Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
File: lhzPqdAsvwWWDjovkHmFnM1urW0.mft (raw, json)
Hash identifier: 8Vt7lhoPOl/nAWvK2fncS5abnWC5kNdrbW25OzIGHtY=
Subject key identifier: 58:C5:00:84:F1:CD:E8:8E:53:FB:70:CF:19:C0:9F:F6:42:41:17:03
Authority key identifier: 96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D
Certificate issuer: /CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d
Certificate serial: 018F889209FF3D6C70F2DCBFE633562EDB2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
Manifest number: 1179
Signing time: Fri 17 May 2024 22:00:23 +0000
Manifest this update: Fri 17 May 2024 22:00:23 +0000
Manifest next update: Sat 18 May 2024 22:00:23 +0000
Files and hashes: 1: lhzPqdAsvwWWDjovkHmFnM1urW0.crl (hash: AXd0O0bwU60Iwtnsb0Jy+f9ETjPPNqQQMANgJD0n7p4=)
2: qk_zIVMThxvXKkadhPsMB66xbUM.roa (hash: 0WBd824Bg2QA59lcnsFwvgVaJ7pksHx/SVll2eBAOXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:92:09:ff:3d:6c:70:f2:dc:bf:e6:33:56:2e:db:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d
Validity
Not Before: May 17 22:00:23 2024 GMT
Not After : May 18 22:00:23 2024 GMT
Subject: CN=58c50084f1cde88e53fb70cf19c09ff642411703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:77:a9:23:a7:5b:07:e0:12:05:67:df:e4:36:
74:0f:d3:e9:09:bf:dd:9d:f1:17:0f:ce:60:f7:98:
c0:b1:f0:85:75:b1:f2:56:22:0f:37:b9:d8:4e:4f:
48:bc:99:ab:f0:a8:f4:3c:a9:78:85:b0:75:76:28:
1c:bf:ef:db:9c:b9:52:4f:b7:6d:74:cc:88:5f:90:
eb:45:73:0c:6d:ba:94:3b:e6:de:a5:0a:f3:f1:58:
5f:4a:e5:e2:71:3d:9a:7c:c5:2a:40:2a:b8:25:77:
96:f8:ae:b5:02:f1:e2:bd:21:11:ee:d5:9f:59:a2:
2b:79:2e:da:00:48:a5:6c:61:b5:73:02:e0:ae:db:
8a:6a:b8:c1:74:da:b1:a7:46:63:44:66:98:1a:bc:
7d:aa:c9:a4:9c:e8:68:20:4c:7a:85:74:1f:be:59:
39:cd:79:0b:da:97:a7:3b:20:6c:86:5d:0d:dd:3e:
36:49:c9:91:ef:fd:cf:d1:a5:d1:00:b9:1d:21:91:
3d:fb:4b:12:92:1a:6d:7d:ed:cf:5f:70:45:ba:0a:
5a:5f:ee:ed:2f:4b:3f:d7:dc:2b:a4:24:ad:8e:f3:
28:d0:fa:72:44:f6:a6:75:f3:e4:4d:77:9d:35:29:
4d:f6:00:4a:ed:ec:cf:1a:72:89:d4:78:90:87:f8:
39:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:C5:00:84:F1:CD:E8:8E:53:FB:70:CF:19:C0:9F:F6:42:41:17:03
X509v3 Authority Key Identifier:
keyid:96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:1e:5a:67:f6:2a:e8:6a:82:1a:a7:83:bc:c9:ce:c4:55:4e:
04:0e:12:d2:dd:c9:32:dd:38:c3:9a:fd:77:6c:5b:8a:59:68:
0b:3b:42:63:6f:3c:7d:f6:6f:c0:4f:4a:26:ce:7e:e7:98:99:
86:d1:d6:70:ac:09:b4:3c:0d:22:97:20:63:bd:ee:8a:51:62:
a7:73:da:00:e8:7e:d0:47:d4:67:50:76:db:df:44:bf:53:cb:
1f:27:8f:6e:50:8e:f9:13:9c:43:8a:37:a6:9c:e5:f5:a0:ba:
bb:88:1e:e4:e9:28:90:56:8b:27:19:2e:47:f2:f1:ef:b9:28:
79:19:c6:f8:a8:bf:fb:c2:e6:b3:dd:ed:9d:0e:8b:1a:85:2a:
60:ff:7e:67:f8:ce:45:8c:de:68:f8:4c:90:4c:9d:28:e2:b6:
55:10:c1:1f:d6:ed:34:a3:df:09:80:42:5f:71:22:ca:4c:6d:
5d:38:d1:e0:f8:f8:8d:fd:60:cc:44:0d:e2:69:f9:2d:48:5b:
ba:ea:ae:58:72:c9:e3:a8:e7:41:dc:9e:53:34:cd:c6:ea:f7:
a8:b6:ff:a5:9b:3f:6a:46:fb:6d:ad:d7:ee:5a:cc:84:a5:4c:
75:d9:55:2f:45:4d:b7:a0:36:c7:4e:25:7c:ab:43:8a:fd:97:
ac:ed:1b:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+Ikgn/PWxw8ty/5jNWLtsuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2MWNjZmE5ZDAyY2JmMDU5NjBlM2EyZjkwNzk4NTljY2Q2
ZWFkNmQwHhcNMjQwNTE3MjIwMDIzWhcNMjQwNTE4MjIwMDIzWjAzMTEwLwYDVQQD
Eyg1OGM1MDA4NGYxY2RlODhlNTNmYjcwY2YxOWMwOWZmNjQyNDExNzAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHepI6dbB+ASBWff5DZ0D9PpCb/d
nfEXD85g95jAsfCFdbHyViIPN7nYTk9IvJmr8Kj0PKl4hbB1digcv+/bnLlST7dt
dMyIX5DrRXMMbbqUO+bepQrz8VhfSuXicT2afMUqQCq4JXeW+K61AvHivSER7tWf
WaIreS7aAEilbGG1cwLgrtuKarjBdNqxp0ZjRGaYGrx9qsmknOhoIEx6hXQfvlk5
zXkL2penOyBshl0N3T42ScmR7/3P0aXRALkdIZE9+0sSkhptfe3PX3BFugpaX+7t
L0s/19wrpCStjvMo0PpyRPamdfPkTXedNSlN9gBK7ezPGnKJ1HiQh/g5GQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFjFAITxzeiOU/twzxnAn/ZCQRcDMB8GA1UdIwQY
MBaAFJYcz6nQLL8Flg46L5B5hZzNbq1tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGh6UHFkQXN2d1dXRGpvdmtIbUZuTTF1clcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi81NTU3ZmMtNzY1My00MGE5LTk5YzMt
N2VhOTkwNWMzZmJkLzEvbGh6UHFkQXN2d1dXRGpvdmtIbUZuTTF1clcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi81NTU3ZmMtNzY1My00MGE5LTk5YzMtN2VhOTkwNWMzZmJk
LzEvbGh6UHFkQXN2d1dXRGpvdmtIbUZuTTF1clcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvR5aZ/Yq
6GqCGqeDvMnOxFVOBA4S0t3JMt04w5r9d2xbilloCztCY288ffZvwE9KJs5+55iZ
htHWcKwJtDwNIpcgY73uilFip3PaAOh+0EfUZ1B2299Ev1PLHyePblCO+ROcQ4o3
ppzl9aC6u4ge5OkokFaLJxkuR/Lx77koeRnG+Ki/+8Lms93tnQ6LGoUqYP9+Z/jO
RYzeaPhMkEydKOK2VRDBH9btNKPfCYBCX3EiykxtXTjR4Pj4jf1gzEQN4mn5LUhb
uuquWHLJ46jnQdyeUzTNxur3qLb/pZs/akb7ba3X7lrMhKVMddlVL0VNt6A2x04l
fKtDiv2XrO0bYg==
-----END CERTIFICATE-----
Generated at Fri May 17 23:52:42 2024 by rpki-client on console-fra.rpki-client.org