Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
File: 28lQCYQ2KBzuVCoedFRlUeHlUoM.mft (raw, json)
Hash identifier: wHNo00haGhNPVwP1it2pK8gl3prK/+XUla1gSSSKBJg=
Subject key identifier: CB:31:FF:80:85:33:BD:75:13:F1:67:67:78:1B:14:90:4E:EF:80:1E
Authority key identifier: DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83
Certificate issuer: /CN=dbc950098436281cee542a1e74546551e1e55283
Certificate serial: 01901FDA412086BBB236CCA895044E1F6BC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
Manifest number: 11C8
Signing time: Sun 16 Jun 2024 07:01:55 +0000
Manifest this update: Sun 16 Jun 2024 07:01:55 +0000
Manifest next update: Mon 17 Jun 2024 07:01:55 +0000
Files and hashes: 1: 1-J6se5zowrtWItRwtV6xQe6lk2k.roa (hash: XYSY+1SG7aQ0lPBdAc5JVqSBHnpVnHDR9CE5wloK8jA=)
2: 28lQCYQ2KBzuVCoedFRlUeHlUoM.crl (hash: FA8VaTvd3YDjlVOGBPSJicRG6Ge2B+5fBrPLAT0jvEM=)
3: iunF3EfDLS-7di3NPxJd9ZdH04Y.roa (hash: FmWV3hGBb6NnH91Prx/r2HeBbyV+yFqwxvLATibPORM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 07:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1f:da:41:20:86:bb:b2:36:cc:a8:95:04:4e:1f:6b:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbc950098436281cee542a1e74546551e1e55283
Validity
Not Before: Jun 16 07:01:55 2024 GMT
Not After : Jun 17 07:01:55 2024 GMT
Subject: CN=cb31ff808533bd7513f16767781b14904eef801e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:de:b2:19:80:f3:71:36:2e:d7:ab:a9:48:57:
65:1d:3a:89:96:f3:ea:ad:73:af:58:5e:19:15:e0:
d7:97:49:f4:b9:ee:1c:e8:93:e5:13:82:65:f1:2f:
46:a4:4c:6d:89:cd:81:00:44:c1:cd:54:ea:18:c7:
eb:5d:b2:59:55:61:83:6f:00:98:07:0c:49:dc:45:
84:16:17:90:88:4c:95:52:e1:f6:c5:ba:b2:c4:6a:
3f:8e:7a:a1:b2:b8:4a:97:cc:ea:17:b1:89:75:07:
d2:74:ec:bc:de:b8:53:1f:af:1c:6a:36:b4:c0:4a:
5b:b5:6d:d1:46:a0:af:5d:47:1b:22:a7:0e:be:5e:
ad:83:aa:01:bf:5e:92:ed:7c:90:57:20:35:cc:3f:
a5:c4:12:93:2e:2a:15:3a:e5:c7:7a:1d:b5:ac:1a:
3b:5f:f0:e4:af:1e:e7:45:51:16:f3:2f:73:11:6a:
76:5c:20:d3:00:8d:38:fe:4c:e0:f8:8c:81:0a:0e:
82:20:b2:0b:f6:17:ec:e2:cf:9a:0a:d1:7b:10:53:
d7:65:d4:c6:7f:c9:64:8b:a0:a6:01:d2:fb:19:b2:
29:71:aa:ae:e3:45:34:aa:08:45:25:40:bb:bd:60:
bd:57:58:bb:7e:3a:10:76:8b:74:d6:09:fd:61:6e:
5f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:31:FF:80:85:33:BD:75:13:F1:67:67:78:1B:14:90:4E:EF:80:1E
X509v3 Authority Key Identifier:
keyid:DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:2e:9d:70:5d:38:98:06:79:2a:7b:da:4c:ab:88:56:92:dc:
