Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
File: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft (raw, json)
Hash identifier: at+l1OphR86vYczZ4ErhWltPdVfDHG+HEHgrlsCgtuw=
Subject key identifier: 97:49:6E:A6:E8:50:0C:2A:6B:31:CA:73:70:7E:DF:1F:48:5C:C7:D2
Authority key identifier: A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
Certificate issuer: /CN=a09fda047b3a0b1c820435e699388660da32c63f
Certificate serial: 018F877F2E6795CBD838A00DD149509567AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
Manifest number: D0
Signing time: Fri 17 May 2024 17:00:10 +0000
Manifest this update: Fri 17 May 2024 17:00:10 +0000
Manifest next update: Sat 18 May 2024 17:00:10 +0000
Files and hashes: 1: dO3ICdl5ulcgQhc0kd2Mwx05CHk.roa (hash: lHRUe0WMvOm42mtiz15TWFbg1WhPOKY7gNPh7qQqRqY=)
2: dqP-0K0UiNP8ld9NLvMmxVJU17o.roa (hash: CyE/zjvAI2XeHb1sJ9bAyhhMPL8+LHbkpNTlXz+6xjI=)
3: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl (hash: vVBAc0L6QE2d+T9kAHBKXhLlNEfunGwdJZBK/0Ic58Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:7f:2e:67:95:cb:d8:38:a0:0d:d1:49:50:95:67:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09fda047b3a0b1c820435e699388660da32c63f
Validity
Not Before: May 17 17:00:10 2024 GMT
Not After : May 18 17:00:10 2024 GMT
Subject: CN=97496ea6e8500c2a6b31ca73707edf1f485cc7d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c6:a2:52:39:fe:5f:db:4f:9b:c9:55:33:e0:
ce:80:75:06:5b:43:e5:63:6e:7b:11:ad:83:80:49:
65:84:ca:4b:e2:32:2a:d4:e3:ab:b0:d8:e6:7c:92:
28:87:ec:c9:eb:8b:fe:08:b3:b9:7d:ea:1d:98:7c:
19:42:ce:26:f6:43:ab:6d:28:ab:1e:f7:22:ff:37:
d7:43:cb:fc:90:a7:91:05:0d:97:85:1c:fc:df:d3:
26:94:94:35:73:31:5e:4b:64:b4:e3:85:0d:da:80:
82:aa:e5:8a:0c:0a:09:4e:04:e6:40:a3:b7:98:2e:
95:a4:40:a3:01:4b:b7:e1:e6:b0:5f:2d:db:01:86:
1f:9f:38:ef:41:d1:58:1a:1e:a1:4a:33:bb:48:9f:
f6:8a:5e:14:91:04:30:a8:c7:70:35:29:54:a3:44:
74:89:17:a2:2e:a3:da:b5:d8:79:30:0a:ce:a8:6f:
fd:20:94:1a:c5:06:9f:66:6a:97:42:f2:76:a0:9f:
ea:cd:aa:37:00:59:9f:80:7d:f3:24:40:08:1e:06:
86:c4:c4:b7:fd:69:56:7f:f9:9a:83:d6:25:b2:3a:
33:b5:3f:84:eb:42:51:85:27:bd:e4:12:a4:42:17:
38:cc:d5:31:f8:ca:5c:74:e6:76:65:4e:bf:b0:44:
35:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:49:6E:A6:E8:50:0C:2A:6B:31:CA:73:70:7E:DF:1F:48:5C:C7:D2
X509v3 Authority Key Identifier:
keyid:A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:f0:a5:9d:53:c3:f5:37:78:6e:bf:bd:20:63:bf:7e:f2:93:
20:20:75:09:d2:2a:89:20:d2:90:6b:26:a2:62:16:09:57:93:
b8:25:61:6f:db:0b:b0:20:c6:59:a2:7b:e8:bd:41:76:22:38:
33:9c:fc:bc:50:de:77:42:c5:69:87:9c:18:57:d3:c9:88:b3:
69:47:51:a4:9b:35:f2:dc:21:04:b3:57:50:9c:10:77:53:7c:
34:c6:a2:6b:07:e8:40:4a:66:b3:10:08:68:92:bc:bd:b2:06:
20:9e:51:cd:41:93:fe:c8:df:d2:82:8c:3e:ff:86:0f:c1:0b:
26:29:e4:31:76:5b:51:88:21:d0:ba:6d:04:15:64:63:7b:2a:
71:0a:dc:92:cb:5f:67:5c:7a:c0:bf:54:f7:29:da:11:6c:1b:
5a:67:7f:c3:d5:fe:91:34:19:5c:1d:a8:c8:d0:ab:7e:98:b5:
0a:c1:ae:1c:25:19:ed:53:22:dd:3e:84:ec:3f:03:3e:3c:85:
77:06:77:e0:10:37:dc:2d:f4:4f:fa:f8:fd:a9:8a:b5:76:1c:
ce:ef:29:ed:a2:f6:57:fd:c0:6c:36:62:26:21:ba:33:3b:19:
7f:5a:69:f4:36:ba:7a:ed:90:b7:70:8e:47:0e:d8:84:59:4a:
23:a4:17:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+Hfy5nlcvYOKAN0UlQlWerMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwOWZkYTA0N2IzYTBiMWM4MjA0MzVlNjk5Mzg4NjYwZGEz
MmM2M2YwHhcNMjQwNTE3MTcwMDEwWhcNMjQwNTE4MTcwMDEwWjAzMTEwLwYDVQQD
Eyg5NzQ5NmVhNmU4NTAwYzJhNmIzMWNhNzM3MDdlZGYxZjQ4NWNjN2QyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuMaiUjn+X9tPm8lVM+DOgHUGW0Pl
Y257Ea2DgEllhMpL4jIq1OOrsNjmfJIoh+zJ64v+CLO5feodmHwZQs4m9kOrbSir
Hvci/zfXQ8v8kKeRBQ2XhRz839MmlJQ1czFeS2S044UN2oCCquWKDAoJTgTmQKO3
mC6VpECjAUu34eawXy3bAYYfnzjvQdFYGh6hSjO7SJ/2il4UkQQwqMdwNSlUo0R0
iReiLqPatdh5MArOqG/9IJQaxQafZmqXQvJ2oJ/qzao3AFmfgH3zJEAIHgaGxMS3
/WlWf/mag9YlsjoztT+E60JRhSe95BKkQhc4zNUx+MpcdOZ2ZU6/sEQ1AwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJdJbqboUAwqazHKc3B+3x9IXMfSMB8GA1UdIwQY
MBaAFKCf2gR7OgscggQ15pk4hmDaMsY/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi84YjRkMzItMDM2NS00ZGFhLTlkNWIt
Mjk5MjBlNTE2N2Q5LzEvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi84YjRkMzItMDM2NS00ZGFhLTlkNWItMjk5MjBlNTE2N2Q5
LzEvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg/ClnVPD
9Td4br+9IGO/fvKTICB1CdIqiSDSkGsmomIWCVeTuCVhb9sLsCDGWaJ76L1BdiI4
M5z8vFDed0LFaYecGFfTyYizaUdRpJs18twhBLNXUJwQd1N8NMaiawfoQEpmsxAI
aJK8vbIGIJ5RzUGT/sjf0oKMPv+GD8ELJinkMXZbUYgh0LptBBVkY3sqcQrckstf
Z1x6wL9U9ynaEWwbWmd/w9X+kTQZXB2oyNCrfpi1CsGuHCUZ7VMi3T6E7D8DPjyF
dwZ34BA33C30T/r4/amKtXYczu8p7aL2V/3AbDZiJiG6MzsZf1pp9Da6eu2Qt3CO
Rw7YhFlKI6QXFw==
-----END CERTIFICATE-----
Generated at Fri May 17 18:17:07 2024 by rpki-client on console-fra.rpki-client.org