Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
File: CYZDIBoqokoLh3o638p6iSBH2_w.mft (raw, json)
Hash identifier: 5GMx62uINGpPhoM/EZmhvyYg2qgHOXLzqDYiohNW7Fo=
Subject key identifier: 39:BC:84:2E:C4:7F:F7:EE:DA:88:68:A5:75:AF:DD:3F:90:63:5E:A7
Authority key identifier: 09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
Certificate issuer: /CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Certificate serial: 018F204A031BA1B93EEE11683C61B6B4BA26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
Manifest number: 0D5C
Signing time: Sat 27 Apr 2024 16:01:12 +0000
Manifest this update: Sat 27 Apr 2024 16:01:12 +0000
Manifest next update: Sun 28 Apr 2024 16:01:12 +0000
Files and hashes: 1: CYZDIBoqokoLh3o638p6iSBH2_w.crl (hash: NpxRw258T/34n5q3tot3jWnneb1ZZcQvmYNGrntErSY=)
2: qVObmdZDcq_Sg7XpmnLyC6qhHWo.roa (hash: GsG35NAp/Mja98gHiO07YChpzk54rWAQ65txG5aOxdk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Apr 2024 11:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:20:4a:03:1b:a1:b9:3e:ee:11:68:3c:61:b6:b4:ba:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Validity
Not Before: Apr 27 16:01:12 2024 GMT
Not After : Apr 28 16:01:12 2024 GMT
Subject: CN=39bc842ec47ff7eeda8868a575afdd3f90635ea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:50:98:dd:d3:ff:6a:fe:2b:9d:39:7c:e6:e0:
1e:be:03:3b:a5:35:ee:eb:ef:9f:0c:b0:17:c5:f9:
c3:4a:82:c8:d2:66:86:97:fd:79:0d:80:35:7b:29:
44:d8:a0:c0:5e:9d:84:28:37:90:ba:ad:a9:05:a9:
2b:41:d3:d6:75:b1:fa:c9:f2:54:43:3b:30:a5:92:
e8:1c:60:5b:7c:56:7e:86:b6:98:51:b6:8c:64:e2:
04:37:f2:fa:a2:4f:10:19:e3:4b:95:2e:21:fc:5a:
4f:b0:cf:e8:82:6f:6f:fc:e8:67:a4:fa:1a:99:5d:
0f:10:f4:c3:e0:36:b5:b5:30:19:14:e9:60:d2:df:
44:d3:57:a4:1f:e7:05:a5:0b:a1:2e:47:c9:9f:b6:
fd:44:60:73:3f:48:61:8c:3d:b1:cf:34:f6:64:81:
c3:5a:ca:6b:52:7b:63:10:5a:aa:67:88:12:2f:a2:
ef:42:3f:29:a7:86:bc:b1:dd:13:04:e7:d8:28:74:
e0:77:9e:0b:69:e4:99:16:04:31:cc:45:fa:74:2d:
09:71:ad:29:ae:70:94:1f:c4:33:da:90:72:9f:c8:
35:cd:44:6e:1c:7a:89:b0:c3:ef:d7:f5:fd:bc:f0:
79:8a:55:93:65:75:32:c0:81:35:b9:fc:dd:f6:f8:
07:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:BC:84:2E:C4:7F:F7:EE:DA:88:68:A5:75:AF:DD:3F:90:63:5E:A7
X509v3 Authority Key Identifier:
keyid:09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:5d:62:a4:ac:72:2e:ca:a0:e1:ba:9a:bf:7a:75:ee:26:56:
51:52:b1:23:51:42:7c:3d:11:ce:d0:01:f8:01:56:cd:88:b8:
e5:ce:a6:8b:7c:49:af:b6:d6:80:b0:ab:8d:7a:28:0c:79:57:
a5:c5:ed:88:1c:ca:b1:09:d5:93:89:ce:9a:8f:0f:f4:0d:22:
ea:24:e8:0a:ae:31:c4:f6:18:ff:8d:5c:cd:0d:25:a4:7c:49:
b1:4e:8a:d7:04:86:cd:e6:84:7f:8d:e4:9b:74:1f:51:61:00:
37:06:4f:a3:de:b9:56:42:71:40:6e:5a:db:34:d9:07:9f:14:
6b:e7:35:95:05:0c:08:3d:cc:1b:31:f7:30:72:cd:ab:94:7d:
e6:40:67:a8:7f:37:3b:bf:d5:ba:00:e7:f9:ba:17:46:65:a7:
17:5d:e0:77:d1:4c:a8:f1:52:33:d8:a1:b2:57:6b:f9:e8:db:
c7:58:22:e5:f9:ba:fc:71:23:dd:fb:ff:a2:e8:ef:3f:8b:c8:
a2:1a:22:b7:eb:3c:83:da:3a:64:63:f2:9c:25:92:5d:e1:a0:
f4:6c:66:f9:43:bb:7b:17:c5:8e:bf:82:27:b3:50:9f:e4:2f:
b3:46:9a:30:88:46:ad:72:dc:5e:e8:81:36:bf:81:8d:ee:2e:
cb:58:86:f9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY8gSgMbobk+7hFoPGG2tLomMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5ODY0MzIwMWEyYWEyNGEwYjg3N2EzYWRmY2E3YTg5MjA0
N2RiZmMwHhcNMjQwNDI3MTYwMTEyWhcNMjQwNDI4MTYwMTEyWjAzMTEwLwYDVQQD
EygzOWJjODQyZWM0N2ZmN2VlZGE4ODY4YTU3NWFmZGQzZjkwNjM1ZWE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk1CY3dP/av4rnTl85uAevgM7pTXu
6++fDLAXxfnDSoLI0maGl/15DYA1eylE2KDAXp2EKDeQuq2pBakrQdPWdbH6yfJU
QzswpZLoHGBbfFZ+hraYUbaMZOIEN/L6ok8QGeNLlS4h/FpPsM/ogm9v/OhnpPoa
mV0PEPTD4Da1tTAZFOlg0t9E01ekH+cFpQuhLkfJn7b9RGBzP0hhjD2xzzT2ZIHD
WsprUntjEFqqZ4gSL6LvQj8pp4a8sd0TBOfYKHTgd54LaeSZFgQxzEX6dC0Jca0p
rnCUH8Qz2pByn8g1zURuHHqJsMPv1/X9vPB5ilWTZXUywIE1ufzd9vgHLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDm8hC7Ef/fu2ohopXWv3T+QY16nMB8GA1UdIwQY
MBaAFAmGQyAaKqJKC4d6Ot/KeokgR9v8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1laRElCb3Fva29MaDNvNjM4cDZpU0JIMl93LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy8yZDdmNGMtYzNkNS00NTU3LTkzYzQt
NzhiZmQyNGNmMTA3LzEvQ1laRElCb3Fva29MaDNvNjM4cDZpU0JIMl93Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy8yZDdmNGMtYzNkNS00NTU3LTkzYzQtNzhiZmQyNGNmMTA3
LzEvQ1laRElCb3Fva29MaDNvNjM4cDZpU0JIMl93LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHl1ipKxy
Lsqg4bqav3p17iZWUVKxI1FCfD0RztAB+AFWzYi45c6mi3xJr7bWgLCrjXooDHlX
pcXtiBzKsQnVk4nOmo8P9A0i6iToCq4xxPYY/41czQ0lpHxJsU6K1wSGzeaEf43k
m3QfUWEANwZPo965VkJxQG5a2zTZB58Ua+c1lQUMCD3MGzH3MHLNq5R95kBnqH83
O7/VugDn+boXRmWnF13gd9FMqPFSM9ihsldr+ejbx1gi5fm6/HEj3fv/oujvP4vI
ohoit+s8g9o6ZGPynCWSXeGg9Gxm+UO7exfFjr+CJ7NQn+Qvs0aaMIhGrXLcXuiB
Nr+Bje4uy1iG+Q==
-----END CERTIFICATE-----
Generated at Sat Apr 27 18:02:07 2024 by rpki-client on console-ams.rpki-client.org