d7:6c:89:de:25:9e:f8:ba:ad:4a:c4:ce:d6:c5:72:69:c4:bb:
c9:b7:09:fa:1d:76:04:e0:58:dc:9d:7a:4b:bb:e3:c1:2c:c0:
9c:a7:b2:87:4e:7f:74:85:5e:b6:5a:7f:50:97:1f:75:96:89:
d1:1c:83:6c:64:85:9b:d4:c5:e2:1c:40:ad:7a:72:16:9d:5e:
c4:fd:4c:70:49:7a:7e:78:98:33:6b:72:7d:66:7e:a1:11:e0:
cb:ff:bd:ff:cf:50:ba:59:19:06:e8:cf:85:5b:19:17:64:a0:
e7:fd:07:87:03:7c:7d:19:d3:1b:83:60:f0:ad:99:95:2f:5e:
07:ef:19:84:f1:14:a5:87:e7:8a:bf:6e:63:7c:52:b2:e9:c5:
66:b3:a9:65:81:d3:cd:da:3a:ea:ea:02:95:cb:3a:f2:c9:6f:
d4:d3:d6:0e:7f:dc:e3:56:8b:c3:22:00:af:7c:a9:21:4d:30:
39:d7:94:92:2b:33:cf:a1:da:65:29:48:c4:ea:a0:ff:42:cf:
89:83:ad:15:e6:63:47:9c:34:33:dc:81:b5:7a:ef:d9:f8:00:
7c:9f:17:b7:6e:38:d2:af:39:10:de:29:da:66:b6:48:f6:e0:
3d:36:a5:fa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAf2kEghruyNsyolQROH2vJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiYzk1MDA5ODQzNjI4MWNlZTU0MmExZTc0NTQ2NTUxZTFl
NTUyODMwHhcNMjQwNjE2MDcwMTU1WhcNMjQwNjE3MDcwMTU1WjAzMTEwLwYDVQQD
EyhjYjMxZmY4MDg1MzNiZDc1MTNmMTY3Njc3ODFiMTQ5MDRlZWY4MDFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqd6yGYDzcTYu16upSFdlHTqJlvPq
rXOvWF4ZFeDXl0n0ue4c6JPlE4Jl8S9GpExtic2BAETBzVTqGMfrXbJZVWGDbwCY
BwxJ3EWEFheQiEyVUuH2xbqyxGo/jnqhsrhKl8zqF7GJdQfSdOy83rhTH68caja0
wEpbtW3RRqCvXUcbIqcOvl6tg6oBv16S7XyQVyA1zD+lxBKTLioVOuXHeh21rBo7
X/Dkrx7nRVEW8y9zEWp2XCDTAI04/kzg+IyBCg6CILIL9hfs4s+aCtF7EFPXZdTG
f8lki6CmAdL7GbIpcaqu40U0qghFJUC7vWC9V1i7fjoQdot01gn9YW5fGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMsx/4CFM711E/FnZ3gbFJBO74AeMB8GA1UdIwQY
MBaAFNvJUAmENigc7lQqHnRUZVHh5VKDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjhsUUNZUTJLQnp1VkNvZWRGUmxVZUhsVW9NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi81YWE0NDgtNjQzZi00YWVlLTkwZDkt
ZjQ3ZTE2OTI2NmMyLzEvMjhsUUNZUTJLQnp1VkNvZWRGUmxVZUhsVW9NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi81YWE0NDgtNjQzZi00YWVlLTkwZDktZjQ3ZTE2OTI2NmMy
LzEvMjhsUUNZUTJLQnp1VkNvZWRGUmxVZUhsVW9NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbS6dcF04
mAZ5KnvaTKuIVpLc12yJ3iWe+LqtSsTO1sVyacS7ybcJ+h12BOBY3J16S7vjwSzA
nKeyh05/dIVetlp/UJcfdZaJ0RyDbGSFm9TF4hxArXpyFp1exP1McEl6fniYM2ty
fWZ+oRHgy/+9/89QulkZBujPhVsZF2Sg5/0HhwN8fRnTG4Ng8K2ZlS9eB+8ZhPEU
pYfnir9uY3xSsunFZrOpZYHTzdo66uoClcs68slv1NPWDn/c41aLwyIAr3ypIU0w
OdeUkiszz6HaZSlIxOqg/0LPiYOtFeZjR5w0M9yBtXrv2fgAfJ8Xt2440q85EN4p
2ma2SPbgPTal+g==
-----END CERTIFICATE-----
Generated at Sun Jun 16 11:35:22 2024 by rpki-client on console-ams.rpki-client.org