Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
File: zUNP2FkiOudujXhkipNylejs15o.mft (raw, json)
Hash identifier: fOvT3MetzSdf2CmbaOxfzBDB5lijpqmS8UWToDhtzgg=
Subject key identifier: 27:1D:C6:B4:DF:44:A9:FE:F8:39:96:06:A7:0B:3B:A7:68:6C:1D:32
Authority key identifier: CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A
Certificate issuer: /CN=cd434fd859223ae76e8d78648a937295e8ecd79a
Certificate serial: 019362212C080A370E523F2C483BB6B45685
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
Manifest number: 0323
Signing time: Mon 25 Nov 2024 07:02:41 +0000
Manifest this update: Mon 25 Nov 2024 07:02:41 +0000
Manifest next update: Tue 26 Nov 2024 07:02:41 +0000
Files and hashes: 1: URbxbhyVSxmC3IoX1cerAXUVCts.roa (hash: 3gWIXPZ0pvbaV7NdKSQBGMHoq1UP3v+LtrMntP6AmlQ=)
2: zUNP2FkiOudujXhkipNylejs15o.crl (hash: 9yl7G9wIsRePFdr+uSoGLwYrowWdD/c9sgs+keYdyK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 07:02:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:62:21:2c:08:0a:37:0e:52:3f:2c:48:3b:b6:b4:56:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd434fd859223ae76e8d78648a937295e8ecd79a
Validity
Not Before: Nov 25 07:02:41 2024 GMT
Not After : Nov 26 07:02:41 2024 GMT
Subject: CN=271dc6b4df44a9fef8399606a70b3ba7686c1d32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6a:ee:50:f2:69:22:46:13:82:cd:47:7b:11:
81:9e:cf:ce:1b:f8:29:1c:d9:b9:fd:2d:7a:cc:31:
48:92:c0:33:82:cc:12:d3:5f:45:a0:34:ef:4c:71:
79:1a:14:ef:72:5d:c4:45:f9:91:14:91:68:e8:09:
cd:94:01:80:70:4e:a1:9d:4b:f9:2d:c4:e8:00:6c:
34:e5:ad:74:55:88:d0:e7:3a:87:09:48:c1:91:18:
e8:ee:d0:cd:b8:35:3b:5f:96:7e:c8:6e:61:e3:cb:
1f:4b:eb:99:51:5e:d4:5e:4f:25:d5:59:87:27:d8:
0f:d1:04:07:c2:63:f6:a9:5f:fc:95:72:25:c9:f4:
4e:2a:fe:9d:dd:ac:a8:b1:f2:bb:71:87:b4:f1:ee:
db:91:ab:f3:ed:96:99:74:35:12:85:b6:f0:88:17:
ae:8b:60:e0:de:8e:d7:c6:64:df:9f:6f:9f:30:6a:
c1:4e:51:9d:e8:3f:26:35:8c:54:bb:0c:a6:bb:6f:
5a:3f:41:b2:f0:39:8d:45:5a:fb:85:a4:d6:a4:ed:
21:7b:af:6b:0e:6c:ab:ec:8c:e5:60:2e:19:d3:69:
8b:84:62:17:09:1f:82:09:94:2f:25:f3:00:e1:4d:
64:b9:88:27:8d:9d:c5:6e:55:e2:a5:88:23:33:6c:
e9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:1D:C6:B4:DF:44:A9:FE:F8:39:96:06:A7:0B:3B:A7:68:6C:1D:32
X509v3 Authority Key Identifier:
keyid:CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:b4:28:87:bd:67:d7:c7:b4:09:8d:77:48:8e:44:2c:71:08:
f0:69:ce:5a:e7:cc:d0:04:62:0f:c5:51:3b:07:18:75:ab:7c:
