Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
File: 4toj07kw1MHzrHMGXXGmB8NdKQA.mft (raw, json)
Hash identifier: KFDOpW/iPrIvPDwdUyrhC+9LyV2wNr6ktgLQLK1+Pjg=
Subject key identifier: 20:F6:70:53:56:E5:6D:88:6B:C5:2A:27:A5:F6:1A:44:C3:42:87:9F
Authority key identifier: E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00
Certificate issuer: /CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900
Certificate serial: 018F362E02B0732C62FB9FFB56D43C9E8AB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
Manifest number: 1150
Signing time: Wed 01 May 2024 22:02:16 +0000
Manifest this update: Wed 01 May 2024 22:02:16 +0000
Manifest next update: Thu 02 May 2024 22:02:16 +0000
Files and hashes: 1: 4toj07kw1MHzrHMGXXGmB8NdKQA.crl (hash: cWlpV5brZj2XsoVewkwbZrm44GhEx1AN/Zrvm70d7hI=)
2: qUZiMdNyOk76_ip9B7WN-KNms3g.roa (hash: Ke040Y08DoVAtO3WShasGL4c7hmYiVrL20wNA3KlWUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 14:46:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:36:2e:02:b0:73:2c:62:fb:9f:fb:56:d4:3c:9e:8a:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900
Validity
Not Before: May 1 22:02:16 2024 GMT
Not After : May 2 22:02:16 2024 GMT
Subject: CN=20f6705356e56d886bc52a27a5f61a44c342879f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:9e:6f:53:8b:ca:c2:3d:02:10:1d:87:93:b8:
d2:8f:a9:6f:91:92:f8:e0:5d:18:4a:0d:0b:9f:07:
ba:e0:38:65:d8:0e:f2:f2:c1:26:ab:cf:09:80:1d:
80:6d:3a:15:43:90:94:9e:f2:c7:35:05:e8:87:f0:
29:1a:dd:c8:78:e2:db:ab:fe:55:e9:91:ee:4c:9c:
46:b2:ce:71:99:aa:0b:82:5a:d3:e2:22:5e:57:f5:
e4:d1:0b:f6:2a:9b:25:b8:cb:61:b9:90:fe:ee:41:
27:14:0e:10:10:7d:67:90:cd:e1:1b:d4:40:9f:de:
8c:57:05:10:bf:ed:3c:ee:e0:00:1e:ed:1a:80:4d:
24:06:58:67:8c:7c:30:c0:8f:d5:6f:8a:d5:f6:12:
be:e6:2c:e7:36:cc:69:80:0a:3e:1d:a4:c8:64:a4:
6a:cf:10:49:50:36:d4:d8:2d:c9:08:9d:f2:e2:af:
82:86:14:eb:ad:f1:38:7b:f1:67:a7:7b:fb:8a:55:
c6:29:d4:17:8b:ca:87:32:4a:fa:1c:61:4c:48:5b:
4a:5c:69:75:50:a5:4f:ca:2e:42:45:46:dd:02:a5:
cb:48:1b:e1:f0:3d:9d:18:ff:43:a9:76:f6:25:c7:
95:8a:f6:ac:3f:ea:d1:cc:8f:75:50:e4:2e:0c:4d:
46:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:F6:70:53:56:E5:6D:88:6B:C5:2A:27:A5:F6:1A:44:C3:42:87:9F
X509v3 Authority Key Identifier:
keyid:E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:55:0a:8b:71:d0:8d:4f:c4:4c:25:c5:35:2b:6b:a0:8d:f1:
cd:70:97:7e:77:67:a4:91:98:db:d6:03:d3:31:2e:03:7b:94:
12:09:a8:28:21:41:30:3c:dd:ec:4f:2b:af:86:ee:2f:c3:14:
25:ec:08:92:21:88:d1:79:0f:8b:c2:ee:ce:b5:1f:84:5b:18:
b2:d2:c9:4f:cc:e8:42:80:e3:55:72:23:bd:f3:96:8a:bd:31:
58:26:44:8e:81:cf:f6:19:39:bc:6f:0a:62:4e:3c:04:d8:0a:
7b:86:39:86:8d:6e:e1:cb:fe:e1:b3:29:a7:c9:e0:01:18:b8:
42:42:23:0e:25:8c:bb:17:c2:84:d7:a5:f5:61:6a:ef:a6:e2:
8e:9f:77:92:db:51:85:b3:71:9d:db:b2:4b:1b:43:7e:a3:f0:
99:01:43:cc:e8:07:b2:3f:01:cb:62:c3:40:f9:ba:45:60:92:
4f:fe:ca:45:22:f3:90:a3:48:cb:ae:23:e7:03:93:ac:b2:e8:
8d:74:e2:86:03:e7:ec:72:2b:17:b0:a4:3e:b9:81:b3:ad:d4:
fc:ca:11:fd:72:48:d3:af:9c:1f:78:6a:c0:bf:8c:f1:b3:84:
c4:bb:3a:f2:95:95:26:c7:b2:4d:c4:59:94:a9:ca:fe:5e:0e:
04:4f:4b:e1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY82LgKwcyxi+5/7VtQ8noq4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyZGEyM2QzYjkzMGQ0YzFmM2FjNzMwNjVkNzFhNjA3YzM1
ZDI5MDAwHhcNMjQwNTAxMjIwMjE2WhcNMjQwNTAyMjIwMjE2WjAzMTEwLwYDVQQD
EygyMGY2NzA1MzU2ZTU2ZDg4NmJjNTJhMjdhNWY2MWE0NGMzNDI4NzlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmJ5vU4vKwj0CEB2Hk7jSj6lvkZL4
4F0YSg0Lnwe64Dhl2A7y8sEmq88JgB2AbToVQ5CUnvLHNQXoh/ApGt3IeOLbq/5V
6ZHuTJxGss5xmaoLglrT4iJeV/Xk0Qv2KpsluMthuZD+7kEnFA4QEH1nkM3hG9RA
n96MVwUQv+087uAAHu0agE0kBlhnjHwwwI/Vb4rV9hK+5iznNsxpgAo+HaTIZKRq
zxBJUDbU2C3JCJ3y4q+ChhTrrfE4e/Fnp3v7ilXGKdQXi8qHMkr6HGFMSFtKXGl1
UKVPyi5CRUbdAqXLSBvh8D2dGP9DqXb2JceVivasP+rRzI91UOQuDE1GiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCD2cFNW5W2Ia8UqJ6X2GkTDQoefMB8GA1UdIwQY
MBaAFOLaI9O5MNTB86xzBl1xpgfDXSkAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHRvajA3a3cxTUh6ckhNR1hYR21COE5kS1FBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9kZWViYjgtYWU4Ni00Njk0LWE5NzIt
ODI3YTBhYzA0YTlkLzEvNHRvajA3a3cxTUh6ckhNR1hYR21COE5kS1FBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi9kZWViYjgtYWU4Ni00Njk0LWE5NzItODI3YTBhYzA0YTlk
LzEvNHRvajA3a3cxTUh6ckhNR1hYR21COE5kS1FBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmVUKi3HQ
jU/ETCXFNStroI3xzXCXfndnpJGY29YD0zEuA3uUEgmoKCFBMDzd7E8rr4buL8MU
JewIkiGI0XkPi8LuzrUfhFsYstLJT8zoQoDjVXIjvfOWir0xWCZEjoHP9hk5vG8K
Yk48BNgKe4Y5ho1u4cv+4bMpp8ngARi4QkIjDiWMuxfChNel9WFq76bijp93kttR
hbNxnduySxtDfqPwmQFDzOgHsj8By2LDQPm6RWCST/7KRSLzkKNIy64j5wOTrLLo
jXTihgPn7HIrF7CkPrmBs63U/MoR/XJI06+cH3hqwL+M8bOExLs68pWVJseyTcRZ
lKnK/l4OBE9L4Q==
-----END CERTIFICATE-----
Generated at Wed May 1 23:07:24 2024 by rpki-client on console-ams.rpki-client.org