Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
File: iBmVbdzq4CLP4SPaNzxrERZANo0.mft (raw, json)
Hash identifier: hR24ga9+AWnxUoHQyqqQ9pY/IWg1NzD0+hNabW9lMc4=
Subject key identifier: C1:57:28:E1:62:C6:B0:6A:37:AD:37:55:51:2C:B3:88:31:B6:3D:06
Authority key identifier: 88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
Certificate issuer: /CN=8819956ddceae022cfe123da373c6b111640368d
Certificate serial: 018F8937A228BD096D2654091A90681E335F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
Manifest number: 0D85
Signing time: Sat 18 May 2024 01:01:15 +0000
Manifest this update: Sat 18 May 2024 01:01:15 +0000
Manifest next update: Sun 19 May 2024 01:01:15 +0000
Files and hashes: 1: 2gf75ybNcWte-YXJViT6ywLPiEQ.roa (hash: sU6E1UCITbRMWtM1MTurOfkYKw7Drz7Sbjs3vORYXUo=)
2: iBmVbdzq4CLP4SPaNzxrERZANo0.crl (hash: pGxvr2Ay0gBJ3AuwwdGOJgP3rotiT/VfhI1I+BeaQSU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:89:37:a2:28:bd:09:6d:26:54:09:1a:90:68:1e:33:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8819956ddceae022cfe123da373c6b111640368d
Validity
Not Before: May 18 01:01:15 2024 GMT
Not After : May 19 01:01:15 2024 GMT
Subject: CN=c15728e162c6b06a37ad3755512cb38831b63d06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:86:16:dd:9e:15:f3:d5:48:42:05:c8:ff:00:
12:10:36:78:65:f2:4e:09:50:45:11:18:77:1f:f5:
7f:79:f1:2b:5f:48:41:28:9c:2a:2d:2c:75:c5:66:
35:10:44:77:bc:65:99:d4:11:1b:8a:69:60:c3:42:
2e:f5:3c:84:b9:5c:0c:1e:1d:38:59:e3:7d:09:34:
5c:e7:c5:6f:a7:55:8b:37:eb:ee:bb:6a:88:37:99:
5a:49:a3:74:44:47:71:b7:1a:a1:95:4a:77:7a:67:
06:a2:d2:42:63:d9:cf:e5:af:fe:35:6f:3d:de:a7:
97:bb:aa:ba:cf:12:ff:13:cc:c7:c2:65:d9:42:20:
28:36:e2:06:12:8f:2d:17:c3:54:5f:08:5c:da:43:
f1:b6:01:63:dc:00:94:f5:67:84:78:60:28:e7:89:
c6:8b:28:df:19:bc:55:95:b1:ed:8b:00:ac:ed:9e:
88:3a:87:31:b1:8a:39:53:16:63:83:e8:bc:5f:37:
09:a8:8d:c2:7d:94:60:2d:bc:cd:b5:6f:4d:ae:9d:
cf:3c:ac:a3:61:1b:81:ac:d6:f5:87:61:2c:e6:00:
0a:63:0a:eb:31:de:71:f9:0b:8a:5a:20:b5:b7:41:
12:e3:5f:78:95:c1:b2:e5:8b:50:91:44:70:7f:d7:
80:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:57:28:E1:62:C6:B0:6A:37:AD:37:55:51:2C:B3:88:31:B6:3D:06
X509v3 Authority Key Identifier:
keyid:88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:dc:30:70:b9:25:c5:1e:d1:58:e0:65:f6:c7:02:6a:59:49:
1f:e7:6f:ea:61:f0:4b:19:77:0f:fd:ab:7c:68:f9:2d:8b:98:
af:62:4f:f1:2a:8d:87:b6:38:15:e7:73:17:50:a3:0b:75:20:
a1:95:25:46:fc:ab:50:c5:79:89:63:68:51:90:5a:23:18:1c:
09:b3:46:21:7b:28:b6:a5:2b:8a:28:2a:bd:8e:55:01:2a:52:
a9:1e:fb:8e:a1:b8:27:f3:b1:bf:29:01:f4:b1:3e:54:3b:6f:
f1:e3:fc:72:ce:0b:a5:2e:ef:75:30:4c:80:a6:90:79:b0:ae:
8b:c9:c6:74:89:22:17:f1:12:c1:61:c3:fb:4e:eb:09:36:09:
29:62:d1:74:53:9d:9c:20:4d:10:95:b0:17:2a:98:e2:d0:ba:
20:99:bb:cd:00:c9:ac:4e:8a:c7:b2:ea:08:34:31:a1:5b:1b:
52:56:94:e5:06:38:d4:2f:5e:bd:d6:53:e3:34:a0:25:53:6a:
41:6e:bf:13:f8:10:b1:66:42:e0:aa:94:15:44:b9:48:8f:ef:
52:9b:04:dc:31:66:bf:f4:02:18:af:9b:b4:fb:d5:8a:40:8f:
01:2c:36:95:4f:d8:43:4f:22:24:bb:46:e9:26:1b:d7:fb:de:
1a:31:58:f8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+JN6IovQltJlQJGpBoHjNfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4MTk5NTZkZGNlYWUwMjJjZmUxMjNkYTM3M2M2YjExMTY0
MDM2OGQwHhcNMjQwNTE4MDEwMTE1WhcNMjQwNTE5MDEwMTE1WjAzMTEwLwYDVQQD
EyhjMTU3MjhlMTYyYzZiMDZhMzdhZDM3NTU1MTJjYjM4ODMxYjYzZDA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp4YW3Z4V89VIQgXI/wASEDZ4ZfJO
CVBFERh3H/V/efErX0hBKJwqLSx1xWY1EER3vGWZ1BEbimlgw0Iu9TyEuVwMHh04
WeN9CTRc58Vvp1WLN+vuu2qIN5laSaN0REdxtxqhlUp3emcGotJCY9nP5a/+NW89
3qeXu6q6zxL/E8zHwmXZQiAoNuIGEo8tF8NUXwhc2kPxtgFj3ACU9WeEeGAo54nG
iyjfGbxVlbHtiwCs7Z6IOocxsYo5UxZjg+i8XzcJqI3CfZRgLbzNtW9Nrp3PPKyj
YRuBrNb1h2Es5gAKYwrrMd5x+QuKWiC1t0ES4194lcGy5YtQkURwf9eAxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMFXKOFixrBqN603VVEss4gxtj0GMB8GA1UdIwQY
MBaAFIgZlW3c6uAiz+Ej2jc8axEWQDaNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUJtVmJkenE0Q0xQNFNQYU56eHJFUlpBTm8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy85ODg3NjgtZjE3Yi00ZjU5LWJlMDkt
MmRlYjE0YzI5MGVkLzEvaUJtVmJkenE0Q0xQNFNQYU56eHJFUlpBTm8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy85ODg3NjgtZjE3Yi00ZjU5LWJlMDktMmRlYjE0YzI5MGVk
LzEvaUJtVmJkenE0Q0xQNFNQYU56eHJFUlpBTm8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAu9wwcLkl
xR7RWOBl9scCallJH+dv6mHwSxl3D/2rfGj5LYuYr2JP8SqNh7Y4FedzF1CjC3Ug
oZUlRvyrUMV5iWNoUZBaIxgcCbNGIXsotqUriigqvY5VASpSqR77jqG4J/OxvykB
9LE+VDtv8eP8cs4LpS7vdTBMgKaQebCui8nGdIkiF/ESwWHD+07rCTYJKWLRdFOd
nCBNEJWwFyqY4tC6IJm7zQDJrE6Kx7LqCDQxoVsbUlaU5QY41C9evdZT4zSgJVNq
QW6/E/gQsWZC4KqUFUS5SI/vUpsE3DFmv/QCGK+btPvVikCPASw2lU/YQ08iJLtG
6SYb1/veGjFY+A==
-----END CERTIFICATE-----
Generated at Sat May 18 01:56:45 2024 by rpki-client on console-fra.rpki-client.org