1c:1b:4c:5d:dc:a0:90:59:f2:15:9c:c9:7a:79:b9:76:50:b7:
d5:c0:92:68:d0:a1:90:09:01:04:f6:ce:79:c6:30:50:9c:7c:
5f:1f:c2:22:8a:72:26:bd:d5:89:7f:70:02:2f:2d:e0:23:ef:
bc:50:1c:bc:a2:3f:1a:1a:91:29:1a:59:6f:7f:08:b9:92:d2:
a5:4c:a3:89:3b:c7:5d:04:c5:44:39:d9:59:7b:8d:5e:89:ea:
b5:77:23:5f:80:0d:ed:6c:b6:f4:f9:53:5d:1b:3a:33:49:2d:
37:68:fd:5b:41:cb:1b:25:aa:71:f7:42:96:6a:1a:3a:ad:d4:
b4:e1:25:fa:15:cc:2c:77:ee:35:ba:c5:57:49:89:99:51:6a:
11:7d:d7:c6:56:b6:bf:ad:94:c4:26:ad:5b:3b:b8:70:27:bb:
d2:12:dd:91:98:fe:67:1b:7d:e1:46:bc:c2:f0:9f:b1:95:f1:
d2:4d:5c:dc:ed:fc:8e:14:16:21:e0:44:24:1b:91:59:18:96:
21:e7:d0:68:07:8f:e0:ac:1f:1a:46:41:d2:ef:fa:60:de:ed:
81:ab:ef:72
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNiISwICjcOUj8sSDu2tFaFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNDM0ZmQ4NTkyMjNhZTc2ZThkNzg2NDhhOTM3Mjk1ZThl
Y2Q3OWEwHhcNMjQxMTI1MDcwMjQxWhcNMjQxMTI2MDcwMjQxWjAzMTEwLwYDVQQD
EygyNzFkYzZiNGRmNDRhOWZlZjgzOTk2MDZhNzBiM2JhNzY4NmMxZDMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp2ruUPJpIkYTgs1HexGBns/OG/gp
HNm5/S16zDFIksAzgswS019FoDTvTHF5GhTvcl3ERfmRFJFo6AnNlAGAcE6hnUv5
LcToAGw05a10VYjQ5zqHCUjBkRjo7tDNuDU7X5Z+yG5h48sfS+uZUV7UXk8l1VmH
J9gP0QQHwmP2qV/8lXIlyfROKv6d3ayosfK7cYe08e7bkavz7ZaZdDUShbbwiBeu
i2Dg3o7XxmTfn2+fMGrBTlGd6D8mNYxUuwymu29aP0Gy8DmNRVr7haTWpO0he69r
Dmyr7IzlYC4Z02mLhGIXCR+CCZQvJfMA4U1kuYgnjZ3FblXipYgjM2zpfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCcdxrTfRKn++DmWBqcLO6dobB0yMB8GA1UdIwQY
MBaAFM1DT9hZIjrnbo14ZIqTcpXo7NeaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelVOUDJGa2lPdWR1alhoa2lwTnlsZWpzMTVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC8zZDE4ZGMtNzNjNi00YzZmLThjMjgt
NWE1NzIzNGRkYjc2LzEvelVOUDJGa2lPdWR1alhoa2lwTnlsZWpzMTVvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC8zZDE4ZGMtNzNjNi00YzZmLThjMjgtNWE1NzIzNGRkYjc2
LzEvelVOUDJGa2lPdWR1alhoa2lwTnlsZWpzMTVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArbQoh71n
18e0CY13SI5ELHEI8GnOWufM0ARiD8VROwcYdat8HBtMXdygkFnyFZzJenm5dlC3
1cCSaNChkAkBBPbOecYwUJx8Xx/CIopyJr3ViX9wAi8t4CPvvFAcvKI/GhqRKRpZ
b38IuZLSpUyjiTvHXQTFRDnZWXuNXonqtXcjX4AN7Wy29PlTXRs6M0ktN2j9W0HL
GyWqcfdClmoaOq3UtOEl+hXMLHfuNbrFV0mJmVFqEX3Xxla2v62UxCatWzu4cCe7
0hLdkZj+Zxt94Ua8wvCfsZXx0k1c3O38jhQWIeBEJBuRWRiWIefQaAeP4KwfGkZB
0u/6YN7tgavvcg==
-----END CERTIFICATE-----
Generated at Mon Nov 25 14:23:15 2024 by rpki-client on console-ams.rpki-client.org