Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
File: 3VP2PxOgyVKgefRXihDtv246pYs.mft (raw, json)
Hash identifier: dp5YgH1aO1paiubRciYdDoMvPocBKKf8xPe1JlfGhEs=
Subject key identifier: 7C:29:84:41:9E:20:BA:1A:7C:44:C5:01:95:90:0B:50:04:84:94:B6
Authority key identifier: DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B
Certificate issuer: /CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b
Certificate serial: 018F1F019D229D1DAC30D5DAB2C346C54414
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
Manifest number: 10B0
Signing time: Sat 27 Apr 2024 10:02:30 +0000
Manifest this update: Sat 27 Apr 2024 10:02:30 +0000
Manifest next update: Sun 28 Apr 2024 10:02:30 +0000
Files and hashes: 1: 3VP2PxOgyVKgefRXihDtv246pYs.crl (hash: ccGhg9qwAxlRqnMaL/R0OxqnVtxXdRWl+xvJD39BDvM=)
2: G9LJ7WhYbQAlopv8jhLixfeeuhU.roa (hash: y+3K4RyBwihO+VMvvlObsupTLxY90ATWgGTtDunKMEE=)
3: vJS0TcIODQA292S4BMtQZU7h1VI.roa (hash: S9UPi3LsKhha9a47jadHGsviICi98d4jkumWOeYI/pk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Apr 2024 10:02:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:1f:01:9d:22:9d:1d:ac:30:d5:da:b2:c3:46:c5:44:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b
Validity
Not Before: Apr 27 10:02:30 2024 GMT
Not After : Apr 28 10:02:30 2024 GMT
Subject: CN=7c2984419e20ba1a7c44c50195900b50048494b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:63:1e:47:b4:2d:9d:19:e0:60:c4:50:03:36:
b3:e5:b1:a8:8a:a4:40:c5:35:49:39:5c:ec:9e:44:
fa:12:45:b4:8f:55:30:cb:1f:f5:2e:46:c4:46:bf:
fb:80:b6:54:6a:da:77:fa:bf:d9:42:5c:b1:f7:e9:
42:d2:61:36:bf:ca:15:c2:23:4d:26:fd:51:e3:2c:
22:5f:c4:b6:5b:ca:eb:40:44:b1:61:4d:47:07:30:
f3:bc:5f:08:25:fa:22:4c:fa:d8:43:4e:64:5e:5b:
63:25:09:4b:a3:f0:e0:87:62:3e:a2:16:7f:35:dd:
64:09:60:fa:ba:a3:fe:79:9b:1b:04:72:e1:c4:4e:
9f:40:31:91:b7:a5:ce:61:f5:e6:c5:80:85:63:8d:
a4:ca:f3:31:94:9f:43:90:20:8f:92:1f:75:2c:60:
f0:1c:aa:da:e6:66:e5:fb:de:a0:ba:d7:97:11:d0:
5b:ae:86:3b:49:dc:1e:ed:76:4d:d3:c1:71:1e:3d:
af:c7:08:a3:a4:55:f8:69:d0:b2:f3:a2:20:63:25:
f7:f3:af:69:62:6d:fc:f6:3e:7f:79:13:13:98:59:
6c:c5:b1:6d:53:86:7f:12:7b:86:69:c4:a0:b7:94:
11:f8:3f:e2:c5:98:1c:41:1d:4c:38:d3:bd:82:ff:
8c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:29:84:41:9E:20:BA:1A:7C:44:C5:01:95:90:0B:50:04:84:94:B6
X509v3 Authority Key Identifier:
keyid:DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:a1:c5:0d:13:7f:8d:9b:be:d1:76:04:83:d0:92:64:a2:a0:
