Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
File: LSNrVIulmiq7JYI0HVYMqJP0l2M.mft (raw, json)
Hash identifier: 3p9qx7ZnjKPG1hQgj8MAcgkpWzneRA7AGw8I2BTJdvM=
Subject key identifier: 64:E5:1F:E1:37:29:F1:94:30:70:53:8B:BD:6B:39:49:0C:E0:5C:95
Authority key identifier: 2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
Certificate issuer: /CN=2d236b548ba59a2abb2582341d560ca893f49763
Certificate serial: 018F8891C3FE45DDB5ECFD3E04EFEF0DA0DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
Manifest number: 0F17
Signing time: Fri 17 May 2024 22:00:05 +0000
Manifest this update: Fri 17 May 2024 22:00:05 +0000
Manifest next update: Sat 18 May 2024 22:00:05 +0000
Files and hashes: 1: LSNrVIulmiq7JYI0HVYMqJP0l2M.crl (hash: yTepsaopRMjXY4MUC+ynbXcA0SlhA84FrG+1Nrlqlxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:91:c3:fe:45:dd:b5:ec:fd:3e:04:ef:ef:0d:a0:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d236b548ba59a2abb2582341d560ca893f49763
Validity
Not Before: May 17 22:00:05 2024 GMT
Not After : May 18 22:00:05 2024 GMT
Subject: CN=64e51fe13729f1943070538bbd6b39490ce05c95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:88:c9:f1:c8:c3:f0:8b:9e:42:00:fc:00:94:
94:e3:03:09:04:2a:0f:46:91:9e:cf:b0:06:a2:63:
1d:08:5e:98:89:20:8a:bd:1b:6e:5a:1e:68:51:f0:
ea:9d:62:05:c7:51:b2:b1:7d:b6:d1:6f:b7:14:ea:
10:18:5d:b0:45:51:df:53:fe:a7:a8:8d:68:fb:6d:
81:e0:35:54:ec:e8:e8:11:69:32:bc:5a:15:e2:5c:
82:69:bc:38:6a:78:ca:a6:e2:cb:b7:5f:04:da:ac:
2a:b5:ee:11:a7:b9:3f:94:b5:52:f7:0d:e4:ea:0f:
fe:59:64:41:3c:0e:e7:18:c9:19:12:c5:22:72:bc:
e0:d9:2a:9a:26:2d:82:ca:67:b3:22:33:37:77:0c:
9f:ae:cd:ef:b6:4b:f6:1d:35:b0:bb:9d:4d:f9:42:
9e:03:d3:fe:16:c9:13:5f:53:6a:55:50:ab:aa:22:
c4:dd:60:40:b0:3a:d9:a6:89:4c:8b:bb:e3:3c:9a:
9f:db:f8:6b:8e:90:05:78:70:63:bd:e7:51:95:ec:
58:e2:1a:09:c5:8a:ed:9e:02:54:b7:f6:2c:e1:56:
34:a7:ab:cb:80:2c:70:01:59:e4:e4:df:11:93:8e:
fe:d2:98:dd:b7:60:33:10:6c:ce:cf:57:e3:a0:b9:
a4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:E5:1F:E1:37:29:F1:94:30:70:53:8B:BD:6B:39:49:0C:E0:5C:95
X509v3 Authority Key Identifier:
keyid:2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:1b:66:67:ba:f8:8b:76:d0:8f:17:be:b6:6d:b1:3f:1c:54:
4f:37:63:21:a0:bc:8d:99:3e:02:cd:08:6d:3e:c8:34:8a:1f:
a7:a9:e5:14:ee:13:c6:4f:05:4a:ef:59:f7:bb:be:31:b5:38:
88:fe:37:0d:ba:74:16:79:ab:be:6c:44:76:35:27:74:ab:28:
38:68:61:d5:52:d8:fd:72:23:a1:ac:58:f3:68:12:9e:54:5d:
9a:cd:36:31:84:30:44:28:58:69:74:85:c0:0b:cd:78:0c:86:
a0:5a:7c:cd:4c:d2:cd:1e:cd:2e:69:ea:bc:81:fc:1b:2c:8d:
4f:e8:97:a3:07:f4:cf:23:80:99:4c:1f:00:5b:c1:e7:8a:38:
58:a9:dc:ab:8a:68:2e:93:bd:fe:97:eb:1d:77:c7:0b:00:2d:
b4:8c:b3:23:04:5a:92:92:dc:94:ff:97:a5:1a:c3:22:17:f0:
a5:6f:fe:df:d4:c1:12:38:fd:5a:c4:8b:3e:67:b8:4f:c3:bb:
66:e1:1b:21:4a:b3:db:d7:3f:df:aa:d6:be:c6:5e:1d:0c:7a:
16:c0:82:b0:8e:3c:b2:75:9e:04:1e:ac:4b:ac:31:e3:2c:f3:
20:67:e4:21:01:84:23:cc:d1:5e:df:a3:55:61:8d:93:37:24:
e1:8a:fa:2b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+IkcP+Rd217P0+BO/vDaDdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkMjM2YjU0OGJhNTlhMmFiYjI1ODIzNDFkNTYwY2E4OTNm
NDk3NjMwHhcNMjQwNTE3MjIwMDA1WhcNMjQwNTE4MjIwMDA1WjAzMTEwLwYDVQQD
Eyg2NGU1MWZlMTM3MjlmMTk0MzA3MDUzOGJiZDZiMzk0OTBjZTA1Yzk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5ojJ8cjD8IueQgD8AJSU4wMJBCoP
RpGez7AGomMdCF6YiSCKvRtuWh5oUfDqnWIFx1GysX220W+3FOoQGF2wRVHfU/6n
qI1o+22B4DVU7OjoEWkyvFoV4lyCabw4anjKpuLLt18E2qwqte4Rp7k/lLVS9w3k
6g/+WWRBPA7nGMkZEsUicrzg2SqaJi2CymezIjM3dwyfrs3vtkv2HTWwu51N+UKe
A9P+FskTX1NqVVCrqiLE3WBAsDrZpolMi7vjPJqf2/hrjpAFeHBjvedRlexY4hoJ
xYrtngJUt/Ys4VY0p6vLgCxwAVnk5N8Rk47+0pjdt2AzEGzOz1fjoLmk2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGTlH+E3KfGUMHBTi71rOUkM4FyVMB8GA1UdIwQY
MBaAFC0ja1SLpZoquyWCNB1WDKiT9JdjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTFNOclZJdWxtaXE3SllJMEhWWU1xSlAwbDJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC84NzFkOGItMjIxOS00NmM0LWE0OTAt
MjU3MTM2OWMyMDJiLzEvTFNOclZJdWxtaXE3SllJMEhWWU1xSlAwbDJNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC84NzFkOGItMjIxOS00NmM0LWE0OTAtMjU3MTM2OWMyMDJi
LzEvTFNOclZJdWxtaXE3SllJMEhWWU1xSlAwbDJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWhtmZ7r4
i3bQjxe+tm2xPxxUTzdjIaC8jZk+As0IbT7INIofp6nlFO4Txk8FSu9Z97u+MbU4
iP43Dbp0FnmrvmxEdjUndKsoOGhh1VLY/XIjoaxY82gSnlRdms02MYQwRChYaXSF
wAvNeAyGoFp8zUzSzR7NLmnqvIH8GyyNT+iXowf0zyOAmUwfAFvB54o4WKncq4po
LpO9/pfrHXfHCwAttIyzIwRakpLclP+XpRrDIhfwpW/+39TBEjj9WsSLPme4T8O7
ZuEbIUqz29c/36rWvsZeHQx6FsCCsI48snWeBB6sS6wx4yzzIGfkIQGEI8zRXt+j
VWGNkzck4Yr6Kw==
-----END CERTIFICATE-----
Generated at Fri May 17 22:56:24 2024 by rpki-client on console-fra.rpki-client.org