Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
File: z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft (raw, json)
Hash identifier: SupBm6opih7R+LIPjUoh9TyhQ4K0DkscZt8IBxYYYtw=
Subject key identifier: BA:7A:F8:E3:60:90:7D:B2:5D:C1:09:31:DA:F1:77:06:14:AC:6B:49
Authority key identifier: CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
Certificate issuer: /CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Certificate serial: 018F885AEED67E08470CD53DEEB09427ECC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
Manifest number: 1178
Signing time: Fri 17 May 2024 21:00:11 +0000
Manifest this update: Fri 17 May 2024 21:00:11 +0000
Manifest next update: Sat 18 May 2024 21:00:11 +0000
Files and hashes: 1: sV0m4N8Br3pPDquUJBmjAQgHL0g.roa (hash: VJweGL4d8CAXgupjfX4RTXTmthfciAdDc4KlfQ/1C84=)
2: z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl (hash: 2xwC+gp8fAkA7icRGTXdl43LJ0WGz+ef2evp8tWXUs4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:5a:ee:d6:7e:08:47:0c:d5:3d:ee:b0:94:27:ec:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Validity
Not Before: May 17 21:00:11 2024 GMT
Not After : May 18 21:00:11 2024 GMT
Subject: CN=ba7af8e360907db25dc10931daf1770614ac6b49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:2e:29:a7:57:e0:2c:a5:24:39:63:d1:49:c0:
b0:16:7a:53:b0:e2:4e:2c:22:25:85:5a:74:89:73:
43:0c:82:e2:06:c2:af:3c:cb:c7:ba:24:b3:b1:50:
59:4b:f3:d1:6b:c1:83:45:bc:13:7b:91:cd:ad:f0:
c3:07:93:cb:a0:96:fa:14:e7:15:8e:fd:ec:e9:06:
12:0e:46:aa:16:c9:1b:f7:be:84:d3:9c:c4:8c:e9:
64:1d:e5:dc:ea:ef:48:f4:65:87:17:f4:4e:34:fe:
46:0e:01:3a:6e:4b:b4:31:36:6d:6b:50:53:96:7a:
8d:99:7a:db:f1:9f:56:cf:92:81:fc:57:e6:3a:87:
8d:f5:6f:11:f0:a1:e4:1e:9c:3f:83:b2:30:39:df:
40:1a:1d:49:ac:5c:c8:b4:96:b2:1b:cd:86:5d:b8:
a7:76:ad:b4:08:03:e5:1c:95:75:21:48:9c:05:e7:
d3:f1:79:b4:88:99:62:f9:3f:61:7f:ec:7e:b0:9a:
42:0c:3d:60:5e:ff:d5:d3:4b:dc:c3:86:1c:ea:22:
07:3f:ff:8c:c7:03:2d:0f:0b:49:59:7f:29:58:9f:
e9:93:97:ee:3e:a4:50:ac:c5:0e:75:4c:78:ec:16:
9a:7f:36:b7:3b:3c:0e:29:07:2f:86:fb:ad:34:3f:
a4:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:7A:F8:E3:60:90:7D:B2:5D:C1:09:31:DA:F1:77:06:14:AC:6B:49
X509v3 Authority Key Identifier:
keyid:CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:a6:c6:39:e6:b9:00:91:83:ca:b1:b9:0f:f8:11:38:98:0e:
40:42:b3:e1:b7:a4:63:85:42:71:30:eb:20:36:14:06:54:b2:
