Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft
File: 1ITgzuV1xhkFP47isQBMxEL9LO0.mft (raw, json)
Hash identifier: KmLiFfRyZ9JrRV5jCCBrh5RhNbLPPDH2tsqcFC0DCi4=
Subject key identifier: 52:A6:31:4D:73:F7:38:58:20:28:3D:61:51:07:18:BC:30:C6:E5:12
Authority key identifier: D4:84:E0:CE:E5:75:C6:19:05:3F:8E:E2:B1:00:4C:C4:42:FD:2C:ED
Certificate issuer: /CN=d484e0cee575c619053f8ee2b1004cc442fd2ced
Certificate serial: 018F4C475CC671B05F24992CBF8479C3E507
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft
Manifest number: 0F82
Signing time: Mon 06 May 2024 05:01:36 +0000
Manifest this update: Mon 06 May 2024 05:01:36 +0000
Manifest next update: Tue 07 May 2024 05:01:36 +0000
Files and hashes: 1: 1ITgzuV1xhkFP47isQBMxEL9LO0.crl (hash: LazyLV2fYAHhVLWUaH32TcX2/0mIoJ7DdOZq/XovzIw=)
2: tt_Sk2ns5oBzfFQrJjNi3iV_LH0.roa (hash: rtS2uHahZXTYpoKaPhliB4yVbpkzl6yqmwUu0UL7Q8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 05:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4c:47:5c:c6:71:b0:5f:24:99:2c:bf:84:79:c3:e5:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d484e0cee575c619053f8ee2b1004cc442fd2ced
Validity
Not Before: May 6 05:01:36 2024 GMT
Not After : May 7 05:01:36 2024 GMT
Subject: CN=52a6314d73f7385820283d61510718bc30c6e512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e4:16:3a:94:1e:96:38:63:5f:b3:c5:f1:83:
c3:c6:90:a6:71:d7:70:be:20:31:2a:4a:b5:93:13:
e0:ad:1c:95:18:62:67:67:35:24:74:d3:f2:90:84:
c2:95:77:7b:01:99:d0:6c:7c:51:a8:d7:5b:8a:91:
41:b2:48:65:a7:d2:52:c8:e5:30:35:a1:d7:ff:cc:
1a:0a:b9:c0:90:9a:95:cc:00:07:33:4d:08:62:ff:
3f:f0:14:b5:3c:a6:2b:41:3e:69:e0:16:c9:5e:12:
eb:99:7b:5f:62:82:6f:cd:33:4b:79:6b:b9:33:23:
8e:8e:a8:5a:f6:42:21:8f:81:7c:46:60:b4:5a:d5:
e3:9f:b8:f2:65:07:5e:aa:16:52:4d:0d:e3:40:00:
3f:2c:9d:66:3b:c8:7a:77:a0:e4:44:65:14:14:88:
e3:a7:84:ec:56:f1:52:16:9d:00:60:29:c2:00:45:
b3:58:7d:c0:ed:47:bb:b0:12:c6:50:61:f6:a0:09:
74:35:33:c9:0d:6b:58:3d:67:e0:50:ca:6c:ba:05:
73:8b:c2:5f:a5:70:aa:af:60:df:a0:f7:6d:5f:49:
35:85:97:5d:c4:93:73:92:25:fc:e3:63:31:3c:7d:
87:9b:04:bb:84:79:24:f5:84:c3:8b:bd:12:20:be:
d2:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A6:31:4D:73:F7:38:58:20:28:3D:61:51:07:18:BC:30:C6:E5:12
X509v3 Authority Key Identifier:
keyid:D4:84:E0:CE:E5:75:C6:19:05:3F:8E:E2:B1:00:4C:C4:42:FD:2C:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:ad:c7:38:14:18:f1:45:0e:8d:0d:8b:7e:09:15:50:a8:9c:
0b:11:b7:80:ed:c1:fe:5a:9b:32:84:d8:0c:1e:d6:94:d0:51:
0a:b0:a4:97:3d:3a:97:f9:f2:eb:0b:9e:5d:62:12:b3:ad:37:
6b:5e:24:e2:a5:a6:b3:96:6b:e3:c5:3f:c0:02:49:27:e8:2c:
c6:6a:f9:14:02:90:13:16:f0:fa:d5:9b:e4:cf:f0:e0:89:18:
6a:fb:38:ec:aa:f0:70:cb:e6:13:ff:f1:11:27:f8:6e:0e:96:
e2:d0:ed:9b:33:05:f2:f6:f5:21:33:4e:98:86:8b:ca:80:5b:
ec:5b:a5:3d:76:e6:f5:3c:09:70:93:f9:f7:8d:8e:eb:cc:62:
98:7e:79:5f:2b:c8:01:e9:1c:ef:b9:fd:67:6f:96:0d:44:91:
c2:20:07:d3:39:a7:c0:e5:fc:9b:26:95:0d:31:29:94:bb:aa:
14:6e:39:25:48:a4:9d:72:cf:75:7f:b0:c6:0f:01:fd:89:c3:
3d:8d:1a:25:7d:0c:b3:4b:67:28:ca:47:ad:03:95:b1:f7:f9:
5f:47:7a:aa:e8:d9:5f:eb:e7:8d:ca:7f:ae:72:52:44:90:d9:
0b:92:f1:b4:7c:92:ef:7d:bb:db:ca:60:0d:ca:b4:06:f5:56:
b8:bc:d2:5f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY9MR1zGcbBfJJksv4R5w+UHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0ODRlMGNlZTU3NWM2MTkwNTNmOGVlMmIxMDA0Y2M0NDJm
ZDJjZWQwHhcNMjQwNTA2MDUwMTM2WhcNMjQwNTA3MDUwMTM2WjAzMTEwLwYDVQQD
Eyg1MmE2MzE0ZDczZjczODU4MjAyODNkNjE1MTA3MThiYzMwYzZlNTEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzuQWOpQeljhjX7PF8YPDxpCmcddw
viAxKkq1kxPgrRyVGGJnZzUkdNPykITClXd7AZnQbHxRqNdbipFBskhlp9JSyOUw
NaHX/8waCrnAkJqVzAAHM00IYv8/8BS1PKYrQT5p4BbJXhLrmXtfYoJvzTNLeWu5
MyOOjqha9kIhj4F8RmC0WtXjn7jyZQdeqhZSTQ3jQAA/LJ1mO8h6d6DkRGUUFIjj
p4TsVvFSFp0AYCnCAEWzWH3A7Ue7sBLGUGH2oAl0NTPJDWtYPWfgUMpsugVzi8Jf
pXCqr2DfoPdtX0k1hZddxJNzkiX842MxPH2HmwS7hHkk9YTDi70SIL7S3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFKmMU1z9zhYICg9YVEHGLwwxuUSMB8GA1UdIwQY
MBaAFNSE4M7ldcYZBT+O4rEATMRC/SztMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUlUZ3p1VjF4aGtGUDQ3aXNRQk14RUw5TE8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC83ODQ3ZmItZjU1YS00OTk1LTg1MzEt
ZWMwMjYyYWIzM2YxLzEvMUlUZ3p1VjF4aGtGUDQ3aXNRQk14RUw5TE8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC83ODQ3ZmItZjU1YS00OTk1LTg1MzEtZWMwMjYyYWIzM2Yx
LzEvMUlUZ3p1VjF4aGtGUDQ3aXNRQk14RUw5TE8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMa3HOBQY
8UUOjQ2LfgkVUKicCxG3gO3B/lqbMoTYDB7WlNBRCrCklz06l/ny6wueXWISs603
a14k4qWms5Zr48U/wAJJJ+gsxmr5FAKQExbw+tWb5M/w4IkYavs47KrwcMvmE//x
ESf4bg6W4tDtmzMF8vb1ITNOmIaLyoBb7FulPXbm9TwJcJP5942O68ximH55XyvI
Aekc77n9Z2+WDUSRwiAH0zmnwOX8myaVDTEplLuqFG45JUiknXLPdX+wxg8B/YnD
PY0aJX0Ms0tnKMpHrQOVsff5X0d6qujZX+vnjcp/rnJSRJDZC5LxtHyS732728pg
Dcq0BvVWuLzSXw==
-----END CERTIFICATE-----
Generated at Mon May 6 12:57:44 2024 by rpki-client on console-ams.rpki-client.org