Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
File: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft (raw, json)
Hash identifier: 8buGFPHEEmQdoRP0uAgtTIWlL6wOLQW/P+pAXkPYk9I=
Subject key identifier: 5F:A5:5F:40:35:80:26:3D:D9:C1:9C:9D:D2:D6:23:4D:C1:4D:70:FA
Authority key identifier: 68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93
Certificate issuer: /CN=68a8e93d3f590f4450d1db3c2074598244353e93
Certificate serial: 01906B2A50C239B6D89F1A3FB3F9898986E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
Manifest number: 11F1
Signing time: Sun 30 Jun 2024 22:00:53 +0000
Manifest this update: Sun 30 Jun 2024 22:00:53 +0000
Manifest next update: Mon 01 Jul 2024 22:00:53 +0000
Files and hashes: 1: 1s1bbORbc4_XMFyVrTcBfrjJKGU.roa (hash: 7GaGr+VebbEC2zNOT0rBb1O/dJ3x9t+sZaDY70qUsLc=)
2: IuR1Ga_rMCicaLAzd4V8YEqpUoI.roa (hash: ZHpvCl0yIsSMLycDIxc/wQDeljz5Rhdg8jjZHdYHA+I=)
3: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl (hash: zMfvSyXfY+2ktAbrBWSstBw4RN2R64glZPYwKHstLFg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jul 2024 22:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6b:2a:50:c2:39:b6:d8:9f:1a:3f:b3:f9:89:89:86:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a8e93d3f590f4450d1db3c2074598244353e93
Validity
Not Before: Jun 30 22:00:53 2024 GMT
Not After : Jul 1 22:00:53 2024 GMT
Subject: CN=5fa55f403580263dd9c19c9dd2d6234dc14d70fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:47:57:90:06:e0:60:5d:c4:46:9c:4a:18:37:
cc:ec:16:91:95:09:00:4b:c0:45:a7:30:af:45:27:
46:0e:d0:6e:e1:c2:dc:41:93:84:10:b7:72:30:91:
4b:d2:78:0e:7c:bb:9f:71:a8:29:16:1c:fc:c2:c1:
14:47:ae:ee:c8:56:6c:ed:c6:23:5d:de:a8:42:ab:
0a:5b:b8:21:6c:0a:3b:d4:d7:db:a2:5a:ff:b1:e1:
26:5b:f2:a2:6c:0d:cc:9d:e2:b2:78:e4:52:4b:4f:
f8:f2:c0:92:50:00:a8:ba:57:2b:f5:fa:ac:5a:6b:
a4:0d:8f:65:94:29:e2:56:9f:50:df:b7:67:e9:5a:
c4:a4:4d:71:e0:b8:c4:cd:3b:1d:e2:90:09:e7:b4:
7d:02:47:d8:06:b3:1e:b4:3f:16:15:56:2c:a9:74:
66:0c:d4:87:86:91:a6:b8:0b:27:c3:d1:4d:44:1e:
ef:5f:43:77:a9:56:09:7e:b0:a3:83:0b:ff:6f:d2:
45:4d:a1:1c:1f:ab:80:c7:62:23:18:bb:30:0d:01:
08:08:b9:ef:a5:dd:2d:fb:ca:fb:f1:83:40:81:f3:
a8:45:14:2f:a5:bc:d2:e6:e5:be:6e:94:4e:c5:4c:
28:ff:6d:71:e4:4c:87:9e:c4:f9:b5:40:ee:90:6b:
b7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:A5:5F:40:35:80:26:3D:D9:C1:9C:9D:D2:D6:23:4D:C1:4D:70:FA
X509v3 Authority Key Identifier:
