Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft
File: ER1oFDdScdGjy9EhVdsR0r1BqNM.mft (raw, json)
Hash identifier: g6x4wlwtUeFIalfeBre+fn+TmpXHrZsL1YPNj+sdJdE=
Subject key identifier: CA:B6:42:05:6E:44:23:47:26:CC:CD:7B:97:AA:89:58:FF:FB:8E:3D
Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3
Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3
Certificate serial: 019354D132B29B2822DA9B1189981079CDF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft
Manifest number: 1230
Signing time: Fri 22 Nov 2024 17:00:16 +0000
Manifest this update: Fri 22 Nov 2024 17:00:16 +0000
Manifest next update: Sat 23 Nov 2024 17:00:16 +0000
Files and hashes: 1: 54XKK0_1dFCyAOBw9DbXkt-VDwg.roa (hash: JO0LlaEMVqBnCLn/vL9uUqo4iAvULqFlqUuLQQr7Yfk=)
2: ER1oFDdScdGjy9EhVdsR0r1BqNM.crl (hash: clKqyvCEP8hbtMJ3ak1mJpmsCX1YpJTvtz9l/BbU0Ww=)
3: M2NmvdhSM3EX3n7mklEywVTyVrw.roa (hash: EiNDORA1jr02kWYXyuVqjP/9QzFPy9+u0jJrIsRG5fo=)
4: Nj22e03p1ismiyI2m4JNTTUp6eo.roa (hash: we0p/0cbdno49Ce28Y4zzzMGGAKWVQq0hvRW7Fr48UY=)
5: T2qfLLU9KQyUAlmJSK7KQS-pddo.roa (hash: Cz1dMQNLlsBc0Xb75loL8VmjgxXubhSEr7yDuQswKjY=)
6: ZGBSnZxA4fFcUaEtN0TUBKVqLAQ.roa (hash: c45BknisxSFH655MQtd+R+oVFYpYNIbLQHLlyOXbFmk=)
7: ZSCklI3F85J6edhWPWtQPLG3USE.roa (hash: z0wgWId8/HnqybZRqnWeaNvoqt5ry7ABUymXhtq25z4=)
8: lrqYyB4TxtmHyjXyTk_yCzC3iGA.roa (hash: wFSfw7/2QlGtJmIz4DxRT8rxRLgy9E53NEkIsAj2N1k=)
9: xOBqZ2jLmGsP0IlwWET-SNScIPU.roa (hash: elrYwI5ngAvhjRF+if3xAFePDFJi4omqWWLQ8IATfKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:d1:32:b2:9b:28:22:da:9b:11:89:98:10:79:cd:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3
Validity
Not Before: Nov 22 17:00:16 2024 GMT
Not After : Nov 23 17:00:16 2024 GMT
Subject: CN=cab642056e44234726cccd7b97aa8958fffb8e3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:af:fc:cd:83:24:ff:48:33:51:1a:07:0d:d1:
0a:d0:15:f5:ad:95:63:ee:31:3f:d1:bb:8d:7e:f0:
f3:de:6c:38:7b:c9:88:a9:3a:a3:23:21:d3:f2:3a:
61:46:9e:73:16:06:4f:42:ad:f0:84:ad:6c:6e:e4:
36:63:b6:af:57:50:7f:6f:7a:b6:d8:8f:b8:4a:61:
36:14:d5:54:cb:70:0d:dd:62:9b:cf:37:7a:9d:8b:
d9:79:b9:cc:48:07:83:ef:9b:da:49:21:fd:c8:d7:
0a:e0:57:1e:96:45:24:17:52:52:e0:f5:5d:df:1b:
70:36:cb:e8:95:f8:ab:6d:89:a6:31:b6:59:cc:c2:
4e:72:9d:92:3a:a7:62:c3:78:cf:96:d9:70:9d:ed:
2a:4d:8e:e9:8e:f7:eb:69:27:9e:78:dc:6a:69:c2:
5a:34:46:bd:60:1c:75:65:1f:a6:c2:aa:ba:31:7a:
49:ae:68:88:ea:6f:47:5a:79:e2:7a:b2:88:97:c0:
96:e3:ca:f4:b6:8f:5c:f0:b2:30:26:c4:1f:ef:74:
6c:02:e3:95:ec:93:4e:3f:f1:33:68:cb:76:bf:3d:
ac:08:89:fb:f1:1e:75:8c:62:08:51:7b:d4:91:0d:
