Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.mft
File: UiezboKeTYVl7WV0jhsck8zQDO4.mft (raw, json)
Hash identifier: NpoyATOpAfUwXwq/F8Xgns8FY0eaNMpX3lDFl6jdf/o=
Subject key identifier: 72:28:48:68:A4:83:C0:A2:E7:7A:F7:99:AE:FE:21:7E:6A:AA:33:AA
Authority key identifier: 52:27:B3:6E:82:9E:4D:85:65:ED:65:74:8E:1B:1C:93:CC:D0:0C:EE
Certificate issuer: /CN=5227b36e829e4d8565ed65748e1b1c93ccd00cee
Certificate serial: 019356BF7E46197B90389BFAB3C7EEB07609
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UiezboKeTYVl7WV0jhsck8zQDO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.mft
Manifest number: 0D83
Signing time: Sat 23 Nov 2024 02:00:10 +0000
Manifest this update: Sat 23 Nov 2024 02:00:10 +0000
Manifest next update: Sun 24 Nov 2024 02:00:10 +0000
Files and hashes: 1: JP8GFfIjtcLaWAeZJCZiKgUtUhM.roa (hash: 50zYqbl0Ndjdexl4YDgb72EOH5If1i84ioyBl3h1iYc=)
2: UiezboKeTYVl7WV0jhsck8zQDO4.crl (hash: Ke9mV3i5SINcMTeOR2YYEKUZXgPuG4yx8fpakIKsc1E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/UiezboKeTYVl7WV0jhsck8zQDO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:bf:7e:46:19:7b:90:38:9b:fa:b3:c7:ee:b0:76:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5227b36e829e4d8565ed65748e1b1c93ccd00cee
Validity
Not Before: Nov 23 02:00:10 2024 GMT
Not After : Nov 24 02:00:10 2024 GMT
Subject: CN=72284868a483c0a2e77af799aefe217e6aaa33aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:24:84:39:70:1f:9f:a4:7b:1f:3c:20:d8:df:
92:ac:f6:0a:19:c2:3b:1a:18:a6:b8:54:dd:a5:11:
5e:9d:ba:fa:1b:b1:e3:45:40:dc:9b:2b:16:73:d2:
4b:98:f6:50:73:d2:5b:f9:ae:a7:08:42:fa:f4:b2:
f4:09:cb:a3:4a:85:5a:fc:8c:a4:23:7d:53:c4:4c:
0a:0a:ac:c1:dc:b0:64:d7:b8:11:18:3f:1c:8d:48:
34:e5:94:75:3f:3a:01:9f:9e:cd:6c:b2:2c:ee:b4:
e1:ac:50:79:d6:bf:71:c3:fd:a5:1d:04:13:88:99:
8e:f8:92:4c:4e:bb:1a:95:b3:6a:5a:38:0c:8e:48:
4d:38:fb:50:27:9a:61:2e:40:c7:ea:3e:b1:1b:3c:
31:73:6b:62:cd:89:9f:6e:cf:75:79:6a:e0:e0:b1:
80:9a:a6:da:6d:20:0e:9f:71:a4:9f:e8:d0:3a:d3:
59:27:a1:bb:13:ef:e0:87:11:ef:32:de:d2:fa:cc:
02:02:6d:49:3c:30:ee:3e:34:5c:2f:09:28:32:28:
03:c6:7f:4e:c1:0b:99:63:2b:75:21:c7:50:ba:2e:
a6:6a:8b:f9:11:5d:2b:06:1a:18:37:93:22:8f:6e:
e5:d9:be:85:29:64:f6:8b:c7:82:b7:20:fa:40:e5:
00:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:28:48:68:A4:83:C0:A2:E7:7A:F7:99:AE:FE:21:7E:6A:AA:33:AA
X509v3 Authority Key Identifier:
keyid:52:27:B3:6E:82:9E:4D:85:65:ED:65:74:8E:1B:1C:93:CC:D0:0C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UiezboKeTYVl7WV0jhsck8zQDO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:6e:1a:4e:f3:2b:60:5f:5e:73:e6:f0:df:91:c2:e9:15:fe:
