Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.mft
File: xfFStqDQBGJ9KF2Hmqg-WEYast8.mft (raw, json)
Hash identifier: w84nD7fLRtH/rlSs3LqcYQSn+At4oIVDUc2SpjAZVkg=
Subject key identifier: CC:84:48:C1:3A:C4:C3:DD:16:B5:8B:F2:D1:4D:76:B0:FC:EF:CE:7C
Authority key identifier: C5:F1:52:B6:A0:D0:04:62:7D:28:5D:87:9A:A8:3E:58:46:1A:B2:DF
Certificate issuer: /CN=c5f152b6a0d004627d285d879aa83e58461ab2df
Certificate serial: 018F87492AECB6026604FBDD3C38B2DCC528
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xfFStqDQBGJ9KF2Hmqg-WEYast8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.mft
Manifest number: 0D98
Signing time: Fri 17 May 2024 16:01:10 +0000
Manifest this update: Fri 17 May 2024 16:01:10 +0000
Manifest next update: Sat 18 May 2024 16:01:10 +0000
Files and hashes: 1: xfFStqDQBGJ9KF2Hmqg-WEYast8.crl (hash: IXwQDYxGtmWaqhpsM+dptb/Ic9NS+bVU0YQ7LAMeA6E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xfFStqDQBGJ9KF2Hmqg-WEYast8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:2a:ec:b6:02:66:04:fb:dd:3c:38:b2:dc:c5:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5f152b6a0d004627d285d879aa83e58461ab2df
Validity
Not Before: May 17 16:01:10 2024 GMT
Not After : May 18 16:01:10 2024 GMT
Subject: CN=cc8448c13ac4c3dd16b58bf2d14d76b0fcefce7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1e:42:6b:6d:e1:10:b0:47:b5:2c:2f:66:7d:
b0:f5:01:bb:de:83:0c:38:1c:1f:05:cf:ea:a8:dd:
71:cd:4f:37:6b:bb:78:cd:59:93:34:cb:6d:6e:d6:
c9:84:a3:c9:ca:78:4b:8d:0d:d0:57:3c:e7:62:33:
9f:76:71:48:f9:87:98:14:a4:f4:b9:d2:77:75:a2:
2c:53:6d:89:0e:e4:ba:5f:2e:10:2e:83:7a:a3:f3:
0d:0c:89:02:c7:f0:69:ca:8b:61:15:a3:e8:0c:bd:
bc:28:55:a4:42:a7:16:f5:44:5a:bc:30:dd:b5:3e:
6d:df:0c:21:e4:bd:82:bf:d0:16:60:71:6e:52:0b:
e7:57:fc:46:7b:24:8d:3b:f9:a0:73:f1:04:ac:58:
9c:6b:13:78:95:32:29:59:55:a4:55:48:f2:bb:49:
c3:e7:cb:3f:5d:f6:60:30:7c:df:1f:d2:68:31:ba:
c1:14:57:2e:42:b8:44:a8:cd:b0:71:6a:53:bc:ba:
71:90:86:3e:05:76:0a:04:5d:9c:8f:8a:05:42:86:
00:29:0a:1e:5e:1d:97:3c:21:54:96:a3:c4:70:b1:
63:5f:7f:98:0b:16:84:f0:42:50:2a:80:3f:15:be:
1c:d3:07:a2:2b:92:e3:56:3f:58:bf:5a:d0:55:9a:
8d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:84:48:C1:3A:C4:C3:DD:16:B5:8B:F2:D1:4D:76:B0:FC:EF:CE:7C
X509v3 Authority Key Identifier:
keyid:C5:F1:52:B6:A0:D0:04:62:7D:28:5D:87:9A:A8:3E:58:46:1A:B2:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xfFStqDQBGJ9KF2Hmqg-WEYast8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:c5:73:e7:13:c6:88:60:b8:69:fa:60:3b:8d:cf:5b:c8:16:
ec:96:45:67:4b:f6:ad:2a:b6:79:b3:e5:aa:95:8f:fe:70:7c:
9d:33:d8:a2:2e:61:59:78:6c:aa:75:ea:75:8d:f1:ad:96:7f:
f5:02:fe:c5:e5:2e:32:ba:5e:fc:ea:dd:a0:d1:cb:c4:61:d4:
cb:59:ae:2a:4b:b3:e9:28:9e:ea:3b:49:04:d9:0f:ff:de:80:
84:c2:a8:6e:20:86:6e:36:17:06:b0:7e:c4:37:8e:72:3b:28:
83:2d:e0:0a:00:46:8b:a3:54:ca:b6:6a:0d:0b:8b:ba:56:70:
f6:bc:d7:aa:3c:d0:07:eb:86:51:70:d2:b2:e4:b2:75:33:0e:
f6:e1:7f:5e:e3:1a:5c:d9:ac:07:9a:43:5d:c7:9e:a4:12:f6:
c3:5c:09:a7:13:77:67:95:c2:7e:07:d9:06:fd:66:d9:54:56:
74:95:f4:e4:cb:3f:0d:82:01:f5:f8:f1:19:1a:b8:c3:23:1d:
e6:de:f6:a6:f3:ff:95:e0:4f:3f:69:94:40:65:89:65:4f:ef:
a5:94:94:5e:2f:6e:96:38:55:9e:9d:6b:f5:3b:ae:db:92:2e:
0a:f2:de:98:45:1a:78:19:94:5f:c7:ad:6a:43:ae:bd:34:00:
c8:64:80:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+HSSrstgJmBPvdPDiy3MUoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1ZjE1MmI2YTBkMDA0NjI3ZDI4NWQ4NzlhYTgzZTU4NDYx
YWIyZGYwHhcNMjQwNTE3MTYwMTEwWhcNMjQwNTE4MTYwMTEwWjAzMTEwLwYDVQQD
EyhjYzg0NDhjMTNhYzRjM2RkMTZiNThiZjJkMTRkNzZiMGZjZWZjZTdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAux5Ca23hELBHtSwvZn2w9QG73oMM
OBwfBc/qqN1xzU83a7t4zVmTNMttbtbJhKPJynhLjQ3QVzznYjOfdnFI+YeYFKT0
udJ3daIsU22JDuS6Xy4QLoN6o/MNDIkCx/BpyothFaPoDL28KFWkQqcW9URavDDd
tT5t3wwh5L2Cv9AWYHFuUgvnV/xGeySNO/mgc/EErFicaxN4lTIpWVWkVUjyu0nD
58s/XfZgMHzfH9JoMbrBFFcuQrhEqM2wcWpTvLpxkIY+BXYKBF2cj4oFQoYAKQoe
Xh2XPCFUlqPEcLFjX3+YCxaE8EJQKoA/Fb4c0weiK5LjVj9Yv1rQVZqNcQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMyESME6xMPdFrWL8tFNdrD87858MB8GA1UdIwQY
MBaAFMXxUrag0ARifShdh5qoPlhGGrLfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGZGU3RxRFFCR0o5S0YySG1xZy1XRVlhc3Q4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi81M2FkNWEtMGEzNy00ZjY1LWE2YzYt
NzM3ZTc4Yzg3MDEyLzEveGZGU3RxRFFCR0o5S0YySG1xZy1XRVlhc3Q4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi81M2FkNWEtMGEzNy00ZjY1LWE2YzYtNzM3ZTc4Yzg3MDEy
LzEveGZGU3RxRFFCR0o5S0YySG1xZy1XRVlhc3Q4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH8Vz5xPG
iGC4afpgO43PW8gW7JZFZ0v2rSq2ebPlqpWP/nB8nTPYoi5hWXhsqnXqdY3xrZZ/
9QL+xeUuMrpe/OrdoNHLxGHUy1muKkuz6Sie6jtJBNkP/96AhMKobiCGbjYXBrB+
xDeOcjsogy3gCgBGi6NUyrZqDQuLulZw9rzXqjzQB+uGUXDSsuSydTMO9uF/XuMa
XNmsB5pDXceepBL2w1wJpxN3Z5XCfgfZBv1m2VRWdJX05Ms/DYIB9fjxGRq4wyMd
5t72pvP/leBPP2mUQGWJZU/vpZSUXi9uljhVnp1r9Tuu25IuCvLemEUaeBmUX8et
akOuvTQAyGSAfg==
-----END CERTIFICATE-----
Generated at Fri May 17 17:53:14 2024 by rpki-client on console-ams.rpki-client.org