99:99:1b:58:d3:c2:da:5d:d5:78:4c:1f:46:19:fb:
cf:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:B6:42:05:6E:44:23:47:26:CC:CD:7B:97:AA:89:58:FF:FB:8E:3D
X509v3 Authority Key Identifier:
keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:b5:4c:c3:77:8c:fa:19:ab:e5:35:66:9c:db:ae:dd:0b:c1:
00:3e:c9:19:53:85:72:eb:b0:e3:49:f0:85:38:b7:a1:a9:08:
a9:bc:5e:03:40:72:ac:4f:7a:66:07:3b:4e:94:09:0d:e2:19:
aa:b1:6c:82:0b:15:48:dc:3e:df:91:85:7d:ad:2e:94:21:ba:
94:90:33:f0:29:e1:00:44:4c:bc:de:d9:6a:3e:a8:a2:b1:79:
1e:99:d0:51:e9:21:66:0b:1b:41:a1:b8:b5:71:75:f6:8c:d6:
45:15:ed:37:f8:34:40:ea:3d:9a:aa:71:7e:b0:06:06:cf:78:
63:e0:5f:0d:15:b1:5a:2d:b0:92:d9:3c:a0:80:53:da:82:fb:
3f:af:af:27:b2:3f:cb:03:07:15:66:a3:08:c7:ef:08:56:f2:
8f:90:47:f5:3a:99:c1:d8:69:fb:ff:7c:af:38:47:88:98:5a:
fc:64:28:2e:04:53:c5:52:f3:4b:90:9e:70:ff:dc:5a:27:c1:
c6:28:a9:56:cc:5a:94:b5:77:1d:2c:89:5f:8b:9e:ca:21:17:
32:3b:a1:5f:74:5f:9e:d8:41:d2:c5:c0:7e:be:ef:13:32:04:
09:24:08:d2:d7:ef:75:1f:82:b7:c1:84:e8:66:8d:8b:24:f6:
a1:3d:4f:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNU0TKymygi2psRiZgQec3wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExMWQ2ODE0Mzc1MjcxZDFhM2NiZDEyMTU1ZGIxMWQyYmQ0
MWE4ZDMwHhcNMjQxMTIyMTcwMDE2WhcNMjQxMTIzMTcwMDE2WjAzMTEwLwYDVQQD
EyhjYWI2NDIwNTZlNDQyMzQ3MjZjY2NkN2I5N2FhODk1OGZmZmI4ZTNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoa/8zYMk/0gzURoHDdEK0BX1rZVj
7jE/0buNfvDz3mw4e8mIqTqjIyHT8jphRp5zFgZPQq3whK1sbuQ2Y7avV1B/b3q2
2I+4SmE2FNVUy3AN3WKbzzd6nYvZebnMSAeD75vaSSH9yNcK4FcelkUkF1JS4PVd
3xtwNsvolfirbYmmMbZZzMJOcp2SOqdiw3jPltlwne0qTY7pjvfraSeeeNxqacJa
NEa9YBx1ZR+mwqq6MXpJrmiI6m9HWnnierKIl8CW48r0to9c8LIwJsQf73RsAuOV
7JNOP/EzaMt2vz2sCIn78R51jGIIUXvUkQ2ZmRtY08LaXdV4TB9GGfvPIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMq2QgVuRCNHJszNe5eqiVj/+449MB8GA1UdIwQY
MBaAFBEdaBQ3UnHRo8vRIVXbEdK9QajTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQt
MjcxZDI1ZTIwNTc0LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQtMjcxZDI1ZTIwNTc0
LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIbVMw3eM
+hmr5TVmnNuu3QvBAD7JGVOFcuuw40nwhTi3oakIqbxeA0ByrE96Zgc7TpQJDeIZ
qrFsggsVSNw+35GFfa0ulCG6lJAz8CnhAERMvN7Zaj6oorF5HpnQUekhZgsbQaG4
tXF19ozWRRXtN/g0QOo9mqpxfrAGBs94Y+BfDRWxWi2wktk8oIBT2oL7P6+vJ7I/
ywMHFWajCMfvCFbyj5BH9TqZwdhp+/98rzhHiJha/GQoLgRTxVLzS5CecP/cWifB
xiipVsxalLV3HSyJX4ueyiEXMjuhX3RfnthB0sXAfr7vEzIECSQI0tfvdR+Ct8GE
6GaNiyT2oT1PPg==
-----END CERTIFICATE-----
Generated at Sat Nov 23 02:26:39 2024 by rpki-client on console-ams.rpki-client.org