Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
File: xcSzrlnZgfJQzIfatZeFSr7XowA.mft (raw, json)
Hash identifier: +hnm/qD5ewYFHXIe2DbOUftaQwqktKxO8wkiNV8LZP8=
Subject key identifier: 76:20:90:E3:B8:3B:10:2E:E3:E4:2C:3C:4D:A8:C9:B4:04:3E:1F:A1
Authority key identifier: C5:C4:B3:AE:59:D9:81:F2:50:CC:87:DA:B5:97:85:4A:BE:D7:A3:00
Certificate issuer: /CN=c5c4b3ae59d981f250cc87dab597854abed7a300
Certificate serial: 018F877F4D6D3FDF26CBA86DCF5D61EE22D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
Manifest number: 90
Signing time: Fri 17 May 2024 17:00:18 +0000
Manifest this update: Fri 17 May 2024 17:00:18 +0000
Manifest next update: Sat 18 May 2024 17:00:18 +0000
Files and hashes: 1: DNP2uHuHHfMJt90CBkTh-4hxweQ.roa (hash: AaLJPM+m6vErDoMrcQmfI+j2FDXQXDZplsaB4t23+YE=)
2: xcSzrlnZgfJQzIfatZeFSr7XowA.crl (hash: E7j7ItiEPGiGq+VK7iJF3XHdJUmqBd+XGMF8mtOs6/A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:7f:4d:6d:3f:df:26:cb:a8:6d:cf:5d:61:ee:22:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5c4b3ae59d981f250cc87dab597854abed7a300
Validity
Not Before: May 17 17:00:18 2024 GMT
Not After : May 18 17:00:18 2024 GMT
Subject: CN=762090e3b83b102ee3e42c3c4da8c9b4043e1fa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:8e:bb:e5:99:14:a1:54:04:f3:73:28:5e:e6:
20:0c:ac:14:3a:f5:3e:c3:56:e1:50:25:c4:17:32:
12:c6:09:03:b5:c4:3f:d8:ad:02:4d:f9:71:b8:e3:
67:cc:ea:9e:1c:6c:6d:af:ea:04:fb:c9:bd:3b:5a:
0a:28:6e:3c:0a:59:31:6f:ec:dd:6f:07:22:0c:b8:
02:13:b1:2a:f1:64:9e:cd:95:82:08:9f:60:7d:df:
48:17:de:32:5e:07:36:2b:fa:ab:07:d3:ef:bb:a4:
63:c9:3d:6d:b3:cb:1e:9d:20:7a:8d:74:54:1f:06:
49:1e:48:8e:df:15:c0:f4:90:d9:e5:2b:9a:10:ea:
77:6c:01:1c:f6:d4:65:d7:b4:e3:2d:b9:cf:f8:2e:
a8:57:98:cd:1e:1d:44:df:54:c5:1a:7b:58:82:90:
e7:4a:77:1c:12:ae:e7:4d:8c:40:94:97:a9:dd:97:
7a:81:d3:31:29:fe:c9:e7:da:f8:61:91:a8:ea:38:
9d:24:59:96:19:ea:5e:5a:12:3f:07:8d:25:56:81:
09:71:e7:f6:e6:36:6a:ba:6a:7d:0f:58:df:43:3c:
45:f5:ea:40:9a:d4:39:64:f8:9a:86:e5:0f:5a:40:
05:7b:79:63:30:2a:2c:62:4c:25:00:c7:d4:ea:11:
cf:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:20:90:E3:B8:3B:10:2E:E3:E4:2C:3C:4D:A8:C9:B4:04:3E:1F:A1
X509v3 Authority Key Identifier:
keyid:C5:C4:B3:AE:59:D9:81:F2:50:CC:87:DA:B5:97:85:4A:BE:D7:A3:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:47:36:02:53:06:0c:d5:f9:2c:47:02:9c:46:d4:5d:c2:be:
ab:d2:6a:26:0f:6c:08:3f:c0:1f:d1:e2:b8:8b:1f:e5:e4:27:
ab:59:54:c7:69:e4:29:3e:8b:76:5c:36:bb:c1:07:8a:c7:75:
b2:24:19:d2:3d:05:bc:e1:fa:54:e0:db:ce:8b:56:56:ab:73:
0b:23:90:cd:51:dd:33:ef:eb:2f:bd:69:26:d8:29:bc:1c:b2:
76:e4:6f:83:25:cb:17:64:03:c0:8e:e5:05:e4:88:91:48:d3:
8d:e0:ca:17:a9:f3:2f:d6:2b:04:7a:41:45:57:25:f7:39:93:
48:3e:05:2d:93:6b:22:fb:8c:22:4a:6a:5d:8d:d0:1a:81:33:
2e:da:cf:6c:5d:45:78:d3:41:9a:d7:c6:df:e5:72:1f:df:4c:
5c:65:52:1b:79:cc:9c:cf:c5:6f:d9:05:f7:1b:c6:9c:e4:85:
31:03:a3:25:b5:92:e9:16:c4:36:e1:ee:bb:85:9f:d3:ef:42:
18:fb:d1:28:39:f3:8d:4f:56:42:1d:db:cc:89:cb:d1:57:8c:
82:81:22:e0:e9:be:e6:d7:dc:f3:b7:ab:11:56:79:fb:ab:10:
a6:ac:38:7c:ea:7d:33:f2:d3:45:6b:d2:f0:08:06:ff:03:40:
1a:70:21:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+Hf01tP98my6htz11h7iLXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1YzRiM2FlNTlkOTgxZjI1MGNjODdkYWI1OTc4NTRhYmVk
N2EzMDAwHhcNMjQwNTE3MTcwMDE4WhcNMjQwNTE4MTcwMDE4WjAzMTEwLwYDVQQD
Eyg3NjIwOTBlM2I4M2IxMDJlZTNlNDJjM2M0ZGE4YzliNDA0M2UxZmExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA64675ZkUoVQE83MoXuYgDKwUOvU+
w1bhUCXEFzISxgkDtcQ/2K0CTflxuONnzOqeHGxtr+oE+8m9O1oKKG48Clkxb+zd
bwciDLgCE7Eq8WSezZWCCJ9gfd9IF94yXgc2K/qrB9Pvu6RjyT1ts8senSB6jXRU
HwZJHkiO3xXA9JDZ5SuaEOp3bAEc9tRl17TjLbnP+C6oV5jNHh1E31TFGntYgpDn
SnccEq7nTYxAlJep3Zd6gdMxKf7J59r4YZGo6jidJFmWGepeWhI/B40lVoEJcef2
5jZqump9D1jfQzxF9epAmtQ5ZPiahuUPWkAFe3ljMCosYkwlAMfU6hHPtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHYgkOO4OxAu4+QsPE2oybQEPh+hMB8GA1UdIwQY
MBaAFMXEs65Z2YHyUMyH2rWXhUq+16MAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGNTenJsblpnZkpReklmYXRaZUZTcjdYb3dBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS85ZjU0YTYtOTMzZi00N2RlLTg3MjYt
ZWRkZjUyN2U4ZjJkLzEveGNTenJsblpnZkpReklmYXRaZUZTcjdYb3dBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS85ZjU0YTYtOTMzZi00N2RlLTg3MjYtZWRkZjUyN2U4ZjJk
LzEveGNTenJsblpnZkpReklmYXRaZUZTcjdYb3dBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHUc2AlMG
DNX5LEcCnEbUXcK+q9JqJg9sCD/AH9HiuIsf5eQnq1lUx2nkKT6Ldlw2u8EHisd1
siQZ0j0FvOH6VODbzotWVqtzCyOQzVHdM+/rL71pJtgpvByyduRvgyXLF2QDwI7l
BeSIkUjTjeDKF6nzL9YrBHpBRVcl9zmTSD4FLZNrIvuMIkpqXY3QGoEzLtrPbF1F
eNNBmtfG3+VyH99MXGVSG3nMnM/Fb9kF9xvGnOSFMQOjJbWS6RbENuHuu4Wf0+9C
GPvRKDnzjU9WQh3bzInL0VeMgoEi4Om+5tfc87erEVZ5+6sQpqw4fOp9M/LTRWvS
8AgG/wNAGnAhlw==
-----END CERTIFICATE-----
Generated at Fri May 17 23:48:31 2024 by rpki-client on console-ams.rpki-client.org