Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/10907b-785d-4028-b9a4-a5179699f5c2/1/2uFXoJjtKp6tDQYIPSHA9xIDCQk.mft
File: 2uFXoJjtKp6tDQYIPSHA9xIDCQk.mft (raw, json)
Hash identifier: mNxM3qpLfJOHvwGPMoZMPgFl+YaR2n+/UbEBcPfHjm8=
Subject key identifier: BF:BF:A2:43:0A:8C:72:A8:09:86:3C:8C:DB:62:6A:C8:78:E8:82:2E
Authority key identifier: DA:E1:57:A0:98:ED:2A:9E:AD:0D:06:08:3D:21:C0:F7:12:03:09:09
Certificate issuer: /CN=dae157a098ed2a9ead0d06083d21c0f712030909
Certificate serial: 018F51365944ED4EC687CF0FED331C8960A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2uFXoJjtKp6tDQYIPSHA9xIDCQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/10907b-785d-4028-b9a4-a5179699f5c2/1/2uFXoJjtKp6tDQYIPSHA9xIDCQk.mft
Manifest number: 0B68
Signing time: Tue 07 May 2024 04:01:07 +0000
Manifest this update: Tue 07 May 2024 04:01:07 +0000
Manifest next update: Wed 08 May 2024 04:01:07 +0000
Files and hashes: 1: 2uFXoJjtKp6tDQYIPSHA9xIDCQk.crl (hash: Jl6AV/2/W8zcAyVFn0d3Rby46F3o8SAExX4dTiIP9Fw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/10907b-785d-4028-b9a4-a5179699f5c2/1/2uFXoJjtKp6tDQYIPSHA9xIDCQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/10907b-785d-4028-b9a4-a5179699f5c2/1/2uFXoJjtKp6tDQYIPSHA9xIDCQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2uFXoJjtKp6tDQYIPSHA9xIDCQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 04:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:51:36:59:44:ed:4e:c6:87:cf:0f:ed:33:1c:89:60:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dae157a098ed2a9ead0d06083d21c0f712030909
Validity
Not Before: May 7 04:01:07 2024 GMT
Not After : May 8 04:01:07 2024 GMT
Subject: CN=bfbfa2430a8c72a809863c8cdb626ac878e8822e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:37:c9:7e:1b:1b:da:b1:95:ba:80:47:4c:98:
66:17:0d:b6:34:95:fe:8d:a3:37:99:ca:fd:89:8e:
a1:3d:9d:6e:97:c8:1e:40:ac:8f:de:b4:29:ef:50:
46:1d:c7:ba:28:35:85:15:14:22:37:6f:dc:a6:3d:
cf:cc:0f:2d:01:92:89:4d:0f:60:a5:15:47:60:35:
fd:c5:27:f2:2e:5f:71:55:4f:96:0b:8f:f9:f2:85:
b8:11:b9:11:1e:71:a0:50:2e:10:3a:2d:32:bf:f5:
39:26:e9:77:24:e3:65:fe:4b:ae:95:9f:3b:46:8b:
f1:ed:57:cc:b0:cd:41:21:8f:4c:da:6c:5c:c2:3b:
fa:77:b6:5c:36:88:3d:69:29:b6:df:84:6b:64:04:
83:0e:04:4f:3b:e6:48:21:a9:fd:fb:1a:49:b6:14:
83:f3:5b:b7:47:0b:cc:5a:52:2a:7e:d0:fc:db:52:
ef:0d:cf:6d:7f:00:99:03:48:fc:0d:ac:02:50:a2:
38:44:19:90:a6:b0:8f:2b:14:ba:93:77:12:46:25:
c6:37:22:37:ce:70:a9:16:57:9d:5f:df:4b:a6:12:
af:3d:d5:bd:cd:5b:75:cd:ef:76:d6:8d:9f:48:4b:
64:f9:3f:d1:4f:81:e4:6d:48:f7:13:6a:7f:4c:04:
2d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:BF:A2:43:0A:8C:72:A8:09:86:3C:8C:DB:62:6A:C8:78:E8:82:2E
X509v3 Authority Key Identifier:
keyid:DA:E1:57:A0:98:ED:2A:9E:AD:0D:06:08:3D:21:C0:F7:12:03:09:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2uFXoJjtKp6tDQYIPSHA9xIDCQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/10907b-785d-4028-b9a4-a5179699f5c2/1/2uFXoJjtKp6tDQYIPSHA9xIDCQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/10907b-785d-4028-b9a4-a5179699f5c2/1/2uFXoJjtKp6tDQYIPSHA9xIDCQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:13:79:4f:d4:b1:ca:b8:1b:dc:4a:40:1a:69:00:93:51:9c:
18:a3:9c:7c:4f:d9:14:da:3d:5f:2d:4a:c9:9b:4c:88:86:c5:
33:65:4c:6a:d1:75:ea:ef:88:32:ec:f9:4c:00:fb:6f:a9:64:
d9:22:bb:98:11:65:98:83:be:29:28:1c:02:e1:9d:0f:ca:f5:
6c:65:ce:95:bc:de:e1:7f:7f:66:d7:58:d5:38:1e:23:b8:0a:
47:d2:97:41:a8:21:ac:64:5b:28:a4:db:01:2c:a7:25:73:46:
8d:3b:b4:95:5d:24:b3:b4:ba:71:d9:4b:24:d1:ac:48:72:e1:
1e:79:81:d0:2e:4e:01:a7:70:8e:af:ca:8f:82:bd:df:cd:58:
2a:e4:34:0e:9a:e7:19:3c:a0:d0:11:b0:c4:74:24:1c:f2:b1:
ad:05:99:39:30:88:33:73:98:a8:74:de:38:f2:71:c9:71:56:
27:fb:66:37:74:27:08:56:87:e8:c5:57:d7:42:32:cc:33:af:
5e:8f:29:6c:92:69:fb:97:f7:a2:8d:72:ca:d6:d5:d3:85:83:
c9:e1:50:91:2e:f3:ce:e5:2a:5e:4e:e4:de:9c:82:f8:13:af:
54:85:a3:22:7b:fe:af:a4:79:bc:48:d6:9e:f9:cd:08:57:95:
9a:7f:0f:fb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY9RNllE7U7Gh88P7TMciWChMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhZTE1N2EwOThlZDJhOWVhZDBkMDYwODNkMjFjMGY3MTIw
MzA5MDkwHhcNMjQwNTA3MDQwMTA3WhcNMjQwNTA4MDQwMTA3WjAzMTEwLwYDVQQD
EyhiZmJmYTI0MzBhOGM3MmE4MDk4NjNjOGNkYjYyNmFjODc4ZTg4MjJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTfJfhsb2rGVuoBHTJhmFw22NJX+
jaM3mcr9iY6hPZ1ul8geQKyP3rQp71BGHce6KDWFFRQiN2/cpj3PzA8tAZKJTQ9g
pRVHYDX9xSfyLl9xVU+WC4/58oW4EbkRHnGgUC4QOi0yv/U5Jul3JONl/kuulZ87
Rovx7VfMsM1BIY9M2mxcwjv6d7ZcNog9aSm234RrZASDDgRPO+ZIIan9+xpJthSD
81u3RwvMWlIqftD821LvDc9tfwCZA0j8DawCUKI4RBmQprCPKxS6k3cSRiXGNyI3
znCpFledX99LphKvPdW9zVt1ze921o2fSEtk+T/RT4HkbUj3E2p/TAQtawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL+/okMKjHKoCYY8jNtiash46IIuMB8GA1UdIwQY
MBaAFNrhV6CY7SqerQ0GCD0hwPcSAwkJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnVGWG9KanRLcDZ0RFFZSVBTSEE5eElEQ1FrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy8xMDkwN2ItNzg1ZC00MDI4LWI5YTQt
YTUxNzk2OTlmNWMyLzEvMnVGWG9KanRLcDZ0RFFZSVBTSEE5eElEQ1FrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy8xMDkwN2ItNzg1ZC00MDI4LWI5YTQtYTUxNzk2OTlmNWMy
LzEvMnVGWG9KanRLcDZ0RFFZSVBTSEE5eElEQ1FrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbBN5T9Sx
yrgb3EpAGmkAk1GcGKOcfE/ZFNo9Xy1KyZtMiIbFM2VMatF16u+IMuz5TAD7b6lk
2SK7mBFlmIO+KSgcAuGdD8r1bGXOlbze4X9/ZtdY1TgeI7gKR9KXQaghrGRbKKTb
ASynJXNGjTu0lV0ks7S6cdlLJNGsSHLhHnmB0C5OAadwjq/Kj4K9381YKuQ0Dprn
GTyg0BGwxHQkHPKxrQWZOTCIM3OYqHTeOPJxyXFWJ/tmN3QnCFaH6MVX10IyzDOv
Xo8pbJJp+5f3oo1yytbV04WDyeFQkS7zzuUqXk7k3pyC+BOvVIWjInv+r6R5vEjW
nvnNCFeVmn8P+w==
-----END CERTIFICATE-----
Generated at Tue May 7 12:04:39 2024 by rpki-client on console-ams.rpki-client.org