Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/ab30b2-e32e-466a-b10c-b1005eb1e48c/1/XwMtciPxNqdVKSTWUPV8X9HXzc0.mft
File: XwMtciPxNqdVKSTWUPV8X9HXzc0.mft (raw, json)
Hash identifier: sFDZreE0jUTaYqejcEccRBHSiFw1gndPp5Tk6ThWGrI=
Subject key identifier: E5:01:4B:12:7F:9B:3D:11:42:C0:3C:DD:65:EB:17:2F:50:8D:CA:51
Authority key identifier: 5F:03:2D:72:23:F1:36:A7:55:29:24:D6:50:F5:7C:5F:D1:D7:CD:CD
Certificate issuer: /CN=5f032d7223f136a7552924d650f57c5fd1d7cdcd
Certificate serial: 018F9A99F6396E5527E5257746198F453070
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XwMtciPxNqdVKSTWUPV8X9HXzc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/ab30b2-e32e-466a-b10c-b1005eb1e48c/1/XwMtciPxNqdVKSTWUPV8X9HXzc0.mft
Manifest number: 052F
Signing time: Tue 21 May 2024 10:02:12 +0000
Manifest this update: Tue 21 May 2024 10:02:12 +0000
Manifest next update: Wed 22 May 2024 10:02:12 +0000
Files and hashes: 1: XwMtciPxNqdVKSTWUPV8X9HXzc0.crl (hash: BPoycgqZxEAZpvTowpjgyKrIMGUtuZisbZz0Z1UNK2s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/ab30b2-e32e-466a-b10c-b1005eb1e48c/1/XwMtciPxNqdVKSTWUPV8X9HXzc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/ab30b2-e32e-466a-b10c-b1005eb1e48c/1/XwMtciPxNqdVKSTWUPV8X9HXzc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XwMtciPxNqdVKSTWUPV8X9HXzc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 10:02:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9a:99:f6:39:6e:55:27:e5:25:77:46:19:8f:45:30:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f032d7223f136a7552924d650f57c5fd1d7cdcd
Validity
Not Before: May 21 10:02:12 2024 GMT
Not After : May 22 10:02:12 2024 GMT
Subject: CN=e5014b127f9b3d1142c03cdd65eb172f508dca51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:94:cc:3a:cc:35:3b:8f:83:8f:d6:de:2a:03:
0d:0a:ed:04:7e:9f:16:09:5c:76:e2:33:68:a6:05:
a4:b3:ad:99:73:78:cc:c1:ea:4b:f4:ae:7b:95:bc:
69:13:a0:b1:50:1d:16:e5:d1:c3:59:da:7a:f0:49:
1e:c1:45:5f:36:be:ea:a8:51:53:7c:71:d5:87:e7:
fb:73:e3:e7:6d:d0:9b:00:11:fe:8a:6a:d8:c1:08:
d5:36:27:04:8c:d0:66:2c:b2:f0:8b:7f:41:60:9d:
c1:52:e2:5f:95:b0:fc:19:f2:0f:73:44:59:34:62:
65:d8:f8:b9:3c:38:ae:f2:92:8e:a7:b7:46:b9:51:
56:3d:85:17:dd:02:d2:d6:d6:11:b3:6d:cb:3e:5e:
84:b2:61:1d:05:91:b2:e9:c8:b5:82:42:73:12:6d:
f8:65:94:e1:77:58:24:46:9e:cd:e5:fb:5a:f0:9f:
1e:1e:aa:a6:b7:9c:43:73:5c:a6:e8:93:5e:9e:64:
09:8d:31:cf:30:58:09:c4:2e:c6:fe:3f:99:77:99:
6d:89:07:88:f4:67:60:40:36:2b:9d:79:24:c0:f0:
96:ee:b0:7e:b6:60:4b:2b:83:02:3c:f4:b3:fa:a3:
8f:2e:d0:ec:12:cd:56:aa:cb:4c:fb:e9:43:b8:b3:
da:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:01:4B:12:7F:9B:3D:11:42:C0:3C:DD:65:EB:17:2F:50:8D:CA:51
X509v3 Authority Key Identifier:
keyid:5F:03:2D:72:23:F1:36:A7:55:29:24:D6:50:F5:7C:5F:D1:D7:CD:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XwMtciPxNqdVKSTWUPV8X9HXzc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/ab30b2-e32e-466a-b10c-b1005eb1e48c/1/XwMtciPxNqdVKSTWUPV8X9HXzc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/ab30b2-e32e-466a-b10c-b1005eb1e48c/1/XwMtciPxNqdVKSTWUPV8X9HXzc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:2b:c2:11:13:3a:50:8c:78:4d:eb:5c:c3:ef:50:21:09:b7:
6b:aa:a6:8c:a3:a3:11:88:cb:7c:c1:8b:1c:29:f5:40:70:13:
3a:d4:fd:ef:ce:a8:b0:66:db:0b:4b:c0:de:0d:e3:f1:2e:49:
c4:31:21:c0:61:1c:60:e6:0c:d4:53:7d:84:d7:8e:a0:77:3a:
44:e0:9a:49:92:58:72:d6:33:63:eb:3b:25:8a:78:a0:77:76:
ee:ed:c5:f5:99:5c:00:2f:3a:c3:51:ff:71:21:4d:40:bd:ea:
34:47:68:fd:e4:27:6d:07:43:0f:af:6b:16:2e:19:87:8a:4e:
1f:c6:5a:6a:11:b0:7b:a9:f1:ba:2c:dc:ce:6c:7e:c5:a2:5c:
3b:9b:7f:83:ff:cc:6c:ce:b0:35:a9:7b:6e:d7:76:61:da:5a:
34:45:16:81:84:ad:26:f0:09:b6:6f:71:69:d3:1f:f1:ea:7c:
cf:ce:8b:e5:8b:62:a3:93:61:ad:e8:87:1c:85:17:6c:9e:e6:
6d:ca:a4:21:b4:7a:8b:2f:7f:95:d7:23:1e:66:a8:81:72:9a:
e3:0c:b9:c2:26:51:17:f1:dc:17:da:c9:e8:e6:47:8b:00:76:
67:99:e0:08:a2:71:85:87:d4:8c:9c:87:7c:8c:43:a4:0a:cd:
5f:f5:b3:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+amfY5blUn5SV3RhmPRTBwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmMDMyZDcyMjNmMTM2YTc1NTI5MjRkNjUwZjU3YzVmZDFk
N2NkY2QwHhcNMjQwNTIxMTAwMjEyWhcNMjQwNTIyMTAwMjEyWjAzMTEwLwYDVQQD
EyhlNTAxNGIxMjdmOWIzZDExNDJjMDNjZGQ2NWViMTcyZjUwOGRjYTUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZTMOsw1O4+Dj9beKgMNCu0Efp8W
CVx24jNopgWks62Zc3jMwepL9K57lbxpE6CxUB0W5dHDWdp68EkewUVfNr7qqFFT
fHHVh+f7c+PnbdCbABH+imrYwQjVNicEjNBmLLLwi39BYJ3BUuJflbD8GfIPc0RZ
NGJl2Pi5PDiu8pKOp7dGuVFWPYUX3QLS1tYRs23LPl6EsmEdBZGy6ci1gkJzEm34
ZZThd1gkRp7N5fta8J8eHqqmt5xDc1ym6JNenmQJjTHPMFgJxC7G/j+Zd5ltiQeI
9GdgQDYrnXkkwPCW7rB+tmBLK4MCPPSz+qOPLtDsEs1WqstM++lDuLPayQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOUBSxJ/mz0RQsA83WXrFy9QjcpRMB8GA1UdIwQY
MBaAFF8DLXIj8TanVSkk1lD1fF/R183NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHdNdGNpUHhOcWRWS1NUV1VQVjhYOUhYemMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy9hYjMwYjItZTMyZS00NjZhLWIxMGMt
YjEwMDVlYjFlNDhjLzEvWHdNdGNpUHhOcWRWS1NUV1VQVjhYOUhYemMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYy9hYjMwYjItZTMyZS00NjZhLWIxMGMtYjEwMDVlYjFlNDhj
LzEvWHdNdGNpUHhOcWRWS1NUV1VQVjhYOUhYemMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIivCERM6
UIx4Tetcw+9QIQm3a6qmjKOjEYjLfMGLHCn1QHATOtT9786osGbbC0vA3g3j8S5J
xDEhwGEcYOYM1FN9hNeOoHc6ROCaSZJYctYzY+s7JYp4oHd27u3F9ZlcAC86w1H/
cSFNQL3qNEdo/eQnbQdDD69rFi4Zh4pOH8ZaahGwe6nxuizczmx+xaJcO5t/g//M
bM6wNal7btd2YdpaNEUWgYStJvAJtm9xadMf8ep8z86L5Ytio5NhreiHHIUXbJ7m
bcqkIbR6iy9/ldcjHmaogXKa4wy5wiZRF/HcF9rJ6OZHiwB2Z5ngCKJxhYfUjJyH
fIxDpArNX/WzZg==
-----END CERTIFICATE-----
Generated at Tue May 21 15:01:34 2024 by rpki-client on console-fra.rpki-client.org