keyid:68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:18:31:79:67:85:19:cc:39:ea:a4:f9:6b:b9:04:dc:c0:2f:
6d:d8:e8:41:a0:5d:d1:aa:d7:89:53:15:69:b2:86:dc:36:ab:
22:26:0f:18:16:56:6e:87:aa:1a:46:26:53:5b:62:82:fb:46:
d4:1d:78:e8:5f:32:54:a3:cc:e4:cf:32:63:80:63:38:3f:da:
f4:ef:ee:1a:74:11:01:b7:70:e5:4a:2f:1b:52:7d:2c:e5:6b:
c0:b0:41:a9:01:ec:1f:e8:a3:f7:47:ad:eb:7d:88:30:b1:c2:
65:80:55:81:55:09:37:96:84:69:9d:5e:60:dd:bf:a7:cb:22:
80:51:d8:c6:93:30:a5:d3:10:12:f9:ec:b5:f5:68:9e:7f:4e:
a6:0f:59:1e:eb:5c:17:05:42:66:3a:d0:73:fa:db:64:22:ab:
4d:88:8c:ad:77:49:95:6f:7d:34:f1:7b:78:be:03:83:20:77:
13:c8:b4:c0:e7:34:84:54:53:35:43:b2:63:26:8b:de:5d:ef:
b0:a8:b1:d0:4d:14:fe:ab:86:6c:41:2a:35:5e:7f:19:d8:19:
62:24:eb:2f:ae:ba:20:f8:bf:64:d0:f1:33:93:cc:3c:b0:9f:
e7:40:d7:30:4f:77:23:a8:29:fb:da:2a:5a:dd:9d:a4:0b:d4:
fe:ce:c3:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZBrKlDCObbYnxo/s/mJiYbiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YThlOTNkM2Y1OTBmNDQ1MGQxZGIzYzIwNzQ1OTgyNDQz
NTNlOTMwHhcNMjQwNjMwMjIwMDUzWhcNMjQwNzAxMjIwMDUzWjAzMTEwLwYDVQQD
Eyg1ZmE1NWY0MDM1ODAyNjNkZDljMTljOWRkMmQ2MjM0ZGMxNGQ3MGZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqEdXkAbgYF3ERpxKGDfM7BaRlQkA
S8BFpzCvRSdGDtBu4cLcQZOEELdyMJFL0ngOfLufcagpFhz8wsEUR67uyFZs7cYj
Xd6oQqsKW7ghbAo71Nfbolr/seEmW/KibA3MneKyeORSS0/48sCSUACoulcr9fqs
WmukDY9llCniVp9Q37dn6VrEpE1x4LjEzTsd4pAJ57R9AkfYBrMetD8WFVYsqXRm
DNSHhpGmuAsnw9FNRB7vX0N3qVYJfrCjgwv/b9JFTaEcH6uAx2IjGLswDQEICLnv
pd0t+8r78YNAgfOoRRQvpbzS5uW+bpROxUwo/21x5EyHnsT5tUDukGu3qwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF+lX0A1gCY92cGcndLWI03BTXD6MB8GA1UdIwQY
MBaAFGio6T0/WQ9EUNHbPCB0WYJENT6TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9iYjNiMjktODFlNS00NWEyLTgxZWMt
MjVkZDRjYmIzNjk4LzEvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9iYjNiMjktODFlNS00NWEyLTgxZWMtMjVkZDRjYmIzNjk4
LzEvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASxgxeWeF
Gcw56qT5a7kE3MAvbdjoQaBd0arXiVMVabKG3DarIiYPGBZWboeqGkYmU1tigvtG
1B146F8yVKPM5M8yY4BjOD/a9O/uGnQRAbdw5UovG1J9LOVrwLBBqQHsH+ij90et
632IMLHCZYBVgVUJN5aEaZ1eYN2/p8sigFHYxpMwpdMQEvnstfVonn9Opg9ZHutc
FwVCZjrQc/rbZCKrTYiMrXdJlW99NPF7eL4DgyB3E8i0wOc0hFRTNUOyYyaL3l3v
sKix0E0U/quGbEEqNV5/GdgZYiTrL666IPi/ZNDxM5PMPLCf50DXME93I6gp+9oq
Wt2dpAvU/s7Dug==
-----END CERTIFICATE-----
Generated at Mon Jul 1 01:40:46 2024 by rpki-client on console-fra.rpki-client.org