Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
File: xBK7PaZcqrUkhR74bOm6piB04e0.mft (raw, json)
Hash identifier: rjd/mpc7HZwUh6Ij15nvpKBfvE/bA4MrT6z2r5kg8Mo=
Subject key identifier: D9:8E:70:E8:26:10:DD:5D:2D:D1:F0:9A:CA:BF:E1:38:85:76:A3:40
Authority key identifier: C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
Certificate issuer: /CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Certificate serial: 01901E21AD828F35838B8D78DC41E7717808
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
Manifest number: 11C1
Signing time: Sat 15 Jun 2024 23:00:41 +0000
Manifest this update: Sat 15 Jun 2024 23:00:41 +0000
Manifest next update: Sun 16 Jun 2024 23:00:41 +0000
Files and hashes: 1: 1-5dwj6SjgnHe4lBIUc8YGwbhnnw.roa (hash: EsEC33RB7zI+vHJPDsFdDwepxYIgILK+FI56kie/PdA=)
2: xBK7PaZcqrUkhR74bOm6piB04e0.crl (hash: d8hLLVxFLDsl9JGosCqoehr6EylLFk4dXbcujoDOKxU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1e:21:ad:82:8f:35:83:8b:8d:78:dc:41:e7:71:78:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Validity
Not Before: Jun 15 23:00:41 2024 GMT
Not After : Jun 16 23:00:41 2024 GMT
Subject: CN=d98e70e82610dd5d2dd1f09acabfe1388576a340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c1:f4:4a:31:1c:d3:6b:0d:8a:70:21:be:e9:
f8:93:a2:b6:18:49:52:3a:d2:3e:a4:9f:6b:bb:aa:
32:bf:89:9d:4d:59:b3:60:99:e6:6d:62:e2:69:81:
8f:bd:d5:7a:a2:db:16:a5:08:fb:2a:09:c9:9a:41:
f1:08:64:bf:c9:ec:45:0b:d0:e0:60:4d:6a:e9:bc:
61:a5:db:1b:f6:e3:01:90:fd:7a:32:6f:3d:9f:ac:
ec:24:04:6c:2c:54:e3:60:f3:3a:59:8a:98:84:ea:
55:55:a2:8f:09:94:a7:3a:f3:1e:4f:2c:34:64:81:
d8:ab:83:97:9a:1e:55:f5:50:37:63:32:24:b4:c3:
ce:e8:d4:36:9e:5b:a8:fa:b5:8b:00:ae:23:d4:53:
25:62:02:98:80:e9:fa:58:8f:2e:ed:53:69:1b:8b:
1b:26:d7:fe:c7:53:43:28:52:81:92:af:03:7b:4c:
e1:09:e8:50:d9:d3:8b:4c:b5:df:c8:f4:36:1a:d4:
04:51:08:09:98:6b:09:ab:57:9e:b0:84:f7:af:4b:
94:4a:13:fe:a4:85:70:ab:73:5d:31:c1:b7:3e:51:
26:d0:07:84:e1:3d:12:7e:e0:bf:9f:5f:a5:fd:45:
31:2d:3d:79:96:1d:f8:ae:6a:d7:ba:11:b8:ce:b1:
6d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:8E:70:E8:26:10:DD:5D:2D:D1:F0:9A:CA:BF:E1:38:85:76:A3:40
X509v3 Authority Key Identifier:
keyid:C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:ba:9e:8b:49:2f:7f:fb:e7:c5:04:be:a3:71:0d:bb:5f:1e:
a8:24:db:bd:e8:55:df:b7:e0:78:40:11:82:77:e1:36:59:a7:
84:fd:02:0f:81:22:d4:b1:a5:b1:e4:b3:d6:96:f5:af:dc:52:
