Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
File: oCN2bGLetRKXFVcI7MtCHIsEeAo.mft (raw, json)
Hash identifier: EYBMl6wzD30Frx2H89/sA2jHZ+BU50IH/HK6AoYFVuU=
Subject key identifier: E4:11:B7:7C:38:44:8E:44:23:B0:BF:D4:AC:A6:39:08:DC:94:4A:3E
Authority key identifier: A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
Certificate issuer: /CN=a023766c62deb51297155708eccb421c8b04780a
Certificate serial: 01936B2235840D1484A9DBD9FD7CE493CAF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
Manifest number: 10CD
Signing time: Wed 27 Nov 2024 01:00:24 +0000
Manifest this update: Wed 27 Nov 2024 01:00:24 +0000
Manifest next update: Thu 28 Nov 2024 01:00:24 +0000
Files and hashes: 1: gjFhkhuvaOCxfOTk5epc3PpEmds.roa (hash: If3iHhNvQMUbi6gXXAic6xHXzhgr5a6QJHF+o7gRhnU=)
2: oCN2bGLetRKXFVcI7MtCHIsEeAo.crl (hash: 6hYemR6uQjxGsWckuAU/ek8Q+CtQhGfzQx4U7ax8/t8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6b:22:35:84:0d:14:84:a9:db:d9:fd:7c:e4:93:ca:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a023766c62deb51297155708eccb421c8b04780a
Validity
Not Before: Nov 27 01:00:24 2024 GMT
Not After : Nov 28 01:00:24 2024 GMT
Subject: CN=e411b77c38448e4423b0bfd4aca63908dc944a3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:64:1f:99:3e:e8:19:f6:79:4e:11:79:19:9c:
4c:a4:3e:2e:d5:76:21:7d:cd:4f:c6:ec:7d:db:d6:
1d:d4:ce:92:8f:28:47:49:9c:7a:37:21:ad:bc:4b:
1f:bf:73:e5:a8:2d:7f:cf:40:94:34:2f:98:bf:a3:
8c:f4:e8:41:aa:f3:b0:26:98:43:2f:b1:84:84:d4:
fd:3e:82:c7:23:9a:c1:fa:27:aa:94:6a:94:90:c9:
a3:44:67:88:98:bc:98:92:d7:87:64:ac:97:2e:9f:
8a:b9:29:99:cf:19:7f:fc:ef:e0:0c:6a:9f:50:dc:
79:3e:fa:f8:f2:57:5f:28:de:07:57:ed:10:d8:0d:
2d:ec:88:ff:64:be:ce:58:28:95:7e:95:fa:78:c6:
67:21:4a:f0:13:7d:be:52:fc:94:a4:26:8a:8b:92:
6f:e3:f6:41:3d:4b:2b:90:b3:3b:e4:c9:98:db:e5:
fd:6a:b0:7a:c2:2c:e6:1b:f4:9a:d4:9c:08:05:b6:
a7:99:1a:94:f0:cb:d8:38:43:2d:bc:97:fc:d5:11:
52:06:0c:30:2d:2f:fb:06:b4:5a:da:4c:3f:ae:0d:
ba:0f:ac:2d:20:8d:27:73:34:3b:a6:f9:42:39:5a:
e5:3b:e4:fb:99:6b:20:23:97:03:04:c5:0c:09:e6:
c7:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:11:B7:7C:38:44:8E:44:23:B0:BF:D4:AC:A6:39:08:DC:94:4A:3E
X509v3 Authority Key Identifier:
keyid:A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:ca:b6:ad:c7:a4:ce:6a:8a:4e:85:26:83:aa:e1:2c:46:c1:
af:60:97:e2:99:4e:57:23:fa:8a:e8:47:a6:3f:aa:09:99:b1:
f0:10:c2:20:09:3a:08:58:3d:a0:61:a7:3a:fe:5b:17:b2:65:
cf:76:5f:22:4f:de:f5:d3:08:1f:02:67:a6:b6:33:7a:b1:b6:
76:82:a6:ea:42:5f:0c:96:c1:b9:f8:5e:48:e6:7a:36:cf:25:
ab:52:4c:ce:5a:39:9f:98:3f:b6:8f:cd:d0:9e:19:1c:7c:f9:
44:d9:b4:81:22:e6:15:11:1e:ff:ec:00:a8:2f:7f:44:f2:6e:
54:78:d2:e3:00:da:9f:13:d2:ff:37:aa:9c:35:d6:5a:31:6d:
67:cf:75:04:71:1a:3f:5a:7e:ee:dd:a6:ce:f8:5c:6b:d5:5e:
70:46:64:b4:11:5a:60:ac:d8:eb:c5:94:ff:5c:93:7a:46:f2:
ea:25:01:e7:32:d6:fb:58:dc:18:73:12:61:88:5d:e7:41:7b:
b1:dc:13:0c:04:dd:e3:3b:9c:79:6b:37:38:01:ad:0a:9d:b9:
2c:a4:ce:de:44:08:27:f4:60:a8:bb:b4:b3:dd:14:71:ac:71:
eb:15:02:39:dd:06:fc:17:8c:e3:74:2a:16:78:3b:48:32:35:
a5:ca:5b:64
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNrIjWEDRSEqdvZ/Xzkk8r4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwMjM3NjZjNjJkZWI1MTI5NzE1NTcwOGVjY2I0MjFjOGIw
NDc4MGEwHhcNMjQxMTI3MDEwMDI0WhcNMjQxMTI4MDEwMDI0WjAzMTEwLwYDVQQD
EyhlNDExYjc3YzM4NDQ4ZTQ0MjNiMGJmZDRhY2E2MzkwOGRjOTQ0YTNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmQfmT7oGfZ5ThF5GZxMpD4u1XYh
fc1Pxux929Yd1M6SjyhHSZx6NyGtvEsfv3PlqC1/z0CUNC+Yv6OM9OhBqvOwJphD
L7GEhNT9PoLHI5rB+ieqlGqUkMmjRGeImLyYkteHZKyXLp+KuSmZzxl//O/gDGqf
UNx5Pvr48ldfKN4HV+0Q2A0t7Ij/ZL7OWCiVfpX6eMZnIUrwE32+UvyUpCaKi5Jv
4/ZBPUsrkLM75MmY2+X9arB6wizmG/Sa1JwIBbanmRqU8MvYOEMtvJf81RFSBgww
LS/7BrRa2kw/rg26D6wtII0nczQ7pvlCOVrlO+T7mWsgI5cDBMUMCebHTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOQRt3w4RI5EI7C/1KymOQjclEo+MB8GA1UdIwQY
MBaAFKAjdmxi3rUSlxVXCOzLQhyLBHgKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0NOMmJHTGV0UktYRlZjSTdNdENISXNFZUFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9kZjkwOTYtMzZjOS00MzlhLWEwYTAt
YTNhMTAwZWY4NmRlLzEvb0NOMmJHTGV0UktYRlZjSTdNdENISXNFZUFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9kZjkwOTYtMzZjOS00MzlhLWEwYTAtYTNhMTAwZWY4NmRl
LzEvb0NOMmJHTGV0UktYRlZjSTdNdENISXNFZUFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEsq2rcek
zmqKToUmg6rhLEbBr2CX4plOVyP6iuhHpj+qCZmx8BDCIAk6CFg9oGGnOv5bF7Jl
z3ZfIk/e9dMIHwJnprYzerG2doKm6kJfDJbBufheSOZ6Ns8lq1JMzlo5n5g/to/N
0J4ZHHz5RNm0gSLmFREe/+wAqC9/RPJuVHjS4wDanxPS/zeqnDXWWjFtZ891BHEa
P1p+7t2mzvhca9VecEZktBFaYKzY68WU/1yTekby6iUB5zLW+1jcGHMSYYhd50F7
sdwTDATd4zuceWs3OAGtCp25LKTO3kQIJ/RgqLu0s90Ucaxx6xUCOd0G/BeM43Qq
Fng7SDI1pcpbZA==
-----END CERTIFICATE-----
Generated at Wed Nov 27 02:53:08 2024 by rpki-client on console-fra.rpki-client.org