Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
File: oUx52o8IwpnEYya3m55CTkmmh1s.mft (raw, json)
Hash identifier: BuWyF7bq0wyFo25LwoxofpJZDiz81DF7odizXE2A+Eo=
Subject key identifier: 11:C6:90:D4:B1:E8:83:0D:ED:48:43:ED:19:BD:68:B8:5A:DB:1E:AA
Authority key identifier: A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
Certificate issuer: /CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Certificate serial: 018F87485B4241005680DCA303177A42203E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
Manifest number: 1108
Signing time: Fri 17 May 2024 16:00:17 +0000
Manifest this update: Fri 17 May 2024 16:00:17 +0000
Manifest next update: Sat 18 May 2024 16:00:17 +0000
Files and hashes: 1: oUx52o8IwpnEYya3m55CTkmmh1s.crl (hash: U6Md0n+r4PAG1GMELjP2/lfWZveY7xlr6tOYD+uKm8U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:48:5b:42:41:00:56:80:dc:a3:03:17:7a:42:20:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Validity
Not Before: May 17 16:00:17 2024 GMT
Not After : May 18 16:00:17 2024 GMT
Subject: CN=11c690d4b1e8830ded4843ed19bd68b85adb1eaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8e:ba:84:25:8a:be:21:95:08:e6:b5:2b:9c:
a0:0e:ca:a4:a2:d9:86:f7:7c:42:f3:cf:b6:68:74:
c6:2f:e5:27:2c:0f:4a:6f:c3:91:22:b4:9c:5b:68:
43:1a:58:68:1b:21:a2:67:6f:a9:cc:d3:e7:74:f4:
10:fe:d2:83:35:ba:7c:7d:04:09:9f:67:8e:39:d4:
de:78:17:c8:af:f1:de:59:e1:c9:23:1b:bc:a0:6b:
af:59:88:7f:23:13:33:78:53:c1:cb:51:d5:21:6c:
e8:9d:e8:2c:69:24:4a:c1:18:43:b4:49:91:8c:72:
9a:9e:6d:3f:89:7c:4e:44:23:04:3c:d6:82:c8:14:
b1:93:2c:9a:f7:3d:c0:b5:d4:04:29:af:90:90:36:
01:d4:3e:98:94:3c:1c:cc:e5:5c:1c:a2:05:2b:bf:
6b:82:47:05:7b:a0:ed:ae:ac:f5:2d:58:e6:ef:1b:
d7:1a:53:5e:98:38:14:6b:e7:68:41:88:09:29:cc:
fc:db:43:1d:f2:43:f8:1c:53:84:51:56:40:4d:0b:
2b:3a:68:aa:5d:5f:43:87:cb:f5:0c:a3:d4:22:7d:
76:dc:b4:db:f0:12:13:a5:aa:96:d6:ab:f0:80:51:
7e:5a:99:15:f1:c7:b7:6c:17:0c:ac:06:19:62:2b:
47:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:C6:90:D4:B1:E8:83:0D:ED:48:43:ED:19:BD:68:B8:5A:DB:1E:AA
X509v3 Authority Key Identifier:
keyid:A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:41:0a:93:b8:ea:fb:71:8d:3c:60:33:9d:cc:82:07:aa:de:
2c:fa:50:41:b9:72:44:32:e6:c2:61:ed:d3:8d:87:d2:50:28:
c1:60:61:67:63:6f:ee:01:55:5c:63:15:ce:d1:92:cc:df:cf:
1d:2a:11:4d:d6:39:8c:bd:a5:0e:0a:d7:13:41:3d:70:2e:88:
bf:8a:0f:7a:fc:f2:3c:fb:4a:09:e4:b9:44:21:44:52:84:d6:
24:95:a6:a3:25:a9:af:46:fc:2c:4f:4b:83:c6:d2:ba:ad:6c:
9d:0f:59:e3:76:90:50:cc:18:96:0e:f4:14:b7:d2:05:d2:3c:
3e:59:db:7d:db:4b:f4:b7:31:64:8c:d9:c7:68:cf:ce:50:4f:
24:33:b3:6a:39:7e:2d:0d:f9:33:9c:e0:39:8e:62:2d:a1:8c:
7f:7e:ee:79:15:17:3c:17:8e:77:13:aa:2f:2f:6e:46:ff:28:
8d:79:a7:1b:a0:d6:a1:93:68:93:79:91:df:11:2a:ab:40:02:
c8:99:cb:6d:27:da:32:e3:26:7c:a4:aa:16:cd:3d:da:e1:21:
b4:99:72:5f:13:80:b0:94:fa:b8:c6:18:97:1c:c5:80:92:40:
53:61:6e:ab:9d:da:8f:17:85:89:07:5f:20:60:65:6c:02:a1:
a5:d7:a4:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+HSFtCQQBWgNyjAxd6QiA+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExNGM3OWRhOGYwOGMyOTljNDYzMjZiNzliOWU0MjRlNDlh
Njg3NWIwHhcNMjQwNTE3MTYwMDE3WhcNMjQwNTE4MTYwMDE3WjAzMTEwLwYDVQQD
EygxMWM2OTBkNGIxZTg4MzBkZWQ0ODQzZWQxOWJkNjhiODVhZGIxZWFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp466hCWKviGVCOa1K5ygDsqkotmG
93xC88+2aHTGL+UnLA9Kb8ORIrScW2hDGlhoGyGiZ2+pzNPndPQQ/tKDNbp8fQQJ
n2eOOdTeeBfIr/HeWeHJIxu8oGuvWYh/IxMzeFPBy1HVIWzonegsaSRKwRhDtEmR
jHKanm0/iXxORCMEPNaCyBSxkyya9z3AtdQEKa+QkDYB1D6YlDwczOVcHKIFK79r
gkcFe6Dtrqz1LVjm7xvXGlNemDgUa+doQYgJKcz820Md8kP4HFOEUVZATQsrOmiq
XV9Dh8v1DKPUIn123LTb8BITpaqW1qvwgFF+WpkV8ce3bBcMrAYZYitHJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBHGkNSx6IMN7UhD7Rm9aLha2x6qMB8GA1UdIwQY
MBaAFKFMedqPCMKZxGMmt5ueQk5JpodbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1V4NTJvOEl3cG5FWXlhM201NUNUa21taDFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi8yMmViNTMtNGY2MC00MTFiLTg0MDkt
ZDRjOTdmZjZlMTFlLzEvb1V4NTJvOEl3cG5FWXlhM201NUNUa21taDFzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi8yMmViNTMtNGY2MC00MTFiLTg0MDktZDRjOTdmZjZlMTFl
LzEvb1V4NTJvOEl3cG5FWXlhM201NUNUa21taDFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmkEKk7jq
+3GNPGAzncyCB6reLPpQQblyRDLmwmHt042H0lAowWBhZ2Nv7gFVXGMVztGSzN/P
HSoRTdY5jL2lDgrXE0E9cC6Iv4oPevzyPPtKCeS5RCFEUoTWJJWmoyWpr0b8LE9L
g8bSuq1snQ9Z43aQUMwYlg70FLfSBdI8PlnbfdtL9LcxZIzZx2jPzlBPJDOzajl+
LQ35M5zgOY5iLaGMf37ueRUXPBeOdxOqLy9uRv8ojXmnG6DWoZNok3mR3xEqq0AC
yJnLbSfaMuMmfKSqFs092uEhtJlyXxOAsJT6uMYYlxzFgJJAU2Fuq53ajxeFiQdf
IGBlbAKhpdekHQ==
-----END CERTIFICATE-----
Generated at Sat May 18 02:00:36 2024 by rpki-client on console-fra.rpki-client.org