34:1a:14:41:5d:1f:e0:b8:2c:5e:6b:36:39:b9:82:ed:52:75:
db:ff:16:df:6c:f9:f6:65:05:0b:62:51:76:45:f9:dd:9c:4a:
ea:4e:a3:81:bc:fe:13:2c:f7:7f:39:61:58:2d:dc:49:31:7e:
33:7a:ff:7c:13:31:83:ee:d4:15:49:74:7c:e2:c2:fe:81:fe:
5c:23:3c:91:f5:89:de:84:40:82:1a:db:8c:c6:e7:38:a8:c7:
13:a7:b9:cb:36:e3:17:e6:2f:9b:97:43:7b:43:ba:06:2f:51:
b9:76:26:ac:b7:d9:0a:73:b3:89:bc:6d:9a:0c:c9:cc:43:a2:
29:93:72:f9:ad:f0:27:8f:48:65:73:ba:10:13:93:46:2c:de:
cb:14:df:26:f0:03:f5:69:bb:1b:92:8b:0b:bf:fe:b9:5b:2f:
84:35:ce:81:79:bd:15:fb:40:b0:57:0b:8f:8c:4e:87:07:e3:
09:26:c9:37:88:a3:cf:d5:6f:ae:9c:f8:64:60:0b:33:e7:79:
08:d1:7c:de:0b:c5:3a:2b:68:96:b4:16:ff:14:72:9b:9e:6a:
8c:08:69:88:5b:0b:e3:58:48:7d:c8:b0:ce:77:4d:19:f0:a3:
e8:2a:1e:29
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNWv35GGXuQOJv6s8fusHYJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyMjdiMzZlODI5ZTRkODU2NWVkNjU3NDhlMWIxYzkzY2Nk
MDBjZWUwHhcNMjQxMTIzMDIwMDEwWhcNMjQxMTI0MDIwMDEwWjAzMTEwLwYDVQQD
Eyg3MjI4NDg2OGE0ODNjMGEyZTc3YWY3OTlhZWZlMjE3ZTZhYWEzM2FhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5ySEOXAfn6R7Hzwg2N+SrPYKGcI7
GhimuFTdpRFenbr6G7HjRUDcmysWc9JLmPZQc9Jb+a6nCEL69LL0CcujSoVa/Iyk
I31TxEwKCqzB3LBk17gRGD8cjUg05ZR1PzoBn57NbLIs7rThrFB51r9xw/2lHQQT
iJmO+JJMTrsalbNqWjgMjkhNOPtQJ5phLkDH6j6xGzwxc2tizYmfbs91eWrg4LGA
mqbabSAOn3Gkn+jQOtNZJ6G7E+/ghxHvMt7S+swCAm1JPDDuPjRcLwkoMigDxn9O
wQuZYyt1IcdQui6maov5EV0rBhoYN5Mij27l2b6FKWT2i8eCtyD6QOUATQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHIoSGikg8Ci53r3ma7+IX5qqjOqMB8GA1UdIwQY
MBaAFFIns26Cnk2FZe1ldI4bHJPM0AzuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVWllemJvS2VUWVZsN1dWMGpoc2NrOHpRRE80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9hN2FlMTEtMTIxYS00ZjIyLWJlM2Yt
ZTkwN2FmMDdmZjExLzEvVWllemJvS2VUWVZsN1dWMGpoc2NrOHpRRE80Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9hN2FlMTEtMTIxYS00ZjIyLWJlM2YtZTkwN2FmMDdmZjEx
LzEvVWllemJvS2VUWVZsN1dWMGpoc2NrOHpRRE80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQm4aTvMr
YF9ec+bw35HC6RX+NBoUQV0f4LgsXms2ObmC7VJ12/8W32z59mUFC2JRdkX53ZxK
6k6jgbz+Eyz3fzlhWC3cSTF+M3r/fBMxg+7UFUl0fOLC/oH+XCM8kfWJ3oRAghrb
jMbnOKjHE6e5yzbjF+Yvm5dDe0O6Bi9RuXYmrLfZCnOzibxtmgzJzEOiKZNy+a3w
J49IZXO6EBOTRizeyxTfJvAD9Wm7G5KLC7/+uVsvhDXOgXm9FftAsFcLj4xOhwfj
CSbJN4ijz9Vvrpz4ZGALM+d5CNF83gvFOitolrQW/xRym55qjAhpiFsL41hIfciw
zndNGfCj6CoeKQ==
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:14:54 2024 by rpki-client on console-fra.rpki-client.org