8d:11:34:90:7d:5b:65:6f:cc:01:ff:6d:b1:fd:25:8a:0a:6b:
b7:c0:fe:6b:6c:0e:12:db:8d:dd:9a:c3:7f:13:ac:f2:9a:33:
4f:0c:73:7b:65:e2:81:bc:15:26:55:22:72:25:9c:7c:0c:94:
c7:55:b3:b5:95:b5:61:aa:91:02:fe:20:e0:61:80:d4:03:04:
d4:ab:a3:b8:a0:02:65:d2:ad:1a:c3:39:64:97:48:e8:13:8f:
8e:38:21:7c:9e:48:1a:7a:9a:99:da:66:56:2a:b0:05:99:bc:
dc:33:08:57:a4:7e:45:30:8a:4f:7e:d9:79:95:3c:b3:84:5c:
a2:6c:00:a1:6e:57:45:ab:21:17:ac:fb:8b:15:71:8e:94:40:
eb:09:91:b6:05:e4:5d:43:7e:24:5b:53:13:23:ec:32:c6:e2:
80:99:c7:e2:52:11:3b:bc:20:6f:28:e2:7e:4a:1f:63:c5:29:
e6:e8:f0:85:ed:87:8b:a1:2d:cd:af:06:90:68:a2:a4:00:35:
4f:14:dc:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAeIa2CjzWDi4143EHncXgIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0MTJiYjNkYTY1Y2FhYjUyNDg1MWVmODZjZTliYWE2MjA3
NGUxZWQwHhcNMjQwNjE1MjMwMDQxWhcNMjQwNjE2MjMwMDQxWjAzMTEwLwYDVQQD
EyhkOThlNzBlODI2MTBkZDVkMmRkMWYwOWFjYWJmZTEzODg1NzZhMzQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk8H0SjEc02sNinAhvun4k6K2GElS
OtI+pJ9ru6oyv4mdTVmzYJnmbWLiaYGPvdV6otsWpQj7KgnJmkHxCGS/yexFC9Dg
YE1q6bxhpdsb9uMBkP16Mm89n6zsJARsLFTjYPM6WYqYhOpVVaKPCZSnOvMeTyw0
ZIHYq4OXmh5V9VA3YzIktMPO6NQ2nluo+rWLAK4j1FMlYgKYgOn6WI8u7VNpG4sb
Jtf+x1NDKFKBkq8De0zhCehQ2dOLTLXfyPQ2GtQEUQgJmGsJq1eesIT3r0uUShP+
pIVwq3NdMcG3PlEm0AeE4T0SfuC/n1+l/UUxLT15lh34rmrXuhG4zrFtYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNmOcOgmEN1dLdHwmsq/4TiFdqNAMB8GA1UdIwQY
MBaAFMQSuz2mXKq1JIUe+GzpuqYgdOHtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEJLN1BhWmNxclVraFI3NGJPbTZwaUIwNGUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9jNzg3MWMtNTFkOS00NjNkLWFjYjgt
OWI5MzJlY2QyZWNjLzEveEJLN1BhWmNxclVraFI3NGJPbTZwaUIwNGUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC9jNzg3MWMtNTFkOS00NjNkLWFjYjgtOWI5MzJlY2QyZWNj
LzEveEJLN1BhWmNxclVraFI3NGJPbTZwaUIwNGUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArLqei0kv
f/vnxQS+o3ENu18eqCTbvehV37fgeEARgnfhNlmnhP0CD4Ei1LGlseSz1pb1r9xS
jRE0kH1bZW/MAf9tsf0ligprt8D+a2wOEtuN3ZrDfxOs8pozTwxze2XigbwVJlUi
ciWcfAyUx1WztZW1YaqRAv4g4GGA1AME1KujuKACZdKtGsM5ZJdI6BOPjjghfJ5I
GnqamdpmViqwBZm83DMIV6R+RTCKT37ZeZU8s4RcomwAoW5XRashF6z7ixVxjpRA
6wmRtgXkXUN+JFtTEyPsMsbigJnH4lIRO7wgbyjifkofY8Up5ujwhe2Hi6Etza8G
kGiipAA1TxTccQ==
-----END CERTIFICATE-----
Generated at Sun Jun 16 03:01:50 2024 by rpki-client on console-fra.rpki-client.org