Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/6add07-e6ad-4dba-9b8b-23e3813651d4/1/qrHbDgCCCHbfogvsm3Gap5Wswd4.mft
File: qrHbDgCCCHbfogvsm3Gap5Wswd4.mft (raw, json)
Hash identifier: r+28pahEreKoxdWO3K70AkBR0R/sGLRjey2ExMGHQIE=
Subject key identifier: 0D:F3:A3:00:DE:3A:19:58:33:AA:B3:F6:E8:32:C5:63:0E:9B:F3:35
Authority key identifier: AA:B1:DB:0E:00:82:08:76:DF:A2:0B:EC:9B:71:9A:A7:95:AC:C1:DE
Certificate issuer: /CN=aab1db0e00820876dfa20bec9b719aa795acc1de
Certificate serial: 01901BC55B201AADA56971875E12DE38D101
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qrHbDgCCCHbfogvsm3Gap5Wswd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/6add07-e6ad-4dba-9b8b-23e3813651d4/1/qrHbDgCCCHbfogvsm3Gap5Wswd4.mft
Manifest number: 11C4
Signing time: Sat 15 Jun 2024 12:00:36 +0000
Manifest this update: Sat 15 Jun 2024 12:00:36 +0000
Manifest next update: Sun 16 Jun 2024 12:00:36 +0000
Files and hashes: 1: B_3VwEN62U0yvrjqrFhERcAQGIs.roa (hash: mZWTJkvU2u59xdZgqsVpAwJlFBYhs7xRgtFsuCl++2o=)
2: qrHbDgCCCHbfogvsm3Gap5Wswd4.crl (hash: XFf4DbEB7l0eNjVeJlav+oYcql41N3itLjv8QYLCuqE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/6add07-e6ad-4dba-9b8b-23e3813651d4/1/qrHbDgCCCHbfogvsm3Gap5Wswd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/6add07-e6ad-4dba-9b8b-23e3813651d4/1/qrHbDgCCCHbfogvsm3Gap5Wswd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/qrHbDgCCCHbfogvsm3Gap5Wswd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 12:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1b:c5:5b:20:1a:ad:a5:69:71:87:5e:12:de:38:d1:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aab1db0e00820876dfa20bec9b719aa795acc1de
Validity
Not Before: Jun 15 12:00:36 2024 GMT
Not After : Jun 16 12:00:36 2024 GMT
Subject: CN=0df3a300de3a195833aab3f6e832c5630e9bf335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ff:08:40:1d:f8:f4:48:3f:44:c3:af:ac:59:
9e:bb:22:2e:cc:83:88:79:c4:db:0c:df:88:95:ed:
b2:31:d3:09:26:e3:a5:3f:51:87:25:f1:b7:91:6b:
67:ab:1e:0b:13:88:9e:28:41:62:84:4f:35:45:71:
8f:a4:e7:9d:ad:cc:15:94:2e:f3:5f:0f:36:c2:92:
c5:9a:4d:34:c1:31:2e:92:df:3d:5b:1c:47:d4:a7:
37:c2:9e:4f:8f:5d:c0:d3:0a:ea:a9:75:1e:15:82:
56:49:c5:0e:50:90:6b:2c:72:f0:af:20:ab:25:f2:
c9:d4:ad:8b:36:07:98:0b:f7:49:18:61:a5:38:f8:
52:60:bc:5a:0c:87:9c:a2:83:23:bc:05:ab:4a:5f:
cc:64:70:1e:6d:4f:02:4e:6e:74:b5:5b:24:fb:78:
cb:f3:25:5c:6f:c6:2a:d3:21:39:ac:3d:a7:1c:43:
8e:e7:28:b6:76:9d:ae:43:5c:9b:76:75:f2:a0:b2:
88:5d:3c:e7:8c:40:80:11:a5:cb:fe:0c:36:48:37:
45:9d:db:14:cd:c7:cd:52:87:60:ca:6a:2c:6a:13:
47:cf:a1:35:f6:92:a3:7b:6a:79:88:ef:97:20:1f:
32:83:7d:fe:f7:03:73:af:85:b8:bc:7e:34:fb:51:
71:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:F3:A3:00:DE:3A:19:58:33:AA:B3:F6:E8:32:C5:63:0E:9B:F3:35
X509v3 Authority Key Identifier:
keyid:AA:B1:DB:0E:00:82:08:76:DF:A2:0B:EC:9B:71:9A:A7:95:AC:C1:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qrHbDgCCCHbfogvsm3Gap5Wswd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6add07-e6ad-4dba-9b8b-23e3813651d4/1/qrHbDgCCCHbfogvsm3Gap5Wswd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6add07-e6ad-4dba-9b8b-23e3813651d4/1/qrHbDgCCCHbfogvsm3Gap5Wswd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:64:e2:85:9d:7d:c9:5e:22:59:29:a5:04:ac:38:4e:a8:9a:
ad:3b:c8:c7:c4:79:3f:a4:08:65:e4:f1:9b:b2:3a:31:86:87:
7f:a1:b9:b0:d6:3c:c0:12:43:a1:ff:9b:d0:03:9d:9b:5c:57:
a5:ec:84:e0:b4:53:78:fe:22:04:94:84:cc:a4:d1:26:30:ef:
e8:69:74:be:dd:74:99:2f:d0:8b:34:a4:5a:13:28:d8:c9:fb:
a3:ca:43:f1:67:ed:9c:9f:a4:c8:87:b9:51:4c:33:d3:88:87:
ad:f3:60:6a:67:1b:55:96:55:8c:0e:f2:22:a3:fe:1b:02:eb:
7d:e6:ee:82:3a:bd:a8:44:e8:92:ce:c1:11:f0:5f:aa:d2:32:
b2:3f:66:c7:f9:76:a4:50:ed:ef:31:9b:16:92:59:ac:33:6b:
5e:23:5f:4c:19:6a:de:da:b5:dc:5f:28:17:b5:cf:5b:98:f7:
f4:8a:7c:82:ff:b3:78:1b:39:bc:d0:67:ef:9e:28:75:78:a0:
38:46:4f:2a:9e:dd:d1:16:6c:a4:63:21:98:c6:3c:de:96:9f:
ab:d6:32:de:c9:4f:2b:05:3c:18:ef:01:3b:20:f2:a7:ed:77:
6a:57:cc:f6:dd:11:b3:44:dc:f7:eb:60:62:7a:64:ad:70:d9:
2e:e1:10:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAbxVsgGq2laXGHXhLeONEBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhYjFkYjBlMDA4MjA4NzZkZmEyMGJlYzliNzE5YWE3OTVh
Y2MxZGUwHhcNMjQwNjE1MTIwMDM2WhcNMjQwNjE2MTIwMDM2WjAzMTEwLwYDVQQD
EygwZGYzYTMwMGRlM2ExOTU4MzNhYWIzZjZlODMyYzU2MzBlOWJmMzM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyP8IQB349Eg/RMOvrFmeuyIuzIOI
ecTbDN+Ile2yMdMJJuOlP1GHJfG3kWtnqx4LE4ieKEFihE81RXGPpOedrcwVlC7z
Xw82wpLFmk00wTEukt89WxxH1Kc3wp5Pj13A0wrqqXUeFYJWScUOUJBrLHLwryCr
JfLJ1K2LNgeYC/dJGGGlOPhSYLxaDIecooMjvAWrSl/MZHAebU8CTm50tVsk+3jL
8yVcb8Yq0yE5rD2nHEOO5yi2dp2uQ1ybdnXyoLKIXTznjECAEaXL/gw2SDdFndsU
zcfNUodgymosahNHz6E19pKje2p5iO+XIB8yg33+9wNzr4W4vH40+1FxHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA3zowDeOhlYM6qz9ugyxWMOm/M1MB8GA1UdIwQY
MBaAFKqx2w4Aggh236IL7JtxmqeVrMHeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcXJIYkRnQ0NDSGJmb2d2c20zR2FwNVdzd2Q0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS82YWRkMDctZTZhZC00ZGJhLTliOGIt
MjNlMzgxMzY1MWQ0LzEvcXJIYkRnQ0NDSGJmb2d2c20zR2FwNVdzd2Q0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS82YWRkMDctZTZhZC00ZGJhLTliOGItMjNlMzgxMzY1MWQ0
LzEvcXJIYkRnQ0NDSGJmb2d2c20zR2FwNVdzd2Q0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXmTihZ19
yV4iWSmlBKw4TqiarTvIx8R5P6QIZeTxm7I6MYaHf6G5sNY8wBJDof+b0AOdm1xX
peyE4LRTeP4iBJSEzKTRJjDv6Gl0vt10mS/QizSkWhMo2Mn7o8pD8WftnJ+kyIe5
UUwz04iHrfNgamcbVZZVjA7yIqP+GwLrfebugjq9qEToks7BEfBfqtIysj9mx/l2
pFDt7zGbFpJZrDNrXiNfTBlq3tq13F8oF7XPW5j39Ip8gv+zeBs5vNBn754odXig
OEZPKp7d0RZspGMhmMY83pafq9Yy3slPKwU8GO8BOyDyp+13alfM9t0Rs0Tc9+tg
YnpkrXDZLuEQtQ==
-----END CERTIFICATE-----
Generated at Sat Jun 15 20:58:55 2024 by rpki-client on console-ams.rpki-client.org