Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/8eb32d-f7e3-4a9c-aaa4-8421d781b03b/1/zahD6BKxbexgu3CYykEzEX24R00.mft
File: zahD6BKxbexgu3CYykEzEX24R00.mft (raw, json)
Hash identifier: P/R9TIhjnB2Rsb9CfweENQiV7jMSm8BUrEFfZpQ5SNU=
Subject key identifier: C0:51:62:60:6C:3E:F8:3A:C9:40:65:9C:42:71:6B:40:8C:10:4F:65
Authority key identifier: CD:A8:43:E8:12:B1:6D:EC:60:BB:70:98:CA:41:33:11:7D:B8:47:4D
Certificate issuer: /CN=cda843e812b16dec60bb7098ca4133117db8474d
Certificate serial: 018F99861672A5A82A49362093D5212F0486
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zahD6BKxbexgu3CYykEzEX24R00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/8eb32d-f7e3-4a9c-aaa4-8421d781b03b/1/zahD6BKxbexgu3CYykEzEX24R00.mft
Manifest number: 1181
Signing time: Tue 21 May 2024 05:00:52 +0000
Manifest this update: Tue 21 May 2024 05:00:52 +0000
Manifest next update: Wed 22 May 2024 05:00:52 +0000
Files and hashes: 1: AHHvuaqepU-66ln9Y9b75QoqN4k.roa (hash: mlJXd2+uLfQ4lc2EUdTsE1nZkcN7dtBY+UcPs0W7ai0=)
2: zahD6BKxbexgu3CYykEzEX24R00.crl (hash: 45Nlrlp5kk3Tis4GbpJtWXvf0/OhleTzqZl/nTAbJek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/8eb32d-f7e3-4a9c-aaa4-8421d781b03b/1/zahD6BKxbexgu3CYykEzEX24R00.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/8eb32d-f7e3-4a9c-aaa4-8421d781b03b/1/zahD6BKxbexgu3CYykEzEX24R00.mft
rsync://rpki.ripe.net/repository/DEFAULT/zahD6BKxbexgu3CYykEzEX24R00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 05:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:99:86:16:72:a5:a8:2a:49:36:20:93:d5:21:2f:04:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cda843e812b16dec60bb7098ca4133117db8474d
Validity
Not Before: May 21 05:00:52 2024 GMT
Not After : May 22 05:00:52 2024 GMT
Subject: CN=c05162606c3ef83ac940659c42716b408c104f65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:60:a7:bb:37:34:81:5c:a5:e3:68:22:ae:df:
42:7b:b9:c9:ae:cc:ff:96:b9:0a:3d:fd:74:9f:35:
6f:58:9c:9e:7b:2e:33:5b:ed:31:5d:78:d6:9e:25:
59:c8:60:a3:e2:09:f5:3a:96:6c:43:74:23:2a:fc:
8a:0a:b8:73:f4:57:96:b9:90:10:41:49:d2:5e:2e:
f8:d7:8f:18:b9:5b:dd:a8:40:3e:8d:2d:a1:02:a4:
12:4f:24:43:ba:69:64:51:98:40:71:0e:cd:ea:74:
3e:a9:a6:fc:25:d4:49:04:47:0b:c7:4a:d2:b9:c3:
25:cb:c2:03:44:da:5e:1b:f1:e2:b0:5e:3c:0c:b4:
d4:d5:1e:86:f5:0c:66:fc:e6:a9:6a:06:c3:98:65:
da:80:89:38:db:4b:1f:75:31:4f:20:4f:c2:dd:74:
94:8c:b9:ce:d7:7a:5e:22:23:8a:e3:9a:38:c0:da:
db:ba:fd:94:2f:53:24:63:84:50:d4:de:dc:83:e4:
8b:6d:1e:59:43:38:58:ff:84:fb:28:3b:b9:e0:e0:
26:07:e6:f6:7c:b4:2d:b0:6b:8b:52:d6:ec:50:64:
ae:fa:85:a0:7e:bc:e2:1b:2d:ed:1d:d1:84:db:07:
84:34:8c:21:d1:79:af:e8:10:71:02:a1:c1:1d:da:
30:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:51:62:60:6C:3E:F8:3A:C9:40:65:9C:42:71:6B:40:8C:10:4F:65
X509v3 Authority Key Identifier:
keyid:CD:A8:43:E8:12:B1:6D:EC:60:BB:70:98:CA:41:33:11:7D:B8:47:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zahD6BKxbexgu3CYykEzEX24R00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/8eb32d-f7e3-4a9c-aaa4-8421d781b03b/1/zahD6BKxbexgu3CYykEzEX24R00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/8eb32d-f7e3-4a9c-aaa4-8421d781b03b/1/zahD6BKxbexgu3CYykEzEX24R00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:7e:c0:22:f4:c8:89:a0:bc:c8:0f:86:f6:0d:11:47:b0:a6:
fe:04:79:aa:c1:e1:a1:dc:84:ce:40:ee:1c:37:2f:69:12:99:
33:63:b9:65:55:4e:f6:41:e9:2e:df:78:94:be:42:00:5b:8a:
99:85:c3:61:58:27:d4:81:da:6a:a6:78:f7:3d:6a:0a:2e:b2:
77:05:ad:c9:a4:cf:77:ef:a1:fb:fe:e2:09:a2:4f:8e:fe:4d:
b6:78:cb:76:c7:fc:5e:0d:46:86:ba:63:89:0f:c8:52:16:53:
f7:3c:04:63:f6:9d:13:9f:58:6c:c4:a1:0c:5f:df:59:57:86:
04:06:85:77:b7:47:36:54:36:9b:ad:cf:c5:7e:2a:ea:bf:45:
3e:b1:1b:71:ac:06:e9:a8:d1:89:96:18:ef:69:66:c0:8c:96:
18:0f:7f:fa:04:58:67:7e:81:7f:1f:15:ce:63:92:93:3c:f6:
69:d4:24:ed:4f:c2:3f:04:6e:25:ed:6a:52:26:66:0f:f5:52:
fd:94:1b:bf:ce:54:96:82:d4:7e:5b:b8:35:1e:89:ac:f8:5b:
0b:99:7d:f2:dc:43:21:cb:aa:2f:4a:75:56:4d:d6:d0:76:10:
3e:71:f0:b1:2f:98:e2:47:a4:88:6e:27:eb:87:37:20:a1:3f:
0f:b9:e4:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+ZhhZypagqSTYgk9UhLwSGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYTg0M2U4MTJiMTZkZWM2MGJiNzA5OGNhNDEzMzExN2Ri
ODQ3NGQwHhcNMjQwNTIxMDUwMDUyWhcNMjQwNTIyMDUwMDUyWjAzMTEwLwYDVQQD
EyhjMDUxNjI2MDZjM2VmODNhYzk0MDY1OWM0MjcxNmI0MDhjMTA0ZjY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqmCnuzc0gVyl42girt9Ce7nJrsz/
lrkKPf10nzVvWJyeey4zW+0xXXjWniVZyGCj4gn1OpZsQ3QjKvyKCrhz9FeWuZAQ
QUnSXi74148YuVvdqEA+jS2hAqQSTyRDumlkUZhAcQ7N6nQ+qab8JdRJBEcLx0rS
ucMly8IDRNpeG/HisF48DLTU1R6G9Qxm/OapagbDmGXagIk420sfdTFPIE/C3XSU
jLnO13peIiOK45o4wNrbuv2UL1MkY4RQ1N7cg+SLbR5ZQzhY/4T7KDu54OAmB+b2
fLQtsGuLUtbsUGSu+oWgfrziGy3tHdGE2weENIwh0Xmv6BBxAqHBHdownQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMBRYmBsPvg6yUBlnEJxa0CMEE9lMB8GA1UdIwQY
MBaAFM2oQ+gSsW3sYLtwmMpBMxF9uEdNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFoRDZCS3hiZXhndTNDWXlrRXpFWDI0UjAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC84ZWIzMmQtZjdlMy00YTljLWFhYTQt
ODQyMWQ3ODFiMDNiLzEvemFoRDZCS3hiZXhndTNDWXlrRXpFWDI0UjAwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC84ZWIzMmQtZjdlMy00YTljLWFhYTQtODQyMWQ3ODFiMDNi
LzEvemFoRDZCS3hiZXhndTNDWXlrRXpFWDI0UjAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZn7AIvTI
iaC8yA+G9g0RR7Cm/gR5qsHhodyEzkDuHDcvaRKZM2O5ZVVO9kHpLt94lL5CAFuK
mYXDYVgn1IHaaqZ49z1qCi6ydwWtyaTPd++h+/7iCaJPjv5NtnjLdsf8Xg1Ghrpj
iQ/IUhZT9zwEY/adE59YbMShDF/fWVeGBAaFd7dHNlQ2m63PxX4q6r9FPrEbcawG
6ajRiZYY72lmwIyWGA9/+gRYZ36Bfx8VzmOSkzz2adQk7U/CPwRuJe1qUiZmD/VS
/ZQbv85UloLUflu4NR6JrPhbC5l98txDIcuqL0p1Vk3W0HYQPnHwsS+Y4kekiG4n
64c3IKE/D7nkEw==
-----END CERTIFICATE-----
Generated at Tue May 21 13:46:06 2024 by rpki-client on console-ams.rpki-client.org