Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/680e29-7d83-4558-b411-e7fbd50e0349/1/3pj4NjKYKX-6uupodyArXEQOWpA.mft
File: 3pj4NjKYKX-6uupodyArXEQOWpA.mft (raw, json)
Hash identifier: JuPpW6OKYScL7Vu01F2rPLXHbLraiP9KUx4v2lWK8ts=
Subject key identifier: 1C:F3:8C:F8:C0:C6:82:32:5B:F4:C6:2F:9F:E3:C6:63:44:3B:DA:00
Authority key identifier: DE:98:F8:36:32:98:29:7F:BA:BA:EA:68:77:20:2B:5C:44:0E:5A:90
Certificate issuer: /CN=de98f8363298297fbabaea6877202b5c440e5a90
Certificate serial: 018F324FBD53D1BC5D2247FB56792E7F571B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3pj4NjKYKX-6uupodyArXEQOWpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/680e29-7d83-4558-b411-e7fbd50e0349/1/3pj4NjKYKX-6uupodyArXEQOWpA.mft
Manifest number: 07DB
Signing time: Wed 01 May 2024 04:00:37 +0000
Manifest this update: Wed 01 May 2024 04:00:37 +0000
Manifest next update: Thu 02 May 2024 04:00:37 +0000
Files and hashes: 1: 3pj4NjKYKX-6uupodyArXEQOWpA.crl (hash: 7s9LxXTy6Z2YSIoX2LYRbvBs+orJTY8PFYJ32ps0DiE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/680e29-7d83-4558-b411-e7fbd50e0349/1/3pj4NjKYKX-6uupodyArXEQOWpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/680e29-7d83-4558-b411-e7fbd50e0349/1/3pj4NjKYKX-6uupodyArXEQOWpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3pj4NjKYKX-6uupodyArXEQOWpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 04:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:32:4f:bd:53:d1:bc:5d:22:47:fb:56:79:2e:7f:57:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de98f8363298297fbabaea6877202b5c440e5a90
Validity
Not Before: May 1 04:00:37 2024 GMT
Not After : May 2 04:00:37 2024 GMT
Subject: CN=1cf38cf8c0c682325bf4c62f9fe3c663443bda00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:93:6b:a8:b0:5c:d2:8e:56:60:48:49:e6:b4:
fe:f4:25:ff:b8:91:d2:f4:08:cd:c2:c2:96:c6:29:
fc:69:b1:b0:3d:8a:a9:38:d4:e9:f1:cb:34:3e:ad:
d9:18:11:bd:00:95:6e:19:c9:27:67:6d:8c:87:df:
49:c2:d1:74:30:ca:a7:c4:fa:70:e3:13:de:1c:e3:
fd:17:72:52:dc:3d:5f:1c:d4:7c:29:c2:ee:47:a2:
8e:34:50:37:d8:3d:c5:8a:69:8e:2e:68:23:8d:b6:
77:0c:81:d5:f8:83:74:c2:23:df:8d:3d:ee:ee:a0:
89:5e:9a:d3:e4:59:da:a0:02:aa:68:29:8e:98:54:
a0:30:62:6d:0d:1f:cd:ac:a2:de:20:85:fe:f5:c6:
aa:73:23:f1:39:6e:98:de:ee:e2:e3:62:29:0d:d3:
74:cf:80:71:59:56:dc:bb:62:3e:d1:6f:6d:3b:8c:
93:5c:9a:21:6b:97:85:de:44:bc:c1:81:33:c1:d0:
96:30:be:c3:20:bb:15:1a:80:eb:bc:85:5c:94:5c:
ec:b7:1b:4b:da:85:c1:f2:8a:84:9f:10:04:fd:69:
88:7c:7c:26:c3:1b:38:74:40:0f:e4:06:e7:bd:0f:
bb:72:9d:ab:42:58:fc:b8:1a:41:98:6e:de:57:d8:
4f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:F3:8C:F8:C0:C6:82:32:5B:F4:C6:2F:9F:E3:C6:63:44:3B:DA:00
X509v3 Authority Key Identifier:
keyid:DE:98:F8:36:32:98:29:7F:BA:BA:EA:68:77:20:2B:5C:44:0E:5A:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3pj4NjKYKX-6uupodyArXEQOWpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/680e29-7d83-4558-b411-e7fbd50e0349/1/3pj4NjKYKX-6uupodyArXEQOWpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/680e29-7d83-4558-b411-e7fbd50e0349/1/3pj4NjKYKX-6uupodyArXEQOWpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:bd:58:28:60:8c:9a:c5:f3:97:62:1f:5c:83:a6:fa:b7:b5:
14:15:15:89:bf:58:dd:c4:fc:92:d8:b5:02:f0:57:9c:a1:8a:
33:36:50:69:05:41:3c:21:5b:ba:93:2c:06:9f:21:a2:56:0c:
37:e3:21:f4:f1:25:98:c5:e1:aa:62:51:ed:7e:8a:c0:0f:d6:
d2:3a:39:88:1d:28:84:3f:d4:90:37:64:a2:ad:26:0e:bf:4a:
57:22:1b:03:97:ae:ab:68:b8:1f:ce:77:87:ba:d7:26:c2:ab:
16:69:ce:27:08:ab:78:81:c6:8b:ef:fe:eb:3c:23:77:ff:21:
9d:1e:12:b4:84:a9:5e:9b:a3:e4:c1:66:12:80:4e:c2:eb:99:
72:2c:d6:70:e1:8c:f9:0a:b1:a7:bb:64:c7:1f:07:c1:ef:84:
26:73:ca:42:91:e4:ce:a8:ba:b3:dc:58:dc:06:f3:15:4e:80:
7e:2f:f6:64:7f:46:54:79:2e:2a:d6:13:1c:fa:cb:8d:c8:ce:
37:c3:fa:49:df:f9:18:93:94:a2:39:e4:2e:ac:43:d2:fe:a6:
42:ea:a4:0a:02:b4:ad:8f:af:76:57:bb:e6:36:fa:6a:12:da:
9d:d7:43:1d:83:19:0a:94:f5:b8:8a:10:95:a1:8a:c2:6f:d5:
49:e8:99:9f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY8yT71T0bxdIkf7Vnkuf1cbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlOThmODM2MzI5ODI5N2ZiYWJhZWE2ODc3MjAyYjVjNDQw
ZTVhOTAwHhcNMjQwNTAxMDQwMDM3WhcNMjQwNTAyMDQwMDM3WjAzMTEwLwYDVQQD
EygxY2YzOGNmOGMwYzY4MjMyNWJmNGM2MmY5ZmUzYzY2MzQ0M2JkYTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlZNrqLBc0o5WYEhJ5rT+9CX/uJHS
9AjNwsKWxin8abGwPYqpONTp8cs0Pq3ZGBG9AJVuGcknZ22Mh99JwtF0MMqnxPpw
4xPeHOP9F3JS3D1fHNR8KcLuR6KONFA32D3FimmOLmgjjbZ3DIHV+IN0wiPfjT3u
7qCJXprT5FnaoAKqaCmOmFSgMGJtDR/NrKLeIIX+9caqcyPxOW6Y3u7i42IpDdN0
z4BxWVbcu2I+0W9tO4yTXJoha5eF3kS8wYEzwdCWML7DILsVGoDrvIVclFzstxtL
2oXB8oqEnxAE/WmIfHwmwxs4dEAP5AbnvQ+7cp2rQlj8uBpBmG7eV9hPxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBzzjPjAxoIyW/TGL5/jxmNEO9oAMB8GA1UdIwQY
MBaAFN6Y+DYymCl/urrqaHcgK1xEDlqQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM3BqNE5qS1lLWC02dXVwb2R5QXJYRVFPV3BBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS82ODBlMjktN2Q4My00NTU4LWI0MTEt
ZTdmYmQ1MGUwMzQ5LzEvM3BqNE5qS1lLWC02dXVwb2R5QXJYRVFPV3BBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS82ODBlMjktN2Q4My00NTU4LWI0MTEtZTdmYmQ1MGUwMzQ5
LzEvM3BqNE5qS1lLWC02dXVwb2R5QXJYRVFPV3BBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgr1YKGCM
msXzl2IfXIOm+re1FBUVib9Y3cT8kti1AvBXnKGKMzZQaQVBPCFbupMsBp8holYM
N+Mh9PElmMXhqmJR7X6KwA/W0jo5iB0ohD/UkDdkoq0mDr9KVyIbA5euq2i4H853
h7rXJsKrFmnOJwireIHGi+/+6zwjd/8hnR4StISpXpuj5MFmEoBOwuuZcizWcOGM
+Qqxp7tkxx8Hwe+EJnPKQpHkzqi6s9xY3AbzFU6Afi/2ZH9GVHkuKtYTHPrLjcjO
N8P6Sd/5GJOUojnkLqxD0v6mQuqkCgK0rY+vdle75jb6ahLanddDHYMZCpT1uIoQ
laGKwm/VSeiZnw==
-----END CERTIFICATE-----
Generated at Wed May 1 08:00:28 2024 by rpki-client on console-fra.rpki-client.org