4c:e3:09:ef:eb:40:e2:2e:c5:1b:fa:e1:29:87:c3:7b:07:28:
12:59:04:22:56:46:d5:e8:5d:87:e0:10:7e:37:0d:16:7b:e5:
ca:d5:46:a9:a4:b0:5c:4e:76:80:0d:df:e1:25:2e:95:4f:c0:
e2:b3:4d:af:23:a6:1a:2e:5a:9c:52:f7:72:26:ca:c3:66:44:
43:cb:4f:bb:54:95:48:04:83:3b:5d:6c:a5:73:1d:a8:90:09:
d3:5f:08:0c:a9:47:a3:8e:4f:68:5c:fa:55:bf:a3:70:e9:94:
ed:f3:97:dc:21:22:83:22:6d:cb:2d:4b:71:60:e4:ba:2d:bc:
0e:81:d4:4d:34:6a:72:d2:73:1b:f0:2f:90:9f:85:36:da:3c:
42:f1:cc:3f:51:9e:77:ed:84:04:78:3c:88:06:c6:c4:36:a7:
46:5b:7e:fa:8a:e3:bc:b4:ee:66:b7:d4:ff:16:b9:e6:18:7a:
48:f8:19:00:29:a4:52:c4:06:6c:aa:f8:c3:7d:df:48:c2:da:
a1:e7:56:8b:80:50:a6:28:ff:16:5e:2c:ec:0d:c5:35:81:b6:
69:46:ae:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+IWu7WfghHDNU97rCUJ+zCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmNjYyMjRiY2ZiOGI4MmRlYWFiYWM4YzRjYTI1MDM3MWI5
NzQ2MTEwHhcNMjQwNTE3MjEwMDExWhcNMjQwNTE4MjEwMDExWjAzMTEwLwYDVQQD
EyhiYTdhZjhlMzYwOTA3ZGIyNWRjMTA5MzFkYWYxNzcwNjE0YWM2YjQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1C4pp1fgLKUkOWPRScCwFnpTsOJO
LCIlhVp0iXNDDILiBsKvPMvHuiSzsVBZS/PRa8GDRbwTe5HNrfDDB5PLoJb6FOcV
jv3s6QYSDkaqFskb976E05zEjOlkHeXc6u9I9GWHF/RONP5GDgE6bku0MTZta1BT
lnqNmXrb8Z9Wz5KB/FfmOoeN9W8R8KHkHpw/g7IwOd9AGh1JrFzItJayG82GXbin
dq20CAPlHJV1IUicBefT8Xm0iJli+T9hf+x+sJpCDD1gXv/V00vcw4Yc6iIHP/+M
xwMtDwtJWX8pWJ/pk5fuPqRQrMUOdUx47Baafza3OzwOKQcvhvutND+kIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLp6+ONgkH2yXcEJMdrxdwYUrGtJMB8GA1UdIwQY
MBaAFM9mIkvPuLgt6qusjEyiUDcbl0YRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvejJZaVM4LTR1QzNxcTZ5TVRLSlFOeHVYUmhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8xOTZiNzEtNTg3ZS00MDk5LWJkYjIt
Yjk1NGM1MGZkYmIwLzEvejJZaVM4LTR1QzNxcTZ5TVRLSlFOeHVYUmhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC8xOTZiNzEtNTg3ZS00MDk5LWJkYjItYjk1NGM1MGZkYmIw
LzEvejJZaVM4LTR1QzNxcTZ5TVRLSlFOeHVYUmhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACabGOea5
AJGDyrG5D/gROJgOQEKz4bekY4VCcTDrIDYUBlSyTOMJ7+tA4i7FG/rhKYfDewco
ElkEIlZG1ehdh+AQfjcNFnvlytVGqaSwXE52gA3f4SUulU/A4rNNryOmGi5anFL3
cibKw2ZEQ8tPu1SVSASDO11spXMdqJAJ018IDKlHo45PaFz6Vb+jcOmU7fOX3CEi
gyJtyy1LcWDkui28DoHUTTRqctJzG/AvkJ+FNto8QvHMP1Ged+2EBHg8iAbGxDan
Rlt++orjvLTuZrfU/xa55hh6SPgZACmkUsQGbKr4w33fSMLaoedWi4BQpij/Fl4s
7A3FNYG2aUauVw==
-----END CERTIFICATE-----
Generated at Fri May 17 23:52:44 2024 by rpki-client on console-ams.rpki-client.org