Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
File: IEBQzFlTby2UB2koI4kMzdqFRQg.mft (raw, json)
Hash identifier: g9QJbF3N+9tOooXCZVD6/w6t5fR27fJTpCuclk5f18o=
Subject key identifier: 78:CD:7F:BC:15:CA:96:7F:DE:91:E3:D7:E7:EA:AF:13:74:75:8A:24
Authority key identifier: 20:40:50:CC:59:53:6F:2D:94:07:69:28:23:89:0C:CD:DA:85:45:08
Certificate issuer: /CN=204050cc59536f2d9407692823890ccdda854508
Certificate serial: 0191FB22FD735C6E8F9AAFA52F76B778B3F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
Manifest number: CC
Signing time: Mon 16 Sep 2024 14:00:59 +0000
Manifest this update: Mon 16 Sep 2024 14:00:59 +0000
Manifest next update: Tue 17 Sep 2024 14:00:59 +0000
Files and hashes: 1: IEBQzFlTby2UB2koI4kMzdqFRQg.crl (hash: XlOFEYcapOcVEdGeojTOp6Qr2UUHqRClecbK3nwFPdo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 14:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fb:22:fd:73:5c:6e:8f:9a:af:a5:2f:76:b7:78:b3:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=204050cc59536f2d9407692823890ccdda854508
Validity
Not Before: Sep 16 14:00:59 2024 GMT
Not After : Sep 17 14:00:59 2024 GMT
Subject: CN=78cd7fbc15ca967fde91e3d7e7eaaf1374758a24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:a8:f2:cd:8a:a3:38:6c:d7:c9:1c:4b:73:d3:
5f:a4:0f:5b:45:87:e8:6f:67:ac:9a:c3:e5:f8:c3:
d8:cb:88:30:96:48:df:b1:6d:96:09:b0:ad:ad:fb:
25:4f:d8:78:84:22:38:9b:36:00:87:86:f2:94:8a:
f8:3e:44:c4:23:fc:27:c7:33:ba:d1:e2:eb:33:e1:
9c:26:2a:7b:a4:02:7f:02:8a:c4:eb:22:45:85:e5:
2f:02:97:9c:64:38:3d:ef:cf:97:29:31:3b:cf:23:
d0:6f:cb:07:14:d0:22:c0:f9:5e:de:b7:ad:0c:e6:
16:bf:eb:c6:5c:59:a6:1d:8f:80:ff:eb:f8:93:db:
55:96:c4:6b:9e:17:f4:64:2c:c2:a0:d3:e8:27:66:
d4:62:35:e4:9c:db:a7:1e:04:6c:18:be:d6:9d:37:
f1:4f:e2:ce:9c:40:25:50:1e:ab:58:91:62:8f:0f:
a3:8c:c9:c1:6d:7d:9b:6a:05:f2:26:a0:5a:2b:3a:
76:4a:f6:00:12:fe:9e:2b:fd:0e:5f:ff:81:e5:11:
ab:70:1b:ad:f7:3b:3f:b7:ab:b5:9b:53:8a:d7:1e:
ee:4a:9b:0f:19:ab:ce:e2:c3:22:cc:b6:03:f5:81:
03:bf:45:3c:c7:25:d6:83:50:02:b9:ca:62:5d:b9:
e2:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:CD:7F:BC:15:CA:96:7F:DE:91:E3:D7:E7:EA:AF:13:74:75:8A:24
X509v3 Authority Key Identifier:
keyid:20:40:50:CC:59:53:6F:2D:94:07:69:28:23:89:0C:CD:DA:85:45:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:9a:04:cd:4d:31:0e:d2:5a:b4:ec:15:1c:9f:fe:a9:ab:5b:
85:da:85:ea:c7:14:6b:70:46:c7:dc:71:29:e7:6d:cd:41:23:
4b:41:d3:0e:b8:b4:b8:fd:ad:d1:c5:4a:aa:0d:56:d5:93:ea:
ce:fe:57:04:ee:cf:2e:58:63:d4:26:a3:85:d8:25:fa:c1:cf:
9a:f3:71:26:33:7c:1b:ed:d4:84:c6:33:2b:80:40:8c:73:0d:
bf:11:f0:d3:34:8e:f3:be:79:ee:8a:87:72:ce:8e:bf:2d:35:
f4:80:61:ff:e5:9a:48:91:4c:99:ba:5c:f7:93:24:7c:c3:15:
63:5a:86:77:57:ae:53:da:68:50:34:2f:75:cf:b8:7f:c6:e1:
58:fe:01:55:fc:3c:e4:bb:3f:a7:01:60:c8:f0:6e:19:49:42:
e5:92:d5:2c:dd:c9:c3:42:7a:fd:63:c7:d5:cb:d0:51:83:bb:
92:95:ee:76:4a:ee:92:dd:da:89:32:30:ae:ee:49:f6:07:11:
fe:f1:03:31:68:4b:bc:51:2a:a4:a1:42:3b:c7:bc:f0:42:68:
ee:d1:0e:6f:b6:df:a8:07:c1:a8:0b:e4:a9:0f:e4:9a:b1:27:
21:11:fd:ca:67:45:9e:31:41:cb:0b:4a:c1:21:3b:31:f6:7f:
b4:30:18:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZH7Iv1zXG6Pmq+lL3a3eLP1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwNDA1MGNjNTk1MzZmMmQ5NDA3NjkyODIzODkwY2NkZGE4
NTQ1MDgwHhcNMjQwOTE2MTQwMDU5WhcNMjQwOTE3MTQwMDU5WjAzMTEwLwYDVQQD
Eyg3OGNkN2ZiYzE1Y2E5NjdmZGU5MWUzZDdlN2VhYWYxMzc0NzU4YTI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5ajyzYqjOGzXyRxLc9NfpA9bRYfo
b2esmsPl+MPYy4gwlkjfsW2WCbCtrfslT9h4hCI4mzYAh4bylIr4PkTEI/wnxzO6
0eLrM+GcJip7pAJ/AorE6yJFheUvApecZDg978+XKTE7zyPQb8sHFNAiwPle3ret
DOYWv+vGXFmmHY+A/+v4k9tVlsRrnhf0ZCzCoNPoJ2bUYjXknNunHgRsGL7WnTfx
T+LOnEAlUB6rWJFijw+jjMnBbX2bagXyJqBaKzp2SvYAEv6eK/0OX/+B5RGrcBut
9zs/t6u1m1OK1x7uSpsPGavO4sMizLYD9YEDv0U8xyXWg1ACucpiXbniNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHjNf7wVypZ/3pHj1+fqrxN0dYokMB8GA1UdIwQY
MBaAFCBAUMxZU28tlAdpKCOJDM3ahUUIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUVCUXpGbFRieTJVQjJrb0k0a016ZHFGUlFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8wNDU1ZDUtYWU1Ni00ODIwLWExZTkt
OWI0MzdkYmZkMzUzLzEvSUVCUXpGbFRieTJVQjJrb0k0a016ZHFGUlFnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC8wNDU1ZDUtYWU1Ni00ODIwLWExZTktOWI0MzdkYmZkMzUz
LzEvSUVCUXpGbFRieTJVQjJrb0k0a016ZHFGUlFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZpoEzU0x
DtJatOwVHJ/+qatbhdqF6scUa3BGx9xxKedtzUEjS0HTDri0uP2t0cVKqg1W1ZPq
zv5XBO7PLlhj1Cajhdgl+sHPmvNxJjN8G+3UhMYzK4BAjHMNvxHw0zSO87557oqH
cs6Ovy019IBh/+WaSJFMmbpc95MkfMMVY1qGd1euU9poUDQvdc+4f8bhWP4BVfw8
5Ls/pwFgyPBuGUlC5ZLVLN3Jw0J6/WPH1cvQUYO7kpXudkrukt3aiTIwru5J9gcR
/vEDMWhLvFEqpKFCO8e88EJo7tEOb7bfqAfBqAvkqQ/kmrEnIRH9ymdFnjFBywtK
wSE7MfZ/tDAY3A==
-----END CERTIFICATE-----
Generated at Mon Sep 16 18:12:24 2024 by rpki-client on console-ams.rpki-client.org