Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
File: 28lQCYQ2KBzuVCoedFRlUeHlUoM.mft (raw, json)
Hash identifier: qI0YjYkm4R1Yqw0tCW6DxEpTI1DDKEvIHzN490M4iSU=
Subject key identifier: 6B:2D:74:AD:00:6C:A9:74:15:67:EF:4D:04:58:AD:9B:2B:3D:BA:FE
Authority key identifier: DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83
Certificate issuer: /CN=dbc950098436281cee542a1e74546551e1e55283
Certificate serial: 01904C44DB734A39732541666998162C8E8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
Manifest number: 11DF
Signing time: Mon 24 Jun 2024 22:01:39 +0000
Manifest this update: Mon 24 Jun 2024 22:01:39 +0000
Manifest next update: Tue 25 Jun 2024 22:01:39 +0000
Files and hashes: 1: 1-J6se5zowrtWItRwtV6xQe6lk2k.roa (hash: XYSY+1SG7aQ0lPBdAc5JVqSBHnpVnHDR9CE5wloK8jA=)
2: 28lQCYQ2KBzuVCoedFRlUeHlUoM.crl (hash: 5MA6nLJiJAhb4FroYQ1qnvXz+h0Jm45JGaz1GQ0uxsU=)
3: iunF3EfDLS-7di3NPxJd9ZdH04Y.roa (hash: FmWV3hGBb6NnH91Prx/r2HeBbyV+yFqwxvLATibPORM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 22:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4c:44:db:73:4a:39:73:25:41:66:69:98:16:2c:8e:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbc950098436281cee542a1e74546551e1e55283
Validity
Not Before: Jun 24 22:01:39 2024 GMT
Not After : Jun 25 22:01:39 2024 GMT
Subject: CN=6b2d74ad006ca9741567ef4d0458ad9b2b3dbafe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:09:12:a2:c3:f0:65:83:31:e7:2f:d5:31:79:
5a:df:7a:19:f1:d4:8b:d3:bd:cf:f6:64:7a:fc:d2:
f1:cb:93:98:56:52:a5:1f:74:01:c5:81:86:6c:c7:
57:7e:d2:80:20:93:64:96:bc:00:a1:5f:71:c6:2d:
ec:35:2f:71:39:61:1b:19:ef:49:db:9e:70:7c:43:
2a:2f:36:f6:0b:b6:a3:f6:ee:b7:97:e6:a0:e4:20:
fc:b9:2a:74:b4:4c:82:af:27:65:76:62:7b:d1:4d:
af:c6:85:99:a1:87:b3:cd:c4:ec:a2:8d:79:1f:f5:
09:86:6e:bd:d0:7a:8a:ae:1c:31:e2:12:74:8c:a3:
f2:08:96:64:fc:cc:bc:bc:34:cf:f4:8c:01:5b:0c:
1d:e0:37:ee:93:d4:8b:1d:8d:86:dc:7d:40:ae:f6:
d2:93:0e:06:c7:4b:40:73:af:50:c9:36:ac:cd:5b:
26:c2:f7:77:ef:50:ed:78:58:a7:c6:e0:00:bb:24:
90:62:04:c2:e8:b9:39:d4:b8:e3:25:ed:1e:39:20:
a2:d4:1b:04:d5:4b:b5:98:f2:e6:05:12:21:57:85:
93:ac:24:95:62:a2:60:d0:7d:1e:b3:fe:72:bb:03:
7a:99:77:b1:2d:5a:78:f6:55:cd:e9:69:aa:c6:91:
82:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:2D:74:AD:00:6C:A9:74:15:67:EF:4D:04:58:AD:9B:2B:3D:BA:FE
X509v3 Authority Key Identifier:
keyid:DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:ab:9c:34:f5:37:54:d8:2d:49:a6:60:ef:4e:a4:6f:1b:f0:
2e:aa:a9:d9:e9:2b:c1:86:a7:01:0e:18:c2:62:13:4c:08:ec:
d0:22:cd:ea:a5:57:9c:a0:6f:31:c6:92:92:fd:26:82:f2:ff:
f1:b5:af:3d:40:a4:4b:a4:68:ec:47:90:19:bb:4b:45:c9:ab:
61:dd:e2:d7:02:d5:69:8a:e3:1a:3c:30:16:dd:5e:aa:02:a3:
16:26:5a:22:6f:b2:fe:a4:46:4c:06:d1:87:7e:ae:62:08:2d:
eb:34:eb:a8:a3:c9:7b:df:6d:a8:81:c8:1b:ce:9e:d3:9e:68:
8a:06:c9:27:ab:1d:cb:5e:2b:87:6a:88:d7:64:75:d2:ac:e2:
67:65:7a:ef:68:c6:90:23:ae:bd:cd:29:ed:37:92:2a:fc:76:
53:6d:25:46:09:b7:45:0e:72:d3:2d:b1:c4:b8:68:3f:5a:8a:
0b:46:4a:7a:ca:81:1e:a6:40:1d:78:29:59:15:63:b1:92:3b:
18:35:31:22:89:67:1e:1a:60:c4:22:6b:01:4c:57:4a:84:42:
da:f9:93:07:93:94:61:94:b8:29:c5:2d:6f:ef:07:1e:97:b5:
0d:bd:91:e5:b3:54:7c:8c:fd:67:e8:11:af:92:46:81:a2:56:
88:c5:b4:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZBMRNtzSjlzJUFmaZgWLI6LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiYzk1MDA5ODQzNjI4MWNlZTU0MmExZTc0NTQ2NTUxZTFl
NTUyODMwHhcNMjQwNjI0MjIwMTM5WhcNMjQwNjI1MjIwMTM5WjAzMTEwLwYDVQQD
Eyg2YjJkNzRhZDAwNmNhOTc0MTU2N2VmNGQwNDU4YWQ5YjJiM2RiYWZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwgkSosPwZYMx5y/VMXla33oZ8dSL
073P9mR6/NLxy5OYVlKlH3QBxYGGbMdXftKAIJNklrwAoV9xxi3sNS9xOWEbGe9J
255wfEMqLzb2C7aj9u63l+ag5CD8uSp0tEyCrydldmJ70U2vxoWZoYezzcTsoo15
H/UJhm690HqKrhwx4hJ0jKPyCJZk/My8vDTP9IwBWwwd4Dfuk9SLHY2G3H1ArvbS
kw4Gx0tAc69QyTaszVsmwvd371DteFinxuAAuySQYgTC6Lk51LjjJe0eOSCi1BsE
1Uu1mPLmBRIhV4WTrCSVYqJg0H0es/5yuwN6mXexLVp49lXN6WmqxpGCUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGstdK0AbKl0FWfvTQRYrZsrPbr+MB8GA1UdIwQY
MBaAFNvJUAmENigc7lQqHnRUZVHh5VKDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjhsUUNZUTJLQnp1VkNvZWRGUmxVZUhsVW9NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi81YWE0NDgtNjQzZi00YWVlLTkwZDkt
ZjQ3ZTE2OTI2NmMyLzEvMjhsUUNZUTJLQnp1VkNvZWRGUmxVZUhsVW9NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi81YWE0NDgtNjQzZi00YWVlLTkwZDktZjQ3ZTE2OTI2NmMy
LzEvMjhsUUNZUTJLQnp1VkNvZWRGUmxVZUhsVW9NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiaucNPU3
VNgtSaZg706kbxvwLqqp2ekrwYanAQ4YwmITTAjs0CLN6qVXnKBvMcaSkv0mgvL/
8bWvPUCkS6Ro7EeQGbtLRcmrYd3i1wLVaYrjGjwwFt1eqgKjFiZaIm+y/qRGTAbR
h36uYggt6zTrqKPJe99tqIHIG86e055oigbJJ6sdy14rh2qI12R10qziZ2V672jG
kCOuvc0p7TeSKvx2U20lRgm3RQ5y0y2xxLhoP1qKC0ZKesqBHqZAHXgpWRVjsZI7
GDUxIolnHhpgxCJrAUxXSoRC2vmTB5OUYZS4KcUtb+8HHpe1Db2R5bNUfIz9Z+gR
r5JGgaJWiMW0Dg==
-----END CERTIFICATE-----
Generated at Tue Jun 25 03:15:33 2024 by rpki-client on console-fra.rpki-client.org