TtXDaGGCocv+E+sLvORrXpHuTq9
CiWFE8hIAiHibigMiryEv93zCwC73vtEuE+ezSNkos43ExNsuK89anXxi0HI8Prr
S5A0UdUE9r0nYcdmjnqoWFMce+jXcY8ca72gIAOiRdTwOK4TmF07pzT5Zt5z+s8i
m/UJMuYXanWSV5u4FNAisqo28P4Z0f/ALPwXcC0ihlyZmj2ME9HkMI2i7CpRNmZ5
PzrYMG9/IZu/Eg==
-----END CERTIFICATE-----
Generated at Tue Nov 26 20:13:29 2024 by rpki-client on console-ams.rpki-client.org