Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.mft
File: OFOvUBRJmy-1zSweaKJP-CVtDQ0.mft (raw, json)
Hash identifier: 2GjTvp8bZ5p2hcsC4yPlN0uTERdmKL5t+viEuoq7djE=
Subject key identifier: F3:A0:43:45:FF:AB:43:B3:81:BD:67:4E:9E:B0:C2:C1:E6:67:1B:16
Authority key identifier: 38:53:AF:50:14:49:9B:2F:B5:CD:2C:1E:68:A2:4F:F8:25:6D:0D:0D
Certificate issuer: /CN=3853af5014499b2fb5cd2c1e68a24ff8256d0d0d
Certificate serial: 018F87B65072D8959C247D194BABE7A3D1A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFOvUBRJmy-1zSweaKJP-CVtDQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.mft
Manifest number: 0E14
Signing time: Fri 17 May 2024 18:00:23 +0000
Manifest this update: Fri 17 May 2024 18:00:23 +0000
Manifest next update: Sat 18 May 2024 18:00:23 +0000
Files and hashes: 1: A1bootIuKzfe1YsbXrIiKpuzVkM.roa (hash: WcBOg5L1I1NJ1nWmr8Fs7OvzDELEizWMLgLBEyLgVmg=)
2: OFOvUBRJmy-1zSweaKJP-CVtDQ0.crl (hash: KhQj4vVQbOT/2/SaTm1z+vJsiIcMjPGtpcrjzm9C2Sw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OFOvUBRJmy-1zSweaKJP-CVtDQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:b6:50:72:d8:95:9c:24:7d:19:4b:ab:e7:a3:d1:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3853af5014499b2fb5cd2c1e68a24ff8256d0d0d
Validity
Not Before: May 17 18:00:23 2024 GMT
Not After : May 18 18:00:23 2024 GMT
Subject: CN=f3a04345ffab43b381bd674e9eb0c2c1e6671b16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:e6:95:29:98:a0:26:f1:f6:13:f2:2c:b9:34:
96:b1:c8:59:e0:65:bd:2f:e9:af:58:c9:b1:3f:b7:
52:b1:2a:26:46:e7:77:21:27:07:21:09:5e:fe:0f:
fa:5a:28:1c:07:d9:ef:3c:74:db:97:9c:63:37:74:
35:20:08:ff:54:b4:8f:b5:8d:83:e4:08:bf:77:2c:
05:4b:cc:91:1f:67:a7:45:e6:f0:88:ca:4f:ab:65:
91:10:82:58:71:1d:54:87:74:56:55:72:48:32:d6:
1e:10:e1:80:7f:bd:5b:4e:95:14:24:b5:fe:ad:da:
a7:5c:7d:66:20:19:4d:87:5a:f9:11:6a:0f:0a:b5:
1a:a7:ef:0a:60:6d:c8:22:e3:a9:26:b7:6c:f2:bd:
95:ea:0f:18:e2:db:d6:ab:0c:21:67:db:e3:fd:15:
e8:19:75:fc:87:e2:ab:2c:7e:e4:3d:7f:4a:8c:46:
68:56:08:16:5f:ed:ee:21:b1:48:8c:e2:39:0a:7c:
80:f5:72:4b:56:af:ad:78:b1:e4:27:94:fa:5a:57:
63:97:97:27:87:6c:e2:c6:86:e9:c1:9a:11:bd:19:
61:8e:27:78:fb:49:6f:a7:86:b1:3c:7e:12:68:7a:
b3:6d:83:ee:14:ce:69:78:59:c7:26:16:48:b1:8e:
b0:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:A0:43:45:FF:AB:43:B3:81:BD:67:4E:9E:B0:C2:C1:E6:67:1B:16
X509v3 Authority Key Identifier:
keyid:38:53:AF:50:14:49:9B:2F:B5:CD:2C:1E:68:A2:4F:F8:25:6D:0D:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFOvUBRJmy-1zSweaKJP-CVtDQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:77:fe:43:7b:96:12:01:e9:d4:ba:cb:fa:ed:36:14:32:a2:
d4:6b:4d:c7:55:57:44:4e:4c:db:ff:43:99:1f:8e:24:8f:b4:
8a:df:6f:1b:02:46:e1:e6:1a:07:50:6a:c9:85:d5:33:65:e9:
27:1f:52:48:a7:ed:f3:c3:ae:76:5c:1b:bd:96:7a:ac:dd:61:
05:96:a8:be:86:ae:9c:20:39:55:95:8c:4f:87:ec:72:aa:20:
8f:b8:fe:e7:e8:37:28:7b:fc:ff:eb:73:47:9e:91:8d:2b:81:
0f:7b:56:3b:c8:93:11:53:d5:60:65:ba:ed:99:ed:da:e5:4c:
b9:76:9a:3a:77:e1:bd:36:1b:cd:f2:09:01:7b:02:3f:e7:18:
9f:ee:3f:81:cb:cc:f7:3d:3a:13:f5:94:ef:ba:b3:7d:c2:0e:
99:da:1e:f4:1c:a0:a0:7b:3c:75:84:27:77:4b:d0:73:8f:35:
94:fe:a6:ac:df:10:62:4a:33:e0:22:61:ec:12:91:94:bd:18:
c0:62:34:ad:ca:df:ff:5a:4c:07:79:dc:96:82:9d:a5:0d:34:
88:f9:59:12:26:bd:de:b5:3e:e5:bd:7c:11:c7:19:d8:ea:b3:
2b:f5:cc:9c:50:d0:54:8d:6e:a0:b4:e6:35:d8:2b:d5:2d:8d:
0a:68:91:1e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+HtlBy2JWcJH0ZS6vno9GhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4NTNhZjUwMTQ0OTliMmZiNWNkMmMxZTY4YTI0ZmY4MjU2
ZDBkMGQwHhcNMjQwNTE3MTgwMDIzWhcNMjQwNTE4MTgwMDIzWjAzMTEwLwYDVQQD
EyhmM2EwNDM0NWZmYWI0M2IzODFiZDY3NGU5ZWIwYzJjMWU2NjcxYjE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7+aVKZigJvH2E/IsuTSWschZ4GW9
L+mvWMmxP7dSsSomRud3IScHIQle/g/6WigcB9nvPHTbl5xjN3Q1IAj/VLSPtY2D
5Ai/dywFS8yRH2enRebwiMpPq2WREIJYcR1Uh3RWVXJIMtYeEOGAf71bTpUUJLX+
rdqnXH1mIBlNh1r5EWoPCrUap+8KYG3IIuOpJrds8r2V6g8Y4tvWqwwhZ9vj/RXo
GXX8h+KrLH7kPX9KjEZoVggWX+3uIbFIjOI5CnyA9XJLVq+teLHkJ5T6Wldjl5cn
h2zixobpwZoRvRlhjid4+0lvp4axPH4SaHqzbYPuFM5peFnHJhZIsY6wiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPOgQ0X/q0Ozgb1nTp6wwsHmZxsWMB8GA1UdIwQY
MBaAFDhTr1AUSZsvtc0sHmiiT/glbQ0NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0ZPdlVCUkpteS0xelN3ZWFLSlAtQ1Z0RFEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8zMGNjNDEtOGFhYi00NDYzLTk5Zjgt
ZGNiNTZhY2I3NzdmLzEvT0ZPdlVCUkpteS0xelN3ZWFLSlAtQ1Z0RFEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC8zMGNjNDEtOGFhYi00NDYzLTk5ZjgtZGNiNTZhY2I3Nzdm
LzEvT0ZPdlVCUkpteS0xelN3ZWFLSlAtQ1Z0RFEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN3f+Q3uW
EgHp1LrL+u02FDKi1GtNx1VXRE5M2/9DmR+OJI+0it9vGwJG4eYaB1BqyYXVM2Xp
Jx9SSKft88OudlwbvZZ6rN1hBZaovoaunCA5VZWMT4fscqogj7j+5+g3KHv8/+tz
R56RjSuBD3tWO8iTEVPVYGW67Znt2uVMuXaaOnfhvTYbzfIJAXsCP+cYn+4/gcvM
9z06E/WU77qzfcIOmdoe9BygoHs8dYQnd0vQc481lP6mrN8QYkoz4CJh7BKRlL0Y
wGI0rcrf/1pMB3ncloKdpQ00iPlZEia93rU+5b18EccZ2OqzK/XMnFDQVI1uoLTm
Ndgr1S2NCmiRHg==
-----END CERTIFICATE-----
Generated at Fri May 17 20:08:01 2024 by rpki-client on console-ams.rpki-client.org