Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft
File: FYi9izG5XpysnzgSjZW4UvA9V4Q.mft (raw, json)
Hash identifier: 1EKpfamD1qyHLtiRsqyjlNjf53uhjAr/da4K14vgx6M=
Subject key identifier: 61:10:47:2D:88:97:C9:17:79:F1:A2:55:65:2B:C2:37:48:F7:16:D5
Authority key identifier: 15:88:BD:8B:31:B9:5E:9C:AC:9F:38:12:8D:95:B8:52:F0:3D:57:84
Certificate issuer: /CN=1588bd8b31b95e9cac9f38128d95b852f03d5784
Certificate serial: 018F43B378E49799D56FC33E5E7D17F6A439
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft
Manifest number: 1152
Signing time: Sat 04 May 2024 13:03:06 +0000
Manifest this update: Sat 04 May 2024 13:03:06 +0000
Manifest next update: Sun 05 May 2024 13:03:06 +0000
Files and hashes: 1: FYi9izG5XpysnzgSjZW4UvA9V4Q.crl (hash: 1ilb1u5UMqBEWUGr5bIWdki3R5L6h2HPBybuLMSn4Pw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 13:03:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:43:b3:78:e4:97:99:d5:6f:c3:3e:5e:7d:17:f6:a4:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1588bd8b31b95e9cac9f38128d95b852f03d5784
Validity
Not Before: May 4 13:03:06 2024 GMT
Not After : May 5 13:03:06 2024 GMT
Subject: CN=6110472d8897c91779f1a255652bc23748f716d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:17:f9:c3:17:69:96:71:75:b8:cc:97:12:a3:
0b:21:18:56:32:3d:75:36:c5:2f:21:32:07:a2:71:
60:2f:06:6c:fe:81:87:3f:6a:52:69:32:06:af:b9:
94:d9:d3:77:5d:26:02:ee:8b:9b:27:7c:ce:22:d4:
b5:79:fd:b7:3e:9a:85:e9:91:c5:46:3b:0d:47:c0:
c4:92:ab:36:97:45:15:3d:73:96:78:bc:b5:87:e6:
ff:b2:db:9b:68:af:b7:7e:45:8a:3f:c6:ab:68:cc:
ed:6e:4b:09:35:45:d9:87:3e:15:51:0a:99:ef:83:
ef:f0:22:ed:4f:e0:76:eb:39:d1:ee:e5:7c:46:b6:
e2:41:9f:6c:a5:d5:eb:9f:9c:26:85:5a:af:c7:2f:
05:12:12:66:b7:93:ce:3d:f8:e8:32:7c:eb:6e:ef:
5c:d7:0b:b8:cf:ab:87:b4:d0:0d:0d:98:2f:50:dd:
46:61:c5:10:0f:14:d7:33:b0:45:58:3a:35:e0:0f:
0a:f2:4b:c3:cf:a0:6a:9e:2d:d2:93:13:d2:fc:29:
e8:97:47:5e:74:7a:10:a0:2d:68:c2:4c:22:45:88:
e1:04:32:b7:e6:5e:62:78:71:4f:1e:da:7f:ac:23:
f7:bc:18:12:cd:9c:41:c2:cc:5b:36:9d:20:7b:20:
45:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:10:47:2D:88:97:C9:17:79:F1:A2:55:65:2B:C2:37:48:F7:16:D5
X509v3 Authority Key Identifier:
keyid:15:88:BD:8B:31:B9:5E:9C:AC:9F:38:12:8D:95:B8:52:F0:3D:57:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:35:7a:46:8e:96:03:3e:80:51:5c:ee:88:96:d0:bd:74:ae:
bf:62:00:4b:fd:3f:c7:34:ab:9e:4c:d3:6f:30:17:2d:2c:a5:
78:63:3f:da:97:06:2e:32:e9:d0:37:0e:4b:a6:ac:70:3c:ba:
e4:27:be:85:07:fe:9e:98:48:fd:0b:9a:ff:e5:84:e5:ae:36:
5e:a4:16:ae:a9:12:a4:ad:07:b1:1a:a6:c2:a0:f1:d8:81:11:
2d:bf:47:30:ca:6f:6a:f1:ae:c8:50:14:f0:7f:13:ad:82:92:
50:19:5c:03:c5:ca:be:05:a1:73:96:2b:7c:bc:18:76:9b:07:
f6:40:cc:18:49:ee:7d:50:5b:72:ab:50:30:ec:f0:fd:4f:78:
79:6c:18:87:9f:75:f8:bb:20:9c:00:d5:da:3e:93:87:00:7e:
56:7c:c3:ed:75:d5:55:7c:af:68:31:b6:52:c3:89:9b:78:7a:
82:44:07:db:d9:cb:1d:51:ce:6b:30:ee:bb:5c:b3:b9:a1:f8:
ce:b9:79:9f:04:81:ab:4f:d8:34:a1:e8:1f:85:f0:57:d7:1a:
1a:c7:3f:cc:95:f0:86:f2:0a:cf:89:f0:24:d6:3d:2a:c4:8a:
74:4d:ae:86:3a:b7:97:68:92:ab:2d:bf:df:06:7b:f2:66:39:
e8:82:64:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY9Ds3jkl5nVb8M+Xn0X9qQ5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ODhiZDhiMzFiOTVlOWNhYzlmMzgxMjhkOTViODUyZjAz
ZDU3ODQwHhcNMjQwNTA0MTMwMzA2WhcNMjQwNTA1MTMwMzA2WjAzMTEwLwYDVQQD
Eyg2MTEwNDcyZDg4OTdjOTE3NzlmMWEyNTU2NTJiYzIzNzQ4ZjcxNmQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Rf5wxdplnF1uMyXEqMLIRhWMj11
NsUvITIHonFgLwZs/oGHP2pSaTIGr7mU2dN3XSYC7oubJ3zOItS1ef23PpqF6ZHF
RjsNR8DEkqs2l0UVPXOWeLy1h+b/stubaK+3fkWKP8araMztbksJNUXZhz4VUQqZ
74Pv8CLtT+B26znR7uV8RrbiQZ9spdXrn5wmhVqvxy8FEhJmt5POPfjoMnzrbu9c
1wu4z6uHtNANDZgvUN1GYcUQDxTXM7BFWDo14A8K8kvDz6Bqni3SkxPS/Cnol0de
dHoQoC1owkwiRYjhBDK35l5ieHFPHtp/rCP3vBgSzZxBwsxbNp0geyBFzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGEQRy2Il8kXefGiVWUrwjdI9xbVMB8GA1UdIwQY
MBaAFBWIvYsxuV6crJ84Eo2VuFLwPVeEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRllpOWl6RzVYcHlzbnpnU2paVzRVdkE5VjRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9kMWFhMmUtYjgxOS00MjFjLTg0NTYt
YjVhZTgzOWYzMGUyLzEvRllpOWl6RzVYcHlzbnpnU2paVzRVdkE5VjRRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC9kMWFhMmUtYjgxOS00MjFjLTg0NTYtYjVhZTgzOWYzMGUy
LzEvRllpOWl6RzVYcHlzbnpnU2paVzRVdkE5VjRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXTV6Ro6W
Az6AUVzuiJbQvXSuv2IAS/0/xzSrnkzTbzAXLSyleGM/2pcGLjLp0DcOS6ascDy6
5Ce+hQf+nphI/Qua/+WE5a42XqQWrqkSpK0HsRqmwqDx2IERLb9HMMpvavGuyFAU
8H8TrYKSUBlcA8XKvgWhc5YrfLwYdpsH9kDMGEnufVBbcqtQMOzw/U94eWwYh591
+LsgnADV2j6ThwB+VnzD7XXVVXyvaDG2UsOJm3h6gkQH29nLHVHOazDuu1yzuaH4
zrl5nwSBq0/YNKHoH4XwV9caGsc/zJXwhvIKz4nwJNY9KsSKdE2uhjq3l2iSqy2/
3wZ78mY56IJkPg==
-----END CERTIFICATE-----
Generated at Sat May 4 22:29:07 2024 by rpki-client on console-ams.rpki-client.org