Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
File: lRibFY2NYBG6X5YlLTAmanDT4GY.mft (raw, json)
Hash identifier: unMj7lvQI98Wm7UEGnXMSjD6hQoSChlwjrLPYu+9VdA=
Subject key identifier: 79:0F:C2:37:41:94:E0:37:9E:11:28:4A:2C:97:49:76:2D:8A:B4:E2
Authority key identifier: 95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66
Certificate issuer: /CN=95189b158d8d6011ba5f96252d30266a70d3e066
Certificate serial: 019368C6095CFF07F17887C0E93F608623BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
Manifest number: 137A
Signing time: Tue 26 Nov 2024 14:00:29 +0000
Manifest this update: Tue 26 Nov 2024 14:00:29 +0000
Manifest next update: Wed 27 Nov 2024 14:00:29 +0000
Files and hashes: 1: 4HP8LX5cbVJrjtuUPXHeMcCl95Q.roa (hash: 4FyMZhvaha8W2HkWzerWXYj+JlZyYgONUJPkpQHpRGc=)
2: lRibFY2NYBG6X5YlLTAmanDT4GY.crl (hash: wgCiO5jATddWjd6FEhDXTi4HZxwbjcTQJTNFeQJ9HUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 14:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:c6:09:5c:ff:07:f1:78:87:c0:e9:3f:60:86:23:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95189b158d8d6011ba5f96252d30266a70d3e066
Validity
Not Before: Nov 26 14:00:29 2024 GMT
Not After : Nov 27 14:00:29 2024 GMT
Subject: CN=790fc2374194e0379e11284a2c9749762d8ab4e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:00:fe:99:2d:a6:09:34:75:e8:70:b1:4c:94:
23:e5:7b:ef:cb:d8:a3:67:65:64:f5:a3:b4:1d:93:
62:b1:41:b5:7e:59:65:61:5d:b5:3e:2f:31:ff:86:
83:a5:ff:7f:26:70:ab:03:f5:4f:eb:43:d8:1f:13:
6b:da:72:d7:21:7a:b8:f3:7a:93:33:b0:a6:ab:49:
19:b1:c6:d1:04:b8:b3:f6:07:71:36:69:cb:7a:8b:
62:a9:79:fd:92:57:e3:4a:a1:43:88:35:df:4e:f0:
00:c4:0e:14:81:d0:5b:95:1c:9f:d2:66:af:5d:67:
fb:d6:9b:c0:34:f8:6a:ee:eb:aa:50:8e:a6:57:6f:
4e:be:9e:85:83:8a:fb:29:a3:6f:98:27:2e:4f:eb:
0c:30:86:91:53:65:ef:73:6d:1f:eb:f7:41:4a:75:
1e:e0:b9:c1:b7:52:e8:60:52:c3:66:61:86:41:1d:
fb:b3:3b:99:1f:09:b4:28:2c:6c:d8:9e:7f:f0:50:
4c:e0:0a:c3:06:8c:c3:a1:71:3b:a1:ad:5c:94:e8:
80:fa:53:86:f7:ff:02:a0:bc:55:9f:9a:1f:d4:3d:
60:a2:af:61:e9:f6:2c:05:be:71:5b:97:d9:ec:54:
d8:0a:54:6b:1b:37:30:eb:a2:45:6a:70:cf:24:3e:
e2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:0F:C2:37:41:94:E0:37:9E:11:28:4A:2C:97:49:76:2D:8A:B4:E2
X509v3 Authority Key Identifier:
keyid:95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:75:eb:09:00:0c:40:34:aa:47:31:7f:30:36:72:08:10:53:
e1:1f:37:79:2e:0a:ff:f7:12:1b:7a:7a:fd:71:11:48:65:2f:
38:94:04:8f:4a:c7:c6:a8:fb:4c:45:4d:5d:f9:5e:8b:d5:a5:
a7:a5:57:98:1d:df:fa:50:f3:08:d7:12:5f:67:5c:01:30:3a:
84:0d:c5:34:3d:2e:fb:5e:2e:b2:30:b3:f2:a3:f3:92:68:3d:
93:ee:3f:e0:9d:82:da:13:55:10:c7:7d:ab:11:bd:45:29:19:
6b:28:e1:37:ba:51:7a:8b:0e:9c:7a:ac:6f:a8:31:fe:a3:58:
97:96:18:29:81:6d:61:bd:9e:a9:9f:4e:89:fa:df:9a:41:2f:
e9:b7:aa:02:5b:13:1b:1e:0b:eb:a5:7f:3c:75:a1:b1:39:d9:
e7:48:e7:af:df:a5:a7:76:8c:ef:6a:3a:a4:e8:ff:f4:1e:be:
ab:c0:3e:67:a6:70:bf:f1:ce:ac:91:d5:cf:62:d1:82:c3:76:
cd:8b:af:e3:0e:be:2a:47:9d:e1:7c:e1:25:52:26:af:10:c1:
1f:e7:b8:43:69:30:d9:6c:b8:4f:87:ef:49:a3:63:73:64:ce:
a6:a0:8b:7e:44:ba:1c:68:fd:c8:46:86:f6:0c:78:b2:28:cd:
31:6f:69:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNoxglc/wfxeIfA6T9ghiO/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1MTg5YjE1OGQ4ZDYwMTFiYTVmOTYyNTJkMzAyNjZhNzBk
M2UwNjYwHhcNMjQxMTI2MTQwMDI5WhcNMjQxMTI3MTQwMDI5WjAzMTEwLwYDVQQD
Eyg3OTBmYzIzNzQxOTRlMDM3OWUxMTI4NGEyYzk3NDk3NjJkOGFiNGUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAngD+mS2mCTR16HCxTJQj5Xvvy9ij
Z2Vk9aO0HZNisUG1flllYV21Pi8x/4aDpf9/JnCrA/VP60PYHxNr2nLXIXq483qT
M7Cmq0kZscbRBLiz9gdxNmnLeotiqXn9klfjSqFDiDXfTvAAxA4UgdBblRyf0mav
XWf71pvANPhq7uuqUI6mV29Ovp6Fg4r7KaNvmCcuT+sMMIaRU2Xvc20f6/dBSnUe
4LnBt1LoYFLDZmGGQR37szuZHwm0KCxs2J5/8FBM4ArDBozDoXE7oa1clOiA+lOG
9/8CoLxVn5of1D1goq9h6fYsBb5xW5fZ7FTYClRrGzcw66JFanDPJD7i7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHkPwjdBlOA3nhEoSiyXSXYtirTiMB8GA1UdIwQY
MBaAFJUYmxWNjWARul+WJS0wJmpw0+BmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFJpYkZZMk5ZQkc2WDVZbExUQW1hbkRUNEdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9kMjdhZDAtNTVjMi00OTA0LWE4YzUt
YWNlMTgwZmY5YjE5LzEvbFJpYkZZMk5ZQkc2WDVZbExUQW1hbkRUNEdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9kMjdhZDAtNTVjMi00OTA0LWE4YzUtYWNlMTgwZmY5YjE5
LzEvbFJpYkZZMk5ZQkc2WDVZbExUQW1hbkRUNEdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkXXrCQAM
QDSqRzF/MDZyCBBT4R83eS4K//cSG3p6/XERSGUvOJQEj0rHxqj7TEVNXflei9Wl
p6VXmB3f+lDzCNcSX2dcATA6hA3FND0u+14usjCz8qPzkmg9k+4/4J2C2hNVEMd9
qxG9RSkZayjhN7pReosOnHqsb6gx/qNYl5YYKYFtYb2eqZ9OifrfmkEv6beqAlsT
Gx4L66V/PHWhsTnZ50jnr9+lp3aM72o6pOj/9B6+q8A+Z6Zwv/HOrJHVz2LRgsN2
zYuv4w6+Kked4XzhJVImrxDBH+e4Q2kw2Wy4T4fvSaNjc2TOpqCLfkS6HGj9yEaG
9gx4sijNMW9pQA==
-----END CERTIFICATE-----
Generated at Tue Nov 26 23:16:48 2024 by rpki-client on console-fra.rpki-client.org