e1:25:4b:38:bc:50:f7:53:7c:3f:ee:0a:3c:3b:ab:de:90:d7:
63:08:4e:44:ba:6c:49:1c:28:5d:1f:d2:a6:2c:23:63:f5:75:
80:ed:63:37:15:39:1d:aa:a8:e1:68:c7:0d:e3:57:53:bd:4d:
cf:0d:58:19:51:30:88:89:57:a3:78:82:43:1c:62:ba:ad:5f:
eb:7b:09:f4:a0:b1:5c:fa:fd:51:d4:e3:77:c9:70:84:47:02:
1f:05:e6:b2:61:b5:ca:9f:ad:ea:b4:e3:ba:49:3e:f7:4d:74:
35:cf:51:36:cd:90:6e:bd:bb:5a:92:fa:45:52:c9:8a:89:30:
9d:9e:0a:60:22:3d:97:9f:71:1e:da:7a:90:4c:c6:26:3d:17:
86:03:c6:75:1e:e6:dc:b4:19:bc:1b:f4:33:5b:40:f2:4d:85:
30:11:43:3d:10:c8:d3:1d:60:21:ca:68:46:5b:56:7a:b3:15:
f7:7e:9f:3d:5e:29:6f:12:6e:39:7c:50:c3:7f:97:c4:fc:07:
9f:cd:e7:1c:90:80:c9:3e:08:2c:ff:d1:61:ee:82:28:3e:2e:
bd:39:d4:71:cc:24:60:26:bf:07:33:92:1c:f6:bc:44:15:0d:
b4:62:43:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY8fAZ0inR2sMNXassNGxUQUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkNTNmNjNmMTNhMGM5NTJhMDc5ZjQ1NzhhMTBlZGJmNmUz
YWE1OGIwHhcNMjQwNDI3MTAwMjMwWhcNMjQwNDI4MTAwMjMwWjAzMTEwLwYDVQQD
Eyg3YzI5ODQ0MTllMjBiYTFhN2M0NGM1MDE5NTkwMGI1MDA0ODQ5NGI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWMeR7QtnRngYMRQAzaz5bGoiqRA
xTVJOVzsnkT6EkW0j1Uwyx/1LkbERr/7gLZUatp3+r/ZQlyx9+lC0mE2v8oVwiNN
Jv1R4ywiX8S2W8rrQESxYU1HBzDzvF8IJfoiTPrYQ05kXltjJQlLo/Dgh2I+ohZ/
Nd1kCWD6uqP+eZsbBHLhxE6fQDGRt6XOYfXmxYCFY42kyvMxlJ9DkCCPkh91LGDw
HKra5mbl+96guteXEdBbroY7Sdwe7XZN08FxHj2vxwijpFX4adCy86IgYyX3869p
Ym389j5/eRMTmFlsxbFtU4Z/EnuGacSgt5QR+D/ixZgcQR1MONO9gv+MPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHwphEGeILoafETFAZWQC1AEhJS2MB8GA1UdIwQY
MBaAFN1T9j8ToMlSoHn0V4oQ7b9uOqWLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1ZQMlB4T2d5VktnZWZSWGloRHR2MjQ2cFlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8xYzQ0NGQtMDU4ZC00NzVjLWFiZmYt
NWNkZmExMTdhZWM2LzEvM1ZQMlB4T2d5VktnZWZSWGloRHR2MjQ2cFlzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy8xYzQ0NGQtMDU4ZC00NzVjLWFiZmYtNWNkZmExMTdhZWM2
LzEvM1ZQMlB4T2d5VktnZWZSWGloRHR2MjQ2cFlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOKHFDRN/
jZu+0XYEg9CSZKKg4SVLOLxQ91N8P+4KPDur3pDXYwhORLpsSRwoXR/SpiwjY/V1
gO1jNxU5Haqo4WjHDeNXU71Nzw1YGVEwiIlXo3iCQxxiuq1f63sJ9KCxXPr9UdTj
d8lwhEcCHwXmsmG1yp+t6rTjukk+9010Nc9RNs2Qbr27WpL6RVLJiokwnZ4KYCI9
l59xHtp6kEzGJj0XhgPGdR7m3LQZvBv0M1tA8k2FMBFDPRDI0x1gIcpoRltWerMV
936fPV4pbxJuOXxQw3+XxPwHn83nHJCAyT4ILP/RYe6CKD4uvTnUccwkYCa/BzOS
HPa8RBUNtGJDHA==
-----END CERTIFICATE-----
Generated at Sat Apr 27 18:08:40 2024 by rpki-client on console-ams.rpki-client.org