Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft
File: CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft (raw, json)
Hash identifier: G334QgTAZRcUtJPzoSo4MZjgy0tc5g0EC27tWZ67cXI=
Subject key identifier: 3C:67:34:AB:16:54:BA:0D:B9:42:83:68:52:BD:3D:93:DE:98:38:8B
Authority key identifier: 08:66:48:35:F8:AA:FE:61:49:71:FF:A8:68:3F:9F:74:BF:4D:0F:F4
Certificate issuer: /CN=08664835f8aafe614971ffa8683f9f74bf4d0ff4
Certificate serial: 01940721AF8F87290C999A8A27921019FEAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CGZINfiq_mFJcf-oaD-fdL9ND_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft
Manifest number: 0C10
Signing time: Fri 27 Dec 2024 08:00:35 +0000
Manifest this update: Fri 27 Dec 2024 08:00:35 +0000
Manifest next update: Sat 28 Dec 2024 08:00:35 +0000
Files and hashes: 1: CGZINfiq_mFJcf-oaD-fdL9ND_Q.crl (hash: hxvJvLz++zIxaYxlih8vbNSQ99GQqHPVDFLisyHIplY=)
2: nutAg_NdQc9BEKagzkaJckDBJxU.roa (hash: h3nkbmO54RxHU1u5y33G55Y5ODebDfx/IaivEqTVJU4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/CGZINfiq_mFJcf-oaD-fdL9ND_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 08:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:07:21:af:8f:87:29:0c:99:9a:8a:27:92:10:19:fe:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08664835f8aafe614971ffa8683f9f74bf4d0ff4
Validity
Not Before: Dec 27 08:00:35 2024 GMT
Not After : Dec 28 08:00:35 2024 GMT
Subject: CN=3c6734ab1654ba0db942836852bd3d93de98388b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f1:b4:1b:d2:c4:f0:9e:ff:39:91:6b:50:e7:
27:b4:04:32:aa:46:7d:1e:3c:d3:af:95:07:3e:a6:
77:3c:04:94:9b:21:60:bc:72:79:5d:ae:46:0f:92:
c0:16:5b:1b:ae:46:17:b0:b6:1c:d6:e0:6d:1b:62:
3a:47:30:5c:41:75:30:ee:3c:93:30:c0:5e:90:34:
ab:d6:b6:18:83:c1:68:58:92:73:ba:4f:69:79:5c:
f1:19:c9:e0:85:97:68:cc:18:ee:94:1d:bc:2c:ae:
e6:ca:ab:17:c8:c5:73:55:a8:2b:89:f1:c7:a3:31:
e5:48:b3:77:2d:a5:8f:07:2f:e0:ea:6e:e2:89:0f:
18:7d:24:23:f5:02:22:7f:7b:01:d9:a7:4b:7a:c4:
16:0a:90:5a:74:40:7c:f5:05:1d:38:be:72:e8:62:
23:91:cb:09:d5:89:01:6b:47:2e:81:7c:07:5f:16:
10:f0:8a:96:2c:b6:6b:4a:e4:0f:cd:8d:07:ea:c0:
de:de:b5:96:43:d0:13:26:a8:72:13:4e:5e:ce:03:
a6:b9:82:41:f3:5f:7b:a8:d2:80:9e:88:9a:d1:ab:
20:3a:dd:15:22:26:f9:67:a4:53:fb:4f:2b:5e:66:
f9:12:bb:d6:fd:9a:f3:2a:65:84:87:49:7b:45:97:
e0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:67:34:AB:16:54:BA:0D:B9:42:83:68:52:BD:3D:93:DE:98:38:8B
X509v3 Authority Key Identifier:
keyid:08:66:48:35:F8:AA:FE:61:49:71:FF:A8:68:3F:9F:74:BF:4D:0F:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CGZINfiq_mFJcf-oaD-fdL9ND_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:99:2d:a8:2a:96:9d:71:99:2b:a1:2e:df:eb:05:88:8d:42:
25:cb:cf:6e:76:75:e8:b4:e8:ae:c6:15:e0:3e:a5:d7:b2:77:
50:d3:2a:7d:f3:8d:3e:c4:3f:67:64:da:d6:e3:6f:6e:fe:61:
a4:7b:eb:a4:36:d1:be:91:4e:ed:58:fe:5e:ba:2d:7e:19:a0:
6d:64:64:28:44:38:87:a1:43:97:2e:b4:4b:22:b7:c1:4c:e7:
f2:8b:53:d0:dc:61:21:96:12:c3:6c:b5:d0:33:ac:a5:1b:9c:
66:96:70:bc:77:78:ab:31:02:48:10:7c:39:f3:74:d8:fd:ba:
de:87:50:b4:73:03:43:55:87:ad:92:3b:9a:06:5e:ae:8a:fd:
48:4c:07:b7:b3:a5:4e:3a:4d:28:b7:7c:59:71:9b:38:b3:19:
da:08:a3:61:c1:78:37:dd:f9:15:ea:98:1b:19:3d:72:07:23:
07:20:c8:34:80:4d:11:33:84:21:15:56:5a:43:47:c8:72:e8:
c6:35:84:a6:b0:9b:73:4b:e7:6f:64:01:52:52:d9:67:20:8e:
7d:80:a1:4b:fa:a6:dc:40:88:ec:10:d9:64:e7:59:cd:95:4a:
7d:b2:c5:0c:f0:09:3b:88:46:ce:32:9e:8d:81:42:40:4c:5d:
03:58:61:f1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZQHIa+PhykMmZqKJ5IQGf6uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4NjY0ODM1ZjhhYWZlNjE0OTcxZmZhODY4M2Y5Zjc0YmY0
ZDBmZjQwHhcNMjQxMjI3MDgwMDM1WhcNMjQxMjI4MDgwMDM1WjAzMTEwLwYDVQQD
EygzYzY3MzRhYjE2NTRiYTBkYjk0MjgzNjg1MmJkM2Q5M2RlOTgzODhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/G0G9LE8J7/OZFrUOcntAQyqkZ9
HjzTr5UHPqZ3PASUmyFgvHJ5Xa5GD5LAFlsbrkYXsLYc1uBtG2I6RzBcQXUw7jyT
MMBekDSr1rYYg8FoWJJzuk9peVzxGcnghZdozBjulB28LK7myqsXyMVzVagrifHH
ozHlSLN3LaWPBy/g6m7iiQ8YfSQj9QIif3sB2adLesQWCpBadEB89QUdOL5y6GIj
kcsJ1YkBa0cugXwHXxYQ8IqWLLZrSuQPzY0H6sDe3rWWQ9ATJqhyE05ezgOmuYJB
8197qNKAnoia0asgOt0VIib5Z6RT+08rXmb5ErvW/ZrzKmWEh0l7RZfgAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDxnNKsWVLoNuUKDaFK9PZPemDiLMB8GA1UdIwQY
MBaAFAhmSDX4qv5hSXH/qGg/n3S/TQ/0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0daSU5maXFfbUZKY2Ytb2FELWZkTDlORF9RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9jZWYzYjUtYTg0OC00M2Q1LTg3M2Et
MDc1N2E2ZDI4MjI0LzEvQ0daSU5maXFfbUZKY2Ytb2FELWZkTDlORF9RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS9jZWYzYjUtYTg0OC00M2Q1LTg3M2EtMDc1N2E2ZDI4MjI0
LzEvQ0daSU5maXFfbUZKY2Ytb2FELWZkTDlORF9RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR5ktqCqW
nXGZK6Eu3+sFiI1CJcvPbnZ16LTorsYV4D6l17J3UNMqffONPsQ/Z2Ta1uNvbv5h
pHvrpDbRvpFO7Vj+XrotfhmgbWRkKEQ4h6FDly60SyK3wUzn8otT0NxhIZYSw2y1
0DOspRucZpZwvHd4qzECSBB8OfN02P263odQtHMDQ1WHrZI7mgZeror9SEwHt7Ol
TjpNKLd8WXGbOLMZ2gijYcF4N935FeqYGxk9cgcjByDINIBNETOEIRVWWkNHyHLo
xjWEprCbc0vnb2QBUlLZZyCOfYChS/qm3ECI7BDZZOdZzZVKfbLFDPAJO4hGzjKe
jYFCQExdA1hh8Q==
-----END CERTIFICATE-----
Generated at Fri Dec 27 11:12:20 2024 by rpki-client on console-fra.rpki-client.org