Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
File: tQALgentSypwKh71-FLg52nuEOI.mft (raw, json)
Hash identifier: lghWGrpTrSyrv0s63T9WlgzKQrrcQ+LDd2F4+o5uQME=
Subject key identifier: DD:6C:22:E3:90:56:43:18:68:BB:93:95:44:B8:D1:33:EB:88:6B:5E
Authority key identifier: B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2
Certificate issuer: /CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2
Certificate serial: 0194BBCE8E8BD105E553EDA3EDF53257C527
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
Manifest number: 0CC8
Signing time: Fri 31 Jan 2025 10:01:03 +0000
Manifest this update: Fri 31 Jan 2025 10:01:03 +0000
Manifest next update: Sat 01 Feb 2025 10:01:03 +0000
Files and hashes: 1: AoPTcwy6H2m6XsU7z7Y2AN7ROE0.roa (hash: EkcAF/FP1ByxQSttbvF051kXzqctUYj/EMjpBXkG1v8=)
2: tQALgentSypwKh71-FLg52nuEOI.crl (hash: 2cCu0it4twhJWxL/JDoeirq2rUcl/ghpd7y+B7ajM5w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 10:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:ce:8e:8b:d1:05:e5:53:ed:a3:ed:f5:32:57:c5:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2
Validity
Not Before: Jan 31 10:01:03 2025 GMT
Not After : Feb 1 10:01:03 2025 GMT
Subject: CN=dd6c22e39056431868bb939544b8d133eb886b5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:58:9d:85:d0:3a:d2:7d:f2:cd:eb:57:b5:97:
00:96:74:c0:55:cf:40:13:82:c8:5d:05:c0:c3:d8:
6e:a2:ae:ef:a6:e3:6a:e4:fd:6d:d2:8e:2b:d3:66:
f4:78:af:f8:7b:a4:90:e1:71:0f:7e:69:90:d1:ba:
31:b2:c1:de:64:33:6d:5d:f2:bc:56:9b:4e:f0:6c:
03:93:97:34:f1:9e:36:03:0c:09:e0:75:42:c7:ab:
d0:27:36:6a:16:bc:dc:96:40:8b:a4:74:d2:8e:52:
e7:47:38:19:cf:d8:8e:5b:52:b3:60:1d:f3:85:eb:
9c:75:9b:5c:b2:93:63:07:57:07:c0:36:4d:61:27:
5f:62:9d:a6:c6:b4:51:38:69:1c:8e:d4:e1:d8:96:
bd:74:5f:75:3c:0a:d6:c3:21:0e:38:b7:30:66:3a:
15:91:cd:ce:d1:4a:30:88:ff:22:ab:83:af:0a:db:
2a:1b:94:45:9c:2f:d0:fe:f6:00:c1:0b:48:0f:a7:
fb:02:4c:3a:8a:5a:ed:a6:64:d9:8f:69:d1:c5:d7:
b8:69:a6:b8:c1:4c:2a:68:fa:6c:1e:11:cc:63:21:
a6:8d:d7:17:76:94:a5:2d:ac:95:cb:91:d0:17:43:
d3:01:95:8b:24:0f:43:c1:0c:bc:50:dd:18:57:7c:
a4:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:6C:22:E3:90:56:43:18:68:BB:93:95:44:B8:D1:33:EB:88:6B:5E
X509v3 Authority Key Identifier:
keyid:B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:1f:c4:62:cd:08:95:06:05:cd:c1:8a:be:2a:e1:a9:72:cd:
1a:fb:5f:cd:6b:cf:1a:93:10:15:ff:a9:79:01:c6:13:ff:a4:
02:56:19:1c:24:ad:20:7a:93:8c:17:ed:77:85:10:07:4d:58:
db:32:0b:ac:6e:3f:31:96:2c:76:10:e2:61:90:50:cf:2a:f8:
fc:6a:a3:00:dd:99:99:c3:5c:72:cd:49:3b:0a:5e:94:be:92:
68:f7:ee:03:47:a8:26:e1:18:e2:85:4b:64:88:e7:8c:a2:61:
4f:12:6d:e9:b1:54:1f:6f:90:e5:69:5f:0c:f7:e2:04:c3:ca:
35:ce:1b:2d:6a:95:47:1b:a2:83:a1:60:37:40:eb:05:30:ff:
b8:19:ba:b6:c3:24:7a:40:60:88:e2:dd:1d:26:de:7c:3a:c6:
56:4f:46:26:e4:d1:a2:03:44:66:98:ed:7b:a9:f3:ed:f3:59:
3e:e0:4c:58:59:eb:d2:83:3a:84:a3:47:5a:04:24:ea:de:f5:
41:99:6f:89:30:14:52:f2:fd:30:27:a2:ed:f8:03:a8:98:97:
54:b3:f3:cf:7d:03:e9:ff:91:da:6c:52:21:14:6b:db:d4:b7:
19:92:dc:97:c5:c2:00:df:a2:ba:10:a0:12:de:e0:b0:41:2f:
41:ae:c7:b7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS7zo6L0QXlU+2j7fUyV8UnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1MDAwYjgxZTllZDRiMmE3MDJhMWVmNWY4NTJlMGU3Njll
ZTEwZTIwHhcNMjUwMTMxMTAwMTAzWhcNMjUwMjAxMTAwMTAzWjAzMTEwLwYDVQQD
EyhkZDZjMjJlMzkwNTY0MzE4NjhiYjkzOTU0NGI4ZDEzM2ViODg2YjVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1VidhdA60n3yzetXtZcAlnTAVc9A
E4LIXQXAw9huoq7vpuNq5P1t0o4r02b0eK/4e6SQ4XEPfmmQ0boxssHeZDNtXfK8
VptO8GwDk5c08Z42AwwJ4HVCx6vQJzZqFrzclkCLpHTSjlLnRzgZz9iOW1KzYB3z
heucdZtcspNjB1cHwDZNYSdfYp2mxrRROGkcjtTh2Ja9dF91PArWwyEOOLcwZjoV
kc3O0UowiP8iq4OvCtsqG5RFnC/Q/vYAwQtID6f7Akw6ilrtpmTZj2nRxde4aaa4
wUwqaPpsHhHMYyGmjdcXdpSlLayVy5HQF0PTAZWLJA9DwQy8UN0YV3ykfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN1sIuOQVkMYaLuTlUS40TPriGteMB8GA1UdIwQY
MBaAFLUAC4Hp7UsqcCoe9fhS4Odp7hDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFFBTGdlbnRTeXB3S2g3MS1GTGc1Mm51RU9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS8wZGY3ZjMtYTQ5Mi00ZDZmLWIzNmYt
ZDQxZTAzNTkyMzM1LzEvdFFBTGdlbnRTeXB3S2g3MS1GTGc1Mm51RU9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS8wZGY3ZjMtYTQ5Mi00ZDZmLWIzNmYtZDQxZTAzNTkyMzM1
LzEvdFFBTGdlbnRTeXB3S2g3MS1GTGc1Mm51RU9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPB/EYs0I
lQYFzcGKvirhqXLNGvtfzWvPGpMQFf+peQHGE/+kAlYZHCStIHqTjBftd4UQB01Y
2zILrG4/MZYsdhDiYZBQzyr4/GqjAN2ZmcNccs1JOwpelL6SaPfuA0eoJuEY4oVL
ZIjnjKJhTxJt6bFUH2+Q5WlfDPfiBMPKNc4bLWqVRxuig6FgN0DrBTD/uBm6tsMk
ekBgiOLdHSbefDrGVk9GJuTRogNEZpjte6nz7fNZPuBMWFnr0oM6hKNHWgQk6t71
QZlviTAUUvL9MCei7fgDqJiXVLPzz30D6f+R2mxSIRRr29S3GZLcl8XCAN+iuhCg
Et7gsEEvQa7Htw==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:39:49 2025 by rpki-client on console-fra.rpki-client.org