Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/7900fd-84e2-4a7c-8d8e-e5afbb936c3a/1/iGueLpgWv6rZz8yAbo39KCT1A0Q.mft
File: iGueLpgWv6rZz8yAbo39KCT1A0Q.mft (raw, json)
Hash identifier: cOOQVCWZ201nhMAqbCYU/zJyY7IM6Q/oqxq4xVWnb7Q=
Subject key identifier: 16:EA:D8:63:2E:CA:E9:58:58:6B:D2:99:41:EC:39:36:8F:13:C6:5D
Authority key identifier: 88:6B:9E:2E:98:16:BF:AA:D9:CF:CC:80:6E:8D:FD:28:24:F5:03:44
Certificate issuer: /CN=886b9e2e9816bfaad9cfcc806e8dfd2824f50344
Certificate serial: 018F87B60C8AA0BC9DAA39CB07653E6EF2E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iGueLpgWv6rZz8yAbo39KCT1A0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/7900fd-84e2-4a7c-8d8e-e5afbb936c3a/1/iGueLpgWv6rZz8yAbo39KCT1A0Q.mft
Manifest number: 08D5
Signing time: Fri 17 May 2024 18:00:05 +0000
Manifest this update: Fri 17 May 2024 18:00:05 +0000
Manifest next update: Sat 18 May 2024 18:00:05 +0000
Files and hashes: 1: iGueLpgWv6rZz8yAbo39KCT1A0Q.crl (hash: 3rCeJ9pxDrzCMRMl5SctqbpRESPcebJk+eOwRKQaVwM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/7900fd-84e2-4a7c-8d8e-e5afbb936c3a/1/iGueLpgWv6rZz8yAbo39KCT1A0Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/7900fd-84e2-4a7c-8d8e-e5afbb936c3a/1/iGueLpgWv6rZz8yAbo39KCT1A0Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/iGueLpgWv6rZz8yAbo39KCT1A0Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:b6:0c:8a:a0:bc:9d:aa:39:cb:07:65:3e:6e:f2:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=886b9e2e9816bfaad9cfcc806e8dfd2824f50344
Validity
Not Before: May 17 18:00:05 2024 GMT
Not After : May 18 18:00:05 2024 GMT
Subject: CN=16ead8632ecae958586bd29941ec39368f13c65d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:05:b0:95:a4:f3:d9:c1:c4:cd:4b:87:8f:92:
09:3f:e0:04:6e:1c:7d:53:30:ef:bd:a8:bc:20:65:
79:e6:74:68:bb:d8:9f:b1:33:4e:c9:0d:2d:ad:35:
ac:95:a9:a1:85:cb:ef:19:1d:0e:21:3b:03:4e:ea:
c6:f7:1d:37:f8:d6:bf:0f:de:c4:f6:48:d4:50:ad:
0b:6c:93:e8:9e:f6:a9:37:ce:c6:06:95:c1:96:03:
48:f5:b5:33:65:4f:d1:78:c0:cf:a4:9d:f2:89:f5:
56:9e:9d:95:5e:7b:48:23:b9:4e:e7:50:39:5a:68:
e1:3d:56:36:3a:a8:bf:d1:b5:af:db:e4:12:90:ad:
0e:f8:8f:41:32:cc:2f:25:67:2a:d7:98:77:80:ff:
a1:08:96:6a:ca:82:c1:da:47:77:fb:81:47:cc:73:
c2:1e:a4:66:37:09:b8:71:d2:bc:49:0d:38:f4:fd:
43:b7:3d:a2:bf:34:6f:5e:25:2f:f4:71:75:3e:6e:
04:7e:f7:71:b2:7a:a2:06:ea:69:84:0a:6d:1b:32:
5b:77:28:50:1f:5c:07:2e:82:74:3c:c7:c5:c3:8e:
fb:db:44:a3:ec:d8:cb:96:ea:d2:79:33:5b:c5:49:
2a:0e:da:db:f1:61:b9:36:f5:b9:38:d1:be:fc:f8:
23:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:EA:D8:63:2E:CA:E9:58:58:6B:D2:99:41:EC:39:36:8F:13:C6:5D
X509v3 Authority Key Identifier:
keyid:88:6B:9E:2E:98:16:BF:AA:D9:CF:CC:80:6E:8D:FD:28:24:F5:03:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGueLpgWv6rZz8yAbo39KCT1A0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7900fd-84e2-4a7c-8d8e-e5afbb936c3a/1/iGueLpgWv6rZz8yAbo39KCT1A0Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7900fd-84e2-4a7c-8d8e-e5afbb936c3a/1/iGueLpgWv6rZz8yAbo39KCT1A0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:d9:42:af:85:21:ca:c5:56:02:09:42:09:4d:8e:e5:79:6c:
b8:be:17:f6:47:0a:af:29:43:96:00:88:85:56:66:ca:86:eb:
21:02:44:be:9b:bf:9d:57:6d:cb:f2:3f:bb:57:a3:b6:5c:90:
c9:b2:de:81:6e:f1:02:24:ae:0b:de:22:ab:e3:97:d8:59:ca:
b9:66:d3:23:44:14:ab:86:b4:ec:1a:f8:ef:0f:61:cd:4d:1b:
40:9e:a3:dd:83:e4:e0:d2:ad:41:6a:67:72:2c:c2:4d:41:84:
5f:c2:54:6a:d1:eb:f5:b3:03:14:c1:03:4e:47:da:23:3c:a6:
81:68:5e:11:ad:24:4a:07:4c:a1:20:1e:f5:8a:ba:32:fc:81:
5b:ab:fc:3c:73:83:fd:5e:8e:68:bc:e1:68:fa:44:77:ed:bc:
5c:d4:a2:e7:db:d7:ae:a3:c9:ad:a1:85:1b:8e:77:3f:d9:48:
59:ef:41:74:11:49:f5:b9:e1:77:35:b0:9b:65:3e:8b:9c:f4:
b8:27:79:df:50:c7:90:f6:54:9d:61:eb:79:f7:18:7e:3d:44:
b9:e7:0b:9e:c3:e7:a0:5c:bc:f1:3f:6f:aa:b1:40:7b:8a:56:
07:8b:06:a0:c6:ed:0b:4a:e6:51:82:4e:a6:ca:20:a8:9c:92:
49:84:58:fb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+HtgyKoLydqjnLB2U+bvLjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4NmI5ZTJlOTgxNmJmYWFkOWNmY2M4MDZlOGRmZDI4MjRm
NTAzNDQwHhcNMjQwNTE3MTgwMDA1WhcNMjQwNTE4MTgwMDA1WjAzMTEwLwYDVQQD
EygxNmVhZDg2MzJlY2FlOTU4NTg2YmQyOTk0MWVjMzkzNjhmMTNjNjVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQWwlaTz2cHEzUuHj5IJP+AEbhx9
UzDvvai8IGV55nRou9ifsTNOyQ0trTWslamhhcvvGR0OITsDTurG9x03+Na/D97E
9kjUUK0LbJPonvapN87GBpXBlgNI9bUzZU/ReMDPpJ3yifVWnp2VXntII7lO51A5
WmjhPVY2Oqi/0bWv2+QSkK0O+I9BMswvJWcq15h3gP+hCJZqyoLB2kd3+4FHzHPC
HqRmNwm4cdK8SQ049P1Dtz2ivzRvXiUv9HF1Pm4EfvdxsnqiBupphAptGzJbdyhQ
H1wHLoJ0PMfFw47720Sj7NjLlurSeTNbxUkqDtrb8WG5NvW5ONG+/PgjdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBbq2GMuyulYWGvSmUHsOTaPE8ZdMB8GA1UdIwQY
MBaAFIhrni6YFr+q2c/MgG6N/Sgk9QNEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUd1ZUxwZ1d2NnJaejh5QWJvMzlLQ1QxQTBRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi83OTAwZmQtODRlMi00YTdjLThkOGUt
ZTVhZmJiOTM2YzNhLzEvaUd1ZUxwZ1d2NnJaejh5QWJvMzlLQ1QxQTBRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi83OTAwZmQtODRlMi00YTdjLThkOGUtZTVhZmJiOTM2YzNh
LzEvaUd1ZUxwZ1d2NnJaejh5QWJvMzlLQ1QxQTBRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJdlCr4Uh
ysVWAglCCU2O5XlsuL4X9kcKrylDlgCIhVZmyobrIQJEvpu/nVdty/I/u1ejtlyQ
ybLegW7xAiSuC94iq+OX2FnKuWbTI0QUq4a07Br47w9hzU0bQJ6j3YPk4NKtQWpn
cizCTUGEX8JUatHr9bMDFMEDTkfaIzymgWheEa0kSgdMoSAe9Yq6MvyBW6v8PHOD
/V6OaLzhaPpEd+28XNSi59vXrqPJraGFG453P9lIWe9BdBFJ9bnhdzWwm2U+i5z0
uCd531DHkPZUnWHrefcYfj1EuecLnsPnoFy88T9vqrFAe4pWB4sGoMbtC0rmUYJO
psogqJySSYRY+w==
-----END CERTIFICATE-----
Generated at Fri May 17 23:50:15 2024 by rpki-client on console-fra.rpki-client.org