Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
File: YsTHQ9XCr88n8QTrbgMWEWyFx94.mft (raw, json)
Hash identifier: T8KhHKx8I9Y6tE2j4kJLCJUqUnxjIygNH6N12tzFRII=
Subject key identifier: A7:9F:2C:0F:64:F3:10:91:C2:24:49:09:52:7A:62:D6:97:03:27:3C
Authority key identifier: 62:C4:C7:43:D5:C2:AF:CF:27:F1:04:EB:6E:03:16:11:6C:85:C7:DE
Certificate issuer: /CN=62c4c743d5c2afcf27f104eb6e0316116c85c7de
Certificate serial: 018F9B06A3A3072F6F7276A00AB48607AC3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
Manifest number: 074D
Signing time: Tue 21 May 2024 12:00:54 +0000
Manifest this update: Tue 21 May 2024 12:00:54 +0000
Manifest next update: Wed 22 May 2024 12:00:54 +0000
Files and hashes: 1: 7eyQavg6f8qdqJunMZm8O-4dNSQ.roa (hash: a9OVhPZqmLBicHCt2z4aNngTTRLfFCMR6cb7/Jpfi4c=)
2: YsTHQ9XCr88n8QTrbgMWEWyFx94.crl (hash: ErdAVDaRRxLrzSfRZNjT7V9qZ2+XoWg9CIDe5ikq8Uo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 12:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9b:06:a3:a3:07:2f:6f:72:76:a0:0a:b4:86:07:ac:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62c4c743d5c2afcf27f104eb6e0316116c85c7de
Validity
Not Before: May 21 12:00:54 2024 GMT
Not After : May 22 12:00:54 2024 GMT
Subject: CN=a79f2c0f64f31091c2244909527a62d69703273c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:24:41:43:7b:42:45:38:80:f0:d9:d3:53:77:
4f:ed:e4:f3:09:9b:8d:cd:cc:1f:dd:68:17:bd:2b:
e5:bd:13:a5:41:f4:27:3c:fb:09:60:93:3e:6e:ea:
1f:83:e4:86:bd:1f:be:83:a9:f3:98:12:c9:bb:d4:
e5:26:68:0b:f9:77:9c:3f:21:74:ef:c7:d4:1e:44:
4b:67:7d:13:d4:24:c6:e9:37:11:70:a6:c5:d4:a0:
a1:eb:46:d3:d8:99:03:b8:a0:22:fd:36:c5:29:8f:
76:d1:71:ad:e6:b7:24:de:96:fe:98:6d:bd:76:dc:
1d:b4:83:99:3d:39:fc:d7:fd:2a:6f:43:17:df:f2:
6c:f9:ca:c1:dd:48:e2:99:3a:2c:82:db:f8:6e:bb:
a7:bd:1d:a9:12:bd:cd:3c:88:f1:62:0e:14:80:cb:
40:59:a6:92:47:73:f2:c8:cb:8b:86:ba:a9:5f:36:
50:62:80:9d:88:95:fa:9e:6f:a0:a4:53:d2:ff:4d:
72:55:5d:c7:b3:eb:1d:62:24:06:33:10:cf:64:0d:
73:c8:b6:c6:ce:86:a7:d5:d4:43:0e:76:52:8e:4c:
17:93:dd:6b:4f:8c:69:c8:ca:e4:38:71:bc:15:db:
64:86:3e:bc:45:c7:0c:44:a4:eb:a3:fa:ec:cb:63:
3e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:9F:2C:0F:64:F3:10:91:C2:24:49:09:52:7A:62:D6:97:03:27:3C
X509v3 Authority Key Identifier:
keyid:62:C4:C7:43:D5:C2:AF:CF:27:F1:04:EB:6E:03:16:11:6C:85:C7:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:82:cc:1f:1f:18:7e:14:0c:44:2b:97:78:06:55:07:dc:24:
fe:ee:b5:49:b0:9b:88:3e:44:2f:6b:03:34:78:8e:c8:1e:71:
f7:1f:5a:53:5d:2f:15:d8:fe:8f:29:89:dd:3b:ac:79:ee:cb:
3a:0b:0a:6f:4a:b4:0f:36:4d:a4:90:40:58:44:05:2f:92:ae:
c2:0b:ba:ae:a0:4f:76:e2:b2:bf:31:89:11:e8:6e:24:1b:26:
18:65:b8:45:c5:c4:ac:e9:90:f7:1f:94:91:ef:7d:ea:ff:95:
e6:76:8d:41:87:86:a6:79:cc:ad:13:05:13:8c:a2:7d:9b:58:
39:32:b0:a8:62:ac:14:d7:c5:f9:f3:93:a8:dc:d1:b6:03:9d:
83:83:7f:90:e7:6a:8a:09:9f:72:9b:c9:43:27:2b:9a:00:81:
48:f7:a9:0f:67:cb:05:84:c6:46:b8:c0:67:65:69:a6:50:10:
b9:a9:ef:62:07:77:7e:a4:63:a3:ee:b5:f0:35:75:72:f3:7b:
4a:4c:11:70:19:35:26:f0:a0:58:25:82:9c:97:6c:64:4f:41:
9e:0f:c5:3e:8b:af:77:a5:e4:65:b7:86:20:bc:96:3b:c4:66:
e2:3a:97:59:e4:e0:0b:2b:a5:d4:53:d7:69:be:d5:48:be:44:
59:64:50:a4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+bBqOjBy9vcnagCrSGB6w8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyYzRjNzQzZDVjMmFmY2YyN2YxMDRlYjZlMDMxNjExNmM4
NWM3ZGUwHhcNMjQwNTIxMTIwMDU0WhcNMjQwNTIyMTIwMDU0WjAzMTEwLwYDVQQD
EyhhNzlmMmMwZjY0ZjMxMDkxYzIyNDQ5MDk1MjdhNjJkNjk3MDMyNzNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxiRBQ3tCRTiA8NnTU3dP7eTzCZuN
zcwf3WgXvSvlvROlQfQnPPsJYJM+buofg+SGvR++g6nzmBLJu9TlJmgL+XecPyF0
78fUHkRLZ30T1CTG6TcRcKbF1KCh60bT2JkDuKAi/TbFKY920XGt5rck3pb+mG29
dtwdtIOZPTn81/0qb0MX3/Js+crB3UjimTosgtv4brunvR2pEr3NPIjxYg4UgMtA
WaaSR3PyyMuLhrqpXzZQYoCdiJX6nm+gpFPS/01yVV3Hs+sdYiQGMxDPZA1zyLbG
zoan1dRDDnZSjkwXk91rT4xpyMrkOHG8Fdtkhj68RccMRKTro/rsy2M+iQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKefLA9k8xCRwiRJCVJ6YtaXAyc8MB8GA1UdIwQY
MBaAFGLEx0PVwq/PJ/EE624DFhFshcfeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXNUSFE5WENyODhuOFFUcmJnTVdFV3lGeDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My83MjhjNDAtZjcxMi00ZmVmLTg5NDUt
ZGUzNTJhOTJmNmJhLzEvWXNUSFE5WENyODhuOFFUcmJnTVdFV3lGeDk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My83MjhjNDAtZjcxMi00ZmVmLTg5NDUtZGUzNTJhOTJmNmJh
LzEvWXNUSFE5WENyODhuOFFUcmJnTVdFV3lGeDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABYLMHx8Y
fhQMRCuXeAZVB9wk/u61SbCbiD5EL2sDNHiOyB5x9x9aU10vFdj+jymJ3Tusee7L
OgsKb0q0DzZNpJBAWEQFL5Kuwgu6rqBPduKyvzGJEehuJBsmGGW4RcXErOmQ9x+U
ke996v+V5naNQYeGpnnMrRMFE4yifZtYOTKwqGKsFNfF+fOTqNzRtgOdg4N/kOdq
igmfcpvJQycrmgCBSPepD2fLBYTGRrjAZ2VpplAQuanvYgd3fqRjo+618DV1cvN7
SkwRcBk1JvCgWCWCnJdsZE9Bng/FPouvd6XkZbeGILyWO8Rm4jqXWeTgCyul1FPX
ab7VSL5EWWRQpA==
-----END CERTIFICATE-----
Generated at Tue May 21 20:42:46 2024 by rpki-client on console-ams.rpki-client.org