Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
File: jrsOsZ53d9cDgAD2wS053tEgQkI.mft (raw, json)
Hash identifier: 1QPN8ybczYzun2/yGrArl7nf2HcxGE76KDiGOG9kvqE=
Subject key identifier: 34:BF:30:6B:6F:27:35:3B:9E:21:70:74:5D:1B:01:82:8D:5E:87:CA
Authority key identifier: 8E:BB:0E:B1:9E:77:77:D7:03:80:00:F6:C1:2D:39:DE:D1:20:42:42
Certificate issuer: /CN=8ebb0eb19e7777d7038000f6c12d39ded1204242
Certificate serial: 018F87496227995974845BF3C23E85F3E3D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
Manifest number: 07B2
Signing time: Fri 17 May 2024 16:01:24 +0000
Manifest this update: Fri 17 May 2024 16:01:24 +0000
Manifest next update: Sat 18 May 2024 16:01:24 +0000
Files and hashes: 1: j7vLyDHqiXb7ED_Eis3-QkZmFYA.roa (hash: Srzr85D6gQ9fXiBeIIGG3SNhn64gpuvQ1GYk/ihzs4I=)
2: jrsOsZ53d9cDgAD2wS053tEgQkI.crl (hash: KvTyy/8MkvwQ2368Rm1WoZXdbkpfFAUCmuRKOHc3h/s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:62:27:99:59:74:84:5b:f3:c2:3e:85:f3:e3:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ebb0eb19e7777d7038000f6c12d39ded1204242
Validity
Not Before: May 17 16:01:24 2024 GMT
Not After : May 18 16:01:24 2024 GMT
Subject: CN=34bf306b6f27353b9e2170745d1b01828d5e87ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0a:63:5d:8d:6c:42:37:7e:a0:c4:83:b1:14:
02:fa:01:62:3b:a1:f6:d5:ee:84:71:0d:ed:01:52:
e0:63:9a:b0:74:fa:b3:1b:38:f0:41:9f:82:f6:93:
39:6e:7a:bc:49:25:0d:4c:9b:76:f0:37:fa:37:5d:
a3:4b:4a:6e:37:58:f4:91:f9:f6:b0:4d:11:f4:ae:
54:1a:b0:c6:01:a7:6e:87:7d:58:53:72:48:03:fc:
87:45:5c:f0:94:a7:fa:15:3b:9a:3a:14:d4:31:d3:
a8:8b:22:60:b0:65:b7:aa:16:49:3b:49:fc:73:11:
f6:b0:30:44:a7:5d:a8:fe:f2:12:ce:bb:a4:a6:dc:
02:ec:a4:81:8e:c8:7c:ac:7c:02:b4:2a:cc:26:6b:
ae:a7:ce:fe:d2:a3:6c:90:f2:ba:b1:f2:b0:41:44:
99:43:04:41:04:2b:92:06:31:7e:46:0a:58:39:e6:
d6:85:9a:f2:fb:7a:24:87:af:c1:ab:2c:a2:86:69:
77:fb:7b:51:cc:13:d4:88:01:0d:99:bb:d1:21:34:
1b:31:e4:33:4d:7b:c7:23:61:b8:64:65:bc:f8:cf:
13:50:e8:3d:75:c9:26:2d:3b:7a:d9:2a:61:94:79:
64:32:d5:b2:b2:8e:d0:04:cd:9c:e2:33:ca:39:cd:
20:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:BF:30:6B:6F:27:35:3B:9E:21:70:74:5D:1B:01:82:8D:5E:87:CA
X509v3 Authority Key Identifier:
keyid:8E:BB:0E:B1:9E:77:77:D7:03:80:00:F6:C1:2D:39:DE:D1:20:42:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:4c:bf:fa:74:68:e4:74:c0:6c:a7:bd:52:4f:9a:49:05:7f:
2d:88:e8:38:b1:b2:20:cd:3f:2e:de:71:1b:fc:d6:00:c1:43:
