Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
File: CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft (raw, json)
Hash identifier: NToo8kyq+q5WU+8IJLwjCPahYtjMZahjrHzYsQf243s=
Subject key identifier: 02:56:3A:BD:05:23:44:54:AD:9E:02:5C:E7:B5:50:FA:A6:81:34:77
Authority key identifier: 08:D1:F1:F8:B4:1D:74:F7:D8:66:B1:E5:AD:FD:18:AF:E2:02:71:08
Certificate issuer: /CN=08d1f1f8b41d74f7d866b1e5adfd18afe2027108
Certificate serial: 019355AD75A80E9839464C871E87378D2E43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
Manifest number: 0F74
Signing time: Fri 22 Nov 2024 21:00:51 +0000
Manifest this update: Fri 22 Nov 2024 21:00:51 +0000
Manifest next update: Sat 23 Nov 2024 21:00:51 +0000
Files and hashes: 1: CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl (hash: Xh5oUUc5saZTDR0WopNxHArcRcNAW4E5gEWRPDaXQhI=)
2: RRSrei0daMKFpGD4tjLj10dTj94.roa (hash: bwrqITx1fF/iLkF2SNzXpzhVmx9R2jxpYIoe20tzTKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:ad:75:a8:0e:98:39:46:4c:87:1e:87:37:8d:2e:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08d1f1f8b41d74f7d866b1e5adfd18afe2027108
Validity
Not Before: Nov 22 21:00:51 2024 GMT
Not After : Nov 23 21:00:51 2024 GMT
Subject: CN=02563abd05234454ad9e025ce7b550faa6813477
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:66:90:d1:28:61:12:27:2a:53:41:8b:03:59:
50:d7:b9:3d:5e:d1:d8:1c:8a:ed:1b:ca:27:be:f2:
63:55:06:40:43:62:60:6d:1d:af:cb:dc:26:74:0c:
02:07:c8:7f:5e:f8:2a:86:5b:81:b2:7e:a3:8b:82:
21:ec:f3:23:08:0c:02:c4:1a:78:3e:54:09:bd:a0:
81:0f:e5:c2:a1:37:52:96:1e:d4:40:8d:8d:11:f2:
7f:c8:82:18:6c:07:a5:b3:10:85:2b:cd:55:ee:44:
67:a9:8e:d0:d4:0c:f5:37:bf:18:e8:39:a2:d8:78:
c2:a7:59:27:07:e2:eb:bc:20:37:8f:a5:e5:33:dc:
30:df:8b:4c:e9:65:77:01:22:d4:45:46:12:7c:44:
4d:f5:38:bb:66:ed:f8:a2:5b:4b:72:1d:d3:26:9d:
21:67:70:04:48:69:90:e7:22:53:f5:86:0b:a5:8e:
48:7b:7e:c6:88:38:63:eb:25:59:67:fd:7a:9d:5e:
14:b6:39:6b:af:cc:d3:b8:16:c4:ae:db:0c:d2:b7:
92:85:d6:14:52:9a:ba:8b:ff:7b:b9:0d:dc:08:2b:
e2:89:fc:66:68:22:79:22:56:30:64:9c:42:e5:b8:
d9:71:84:4d:44:85:f8:5a:fc:34:f0:7b:93:06:a5:
07:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:56:3A:BD:05:23:44:54:AD:9E:02:5C:E7:B5:50:FA:A6:81:34:77
X509v3 Authority Key Identifier:
keyid:08:D1:F1:F8:B4:1D:74:F7:D8:66:B1:E5:AD:FD:18:AF:E2:02:71:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:48:f5:ba:47:3e:2a:7e:c2:2d:bb:e6:ae:98:93:18:2a:ff:
c0:3a:3f:0d:ef:7f:bb:27:b4:39:3e:d8:25:f0:a7:84:02:c8:
2d:0b:20:60:fc:89:36:05:82:c4:5a:0e:9b:d4:de:e7:22:68:
67:40:98:48:1f:8f:63:9b:cb:fc:f0:ab:71:c0:5e:2a:04:a6:
83:2b:b5:00:37:01:28:af:7d:db:8a:4b:bb:c4:3c:37:15:36:
9d:0b:86:0f:7d:ad:b6:47:07:ca:0c:8d:89:28:03:bc:8a:41:
1b:76:90:9a:4a:b6:eb:fe:cd:7d:6a:7f:37:9b:13:79:b4:39:
0d:0f:ae:a2:11:cc:0d:fd:74:03:60:5e:d4:ba:80:a2:43:93:
32:95:93:36:96:83:30:a7:9d:37:65:ba:1e:5e:cc:6f:df:64:
d2:28:1c:fd:91:5a:cd:74:e4:f4:7c:25:4b:d1:b9:85:36:51:
df:d6:02:a5:4c:70:2c:57:e2:c0:b6:fe:74:5a:0a:76:f2:52:
1c:51:c0:f7:0d:f9:58:5c:a4:0d:11:a8:8c:7c:fb:0e:46:87:
3e:b7:7d:3f:6b:f9:52:5d:15:8b:c0:af:40:a0:25:26:47:b9:
ad:59:d7:ff:dc:a2:ba:fc:99:1d:7c:20:ef:39:a8:41:a1:2c:
77:f6:ff:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNVrXWoDpg5RkyHHoc3jS5DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4ZDFmMWY4YjQxZDc0ZjdkODY2YjFlNWFkZmQxOGFmZTIw
MjcxMDgwHhcNMjQxMTIyMjEwMDUxWhcNMjQxMTIzMjEwMDUxWjAzMTEwLwYDVQQD
EygwMjU2M2FiZDA1MjM0NDU0YWQ5ZTAyNWNlN2I1NTBmYWE2ODEzNDc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkmaQ0ShhEicqU0GLA1lQ17k9XtHY
HIrtG8onvvJjVQZAQ2JgbR2vy9wmdAwCB8h/XvgqhluBsn6ji4Ih7PMjCAwCxBp4
PlQJvaCBD+XCoTdSlh7UQI2NEfJ/yIIYbAelsxCFK81V7kRnqY7Q1Az1N78Y6Dmi
2HjCp1knB+LrvCA3j6XlM9ww34tM6WV3ASLURUYSfERN9Ti7Zu34oltLch3TJp0h
Z3AESGmQ5yJT9YYLpY5Ie37GiDhj6yVZZ/16nV4Utjlrr8zTuBbErtsM0reShdYU
Upq6i/97uQ3cCCviifxmaCJ5IlYwZJxC5bjZcYRNRIX4Wvw08HuTBqUHGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAJWOr0FI0RUrZ4CXOe1UPqmgTR3MB8GA1UdIwQY
MBaAFAjR8fi0HXT32Gax5a39GK/iAnEIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ05IeC1MUWRkUGZZWnJIbHJmMFlyLUlDY1FnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy8yOWMwMTUtZDc0Ny00ZmM3LTkzMmIt
ZGY1Y2I5ZjBlM2E0LzEvQ05IeC1MUWRkUGZZWnJIbHJmMFlyLUlDY1FnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy8yOWMwMTUtZDc0Ny00ZmM3LTkzMmItZGY1Y2I5ZjBlM2E0
LzEvQ05IeC1MUWRkUGZZWnJIbHJmMFlyLUlDY1FnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXUj1ukc+
Kn7CLbvmrpiTGCr/wDo/De9/uye0OT7YJfCnhALILQsgYPyJNgWCxFoOm9Te5yJo
Z0CYSB+PY5vL/PCrccBeKgSmgyu1ADcBKK9924pLu8Q8NxU2nQuGD32ttkcHygyN
iSgDvIpBG3aQmkq26/7NfWp/N5sTebQ5DQ+uohHMDf10A2Be1LqAokOTMpWTNpaD
MKedN2W6Hl7Mb99k0igc/ZFazXTk9HwlS9G5hTZR39YCpUxwLFfiwLb+dFoKdvJS
HFHA9w35WFykDRGojHz7DkaHPrd9P2v5Ul0Vi8CvQKAlJke5rVnX/9yiuvyZHXwg
7zmoQaEsd/b/QA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:40:57 2024 by rpki-client on console-fra.rpki-client.org