Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
File: 0krezYS7F0i9NbmezqRncuAeyTU.mft (raw, json)
Hash identifier: jctbydSBtLw/tssrldTnUAC4yuRJDgBINmNBzB3ZVnY=
Subject key identifier: CD:37:93:80:2F:9E:2C:A5:89:82:5B:1B:AE:87:A9:C9:25:56:20:35
Authority key identifier: D2:4A:DE:CD:84:BB:17:48:BD:35:B9:9E:CE:A4:67:72:E0:1E:C9:35
Certificate issuer: /CN=d24adecd84bb1748bd35b99ecea46772e01ec935
Certificate serial: 0193591C1EDC07FFAE6D5C4A0C83B1A16305
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
Manifest number: 1372
Signing time: Sat 23 Nov 2024 13:00:35 +0000
Manifest this update: Sat 23 Nov 2024 13:00:35 +0000
Manifest next update: Sun 24 Nov 2024 13:00:35 +0000
Files and hashes: 1: 0krezYS7F0i9NbmezqRncuAeyTU.crl (hash: qVz75V31FZBxcPhtiwB/v5LHMLE1RDZFJeIdG2vzO/Y=)
2: e8o5LWUIpxXQK0WFCwxpzXz8n_w.roa (hash: J+UI0TzvlWssykkSbDqLTiFuy5C4JgClnPmYFkJ4TZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 13:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:59:1c:1e:dc:07:ff:ae:6d:5c:4a:0c:83:b1:a1:63:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24adecd84bb1748bd35b99ecea46772e01ec935
Validity
Not Before: Nov 23 13:00:35 2024 GMT
Not After : Nov 24 13:00:35 2024 GMT
Subject: CN=cd3793802f9e2ca589825b1bae87a9c925562035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a3:fa:0e:c4:02:c2:8f:49:37:6b:25:1a:33:
f5:43:ba:8e:b0:bf:c2:8e:35:ef:ba:05:37:d0:4f:
b3:03:3d:20:66:9f:34:e1:84:33:27:62:7d:a8:25:
7c:54:c3:d7:25:66:d9:78:df:05:1c:eb:bc:9d:65:
8a:73:fc:64:b7:9a:3a:d7:eb:f9:4c:47:3d:72:fc:
5c:d5:69:ca:a5:84:58:63:c0:d8:e9:d7:01:2d:44:
60:28:f3:34:7d:04:23:ca:0c:a1:de:45:e3:5a:99:
51:49:ea:7a:00:03:1c:e1:e7:7f:0f:46:40:f1:72:
96:6f:98:95:96:5c:2f:f6:32:40:24:96:57:1d:32:
a1:f2:52:04:bf:7e:6b:bd:f9:80:87:d5:62:82:b8:
d7:2f:8d:c2:12:38:dc:55:d0:5f:45:e3:6d:69:e9:
d2:78:0b:dc:36:5c:ba:c9:75:76:43:31:91:47:71:
aa:8e:79:71:2d:8c:fd:05:64:33:ad:32:f3:61:68:
dc:21:06:ee:80:84:00:de:51:10:9a:0f:6b:f4:68:
57:70:9a:90:83:65:03:6d:23:38:f1:17:e2:1b:a0:
84:e7:71:e8:6d:d8:b8:1f:b6:d6:fe:4d:73:30:b0:
55:5e:86:50:63:66:46:51:c4:00:d5:59:4d:46:a9:
70:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:37:93:80:2F:9E:2C:A5:89:82:5B:1B:AE:87:A9:C9:25:56:20:35
X509v3 Authority Key Identifier:
keyid:D2:4A:DE:CD:84:BB:17:48:BD:35:B9:9E:CE:A4:67:72:E0:1E:C9:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cf:83:d3:67:5b:ee:e4:7a:ff:ad:91:63:8d:1f:d0:8d:e9:fe:
69:51:0c:50:ef:de:5e:04:6d:63:95:a4:bb:0f:8f:84:f8:3b:
c9:f9:4e:27:ba:4f:be:56:6b:8e:2f:f1:42:2d:15:62:e2:2a:
b4:b0:60:67:bf:2f:57:39:9b:8f:92:fb:c9:e5:3f:07:fa:c0:
35:54:44:cb:9f:d7:e5:5a:6c:f1:9c:7c:ee:b0:61:e7:6c:00:
16:b7:1f:cc:4f:fa:22:a5:4d:0a:2c:9a:4e:27:9b:14:3b:38:
54:66:2c:31:97:59:3c:67:e3:d1:9c:4d:e1:c7:71:8e:25:66:
e6:20:d3:da:fe:1b:ba:f3:e7:f8:32:4c:5b:59:53:2c:85:23:
a3:0c:ee:0e:4a:65:5a:3d:8d:bb:76:3c:a1:1e:47:18:f4:84:
a8:82:97:8d:ff:b7:21:fd:c2:d8:18:fc:a1:ae:58:c8:58:dd:
e2:80:ea:c1:69:cd:57:cb:b4:d6:c2:7f:96:83:93:fb:9b:1c:
57:97:ee:e7:22:43:10:67:f2:51:75:6d:cf:28:fe:4b:df:4e:
ee:4a:e1:a2:ed:1b:c1:f4:40:dd:f8:02:34:c7:49:9a:00:73:
be:03:d3:ae:01:28:f3:6e:94:1e:1d:76:29:54:91:5d:62:e8:
8e:92:4f:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNZHB7cB/+ubVxKDIOxoWMFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyNGFkZWNkODRiYjE3NDhiZDM1Yjk5ZWNlYTQ2NzcyZTAx
ZWM5MzUwHhcNMjQxMTIzMTMwMDM1WhcNMjQxMTI0MTMwMDM1WjAzMTEwLwYDVQQD
EyhjZDM3OTM4MDJmOWUyY2E1ODk4MjViMWJhZTg3YTljOTI1NTYyMDM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1qP6DsQCwo9JN2slGjP1Q7qOsL/C
jjXvugU30E+zAz0gZp804YQzJ2J9qCV8VMPXJWbZeN8FHOu8nWWKc/xkt5o61+v5
TEc9cvxc1WnKpYRYY8DY6dcBLURgKPM0fQQjygyh3kXjWplRSep6AAMc4ed/D0ZA
8XKWb5iVllwv9jJAJJZXHTKh8lIEv35rvfmAh9VigrjXL43CEjjcVdBfReNtaenS
eAvcNly6yXV2QzGRR3GqjnlxLYz9BWQzrTLzYWjcIQbugIQA3lEQmg9r9GhXcJqQ
g2UDbSM48RfiG6CE53Hobdi4H7bW/k1zMLBVXoZQY2ZGUcQA1VlNRqlwrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM03k4AvniyliYJbG66HqcklViA1MB8GA1UdIwQY
MBaAFNJK3s2EuxdIvTW5ns6kZ3LgHsk1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGtyZXpZUzdGMGk5TmJtZXpxUm5jdUFleVRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS82M2E4NDUtOGMwOS00ZDY5LWE3NzEt
NDhhNjA3YmJlMjVlLzEvMGtyZXpZUzdGMGk5TmJtZXpxUm5jdUFleVRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS82M2E4NDUtOGMwOS00ZDY5LWE3NzEtNDhhNjA3YmJlMjVl
LzEvMGtyZXpZUzdGMGk5TmJtZXpxUm5jdUFleVRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAz4PTZ1vu
5Hr/rZFjjR/Qjen+aVEMUO/eXgRtY5Wkuw+PhPg7yflOJ7pPvlZrji/xQi0VYuIq
tLBgZ78vVzmbj5L7yeU/B/rANVREy5/X5Vps8Zx87rBh52wAFrcfzE/6IqVNCiya
TiebFDs4VGYsMZdZPGfj0ZxN4cdxjiVm5iDT2v4buvPn+DJMW1lTLIUjowzuDkpl
Wj2Nu3Y8oR5HGPSEqIKXjf+3If3C2Bj8oa5YyFjd4oDqwWnNV8u01sJ/loOT+5sc
V5fu5yJDEGfyUXVtzyj+S99O7krhou0bwfRA3fgCNMdJmgBzvgPTrgEo826UHh12
KVSRXWLojpJPoA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 19:22:33 2024 by rpki-client on console-fra.rpki-client.org