f0:4b:99:13:2a:f9:04:f9:65:c3:60:72:a3:a2:d1:ca:76:24:
74:17:20:9a:76:e8:1f:39:71:eb:13:d1:50:54:49:0e:19:03:
89:c8:b1:69:cb:23:ce:ef:1d:17:3a:74:e2:18:2d:d9:90:7b:
21:f8:72:d0:a8:b8:1a:bf:87:8c:a9:e2:21:84:25:39:27:e9:
57:a1:00:4b:12:e2:ae:4e:37:00:10:2b:ed:24:16:34:f8:d7:
72:5d:3c:ee:51:21:6a:1e:41:e6:cf:4e:04:31:90:2f:62:62:
30:0b:12:56:3f:86:e4:a0:b2:77:07:df:d5:67:c2:4e:20:16:
60:fb:51:e9:33:d3:bc:7c:66:27:48:1a:7e:eb:5b:51:a0:9d:
58:15:83:03:5e:8f:e0:3a:e5:97:7b:0b:26:12:44:54:dd:20:
a4:73:f8:71:34:d9:12:81:1b:44:0e:c0:72:33:d0:1e:d5:e5:
b3:c9:06:e7:22:41:0e:93:47:66:a2:9d:4f:25:98:fb:ce:e4:
8c:29:0a:87:ad:2a:93:a1:04:24:cb:c6:7e:29:d8:0d:00:a7:
97:22:b6:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+HSWInmVl0hFvzwj6F8+PTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlYmIwZWIxOWU3Nzc3ZDcwMzgwMDBmNmMxMmQzOWRlZDEy
MDQyNDIwHhcNMjQwNTE3MTYwMTI0WhcNMjQwNTE4MTYwMTI0WjAzMTEwLwYDVQQD
EygzNGJmMzA2YjZmMjczNTNiOWUyMTcwNzQ1ZDFiMDE4MjhkNWU4N2NhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwQpjXY1sQjd+oMSDsRQC+gFiO6H2
1e6EcQ3tAVLgY5qwdPqzGzjwQZ+C9pM5bnq8SSUNTJt28Df6N12jS0puN1j0kfn2
sE0R9K5UGrDGAaduh31YU3JIA/yHRVzwlKf6FTuaOhTUMdOoiyJgsGW3qhZJO0n8
cxH2sDBEp12o/vISzrukptwC7KSBjsh8rHwCtCrMJmuup87+0qNskPK6sfKwQUSZ
QwRBBCuSBjF+RgpYOebWhZry+3okh6/Bqyyihml3+3tRzBPUiAENmbvRITQbMeQz
TXvHI2G4ZGW8+M8TUOg9dckmLTt62SphlHlkMtWyso7QBM2c4jPKOc0gNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDS/MGtvJzU7niFwdF0bAYKNXofKMB8GA1UdIwQY
MBaAFI67DrGed3fXA4AA9sEtOd7RIEJCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvanJzT3NaNTNkOWNEZ0FEMndTMDUzdEVnUWtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8zYjE1N2QtODE5Ni00ZTQwLWFiMzYt
MTUxNDFjNjY4NTRkLzEvanJzT3NaNTNkOWNEZ0FEMndTMDUzdEVnUWtJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi8zYjE1N2QtODE5Ni00ZTQwLWFiMzYtMTUxNDFjNjY4NTRk
LzEvanJzT3NaNTNkOWNEZ0FEMndTMDUzdEVnUWtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArUy/+nRo
5HTAbKe9Uk+aSQV/LYjoOLGyIM0/Lt5xG/zWAMFD8EuZEyr5BPllw2Byo6LRynYk
dBcgmnboHzlx6xPRUFRJDhkDicixacsjzu8dFzp04hgt2ZB7Ifhy0Ki4Gr+HjKni
IYQlOSfpV6EASxLirk43ABAr7SQWNPjXcl087lEhah5B5s9OBDGQL2JiMAsSVj+G
5KCydwff1WfCTiAWYPtR6TPTvHxmJ0gafutbUaCdWBWDA16P4Drll3sLJhJEVN0g
pHP4cTTZEoEbRA7AcjPQHtXls8kG5yJBDpNHZqKdTyWY+87kjCkKh60qk6EEJMvG
finYDQCnlyK2xw==
-----END CERTIFICATE-----
Generated at Fri May 17 23:41:06 2024 by rpki-client on console-fra.rpki-client.org