Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
File: XasLCOUfgYIkYp-zohHYPVvjVEA.mft (raw, json)
Hash identifier: pcYUdt0ef2g2OUffXQENTvl3GwnQ1oji+MKbAczJxek=
Subject key identifier: F1:71:87:EF:78:1A:74:C4:A5:1C:D2:2C:82:CD:A2:68:97:E0:C7:0C
Authority key identifier: 5D:AB:0B:08:E5:1F:81:82:24:62:9F:B3:A2:11:D8:3D:5B:E3:54:40
Certificate issuer: /CN=5dab0b08e51f818224629fb3a211d83d5be35440
Certificate serial: 018F87B65DA1355A2934E1287D64B6D5C1EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
Manifest number: 0F85
Signing time: Fri 17 May 2024 18:00:26 +0000
Manifest this update: Fri 17 May 2024 18:00:26 +0000
Manifest next update: Sat 18 May 2024 18:00:26 +0000
Files and hashes: 1: XasLCOUfgYIkYp-zohHYPVvjVEA.crl (hash: TNAW1BO4TLO3IIRk8K9bNYXVfbb9D1WZVRkIsVsk7Tk=)
2: hIxUi5K1vlYsPhMS_ZZGifbbdJk.roa (hash: vk6AdXLy92Xas69tB27JQ4ezY19lztmYKHt5GhipfB4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:b6:5d:a1:35:5a:29:34:e1:28:7d:64:b6:d5:c1:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dab0b08e51f818224629fb3a211d83d5be35440
Validity
Not Before: May 17 18:00:26 2024 GMT
Not After : May 18 18:00:26 2024 GMT
Subject: CN=f17187ef781a74c4a51cd22c82cda26897e0c70c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:73:c3:fc:e7:9a:e5:b4:a1:c5:d8:a0:02:ad:
0b:20:f7:8a:b5:31:da:20:35:a0:de:98:24:c3:ae:
ba:e8:6c:89:8b:3e:bc:84:27:9a:78:9f:ad:05:22:
8f:c9:4a:70:3b:9d:5f:a5:cb:e7:f3:7c:0e:35:f1:
00:b4:de:91:9d:45:c8:7f:76:80:bd:87:ec:28:95:
0d:c3:ca:43:4a:a8:b0:4b:05:a5:de:9f:2a:bb:c7:
dd:65:d1:73:5c:fa:5f:3d:14:fa:a7:5f:3a:02:3a:
60:eb:1b:d7:c4:37:40:e1:30:d8:98:c5:ee:1e:c9:
79:df:2d:71:c6:3b:0e:d5:87:97:60:f9:10:8c:29:
af:93:17:d8:0e:79:f3:bc:94:09:a9:7f:e8:79:bc:
4d:52:7e:12:5c:50:5a:60:2f:f3:a8:a1:3c:fe:15:
99:df:cf:7b:c4:b0:57:7a:02:3d:b7:a2:2a:24:dd:
54:49:2e:bb:aa:95:0f:30:11:97:ee:fc:86:b9:a2:
3f:6c:92:15:74:04:49:07:7e:2b:81:48:ee:2a:84:
38:34:bd:d2:d4:9e:2f:cd:28:b2:9c:1f:ce:28:8a:
5a:bf:9c:fe:bc:21:ed:d7:8b:eb:98:67:41:61:f5:
aa:13:03:de:0d:93:61:a7:af:5f:91:05:14:b7:bf:
7c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:71:87:EF:78:1A:74:C4:A5:1C:D2:2C:82:CD:A2:68:97:E0:C7:0C
X509v3 Authority Key Identifier:
keyid:5D:AB:0B:08:E5:1F:81:82:24:62:9F:B3:A2:11:D8:3D:5B:E3:54:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:23:48:68:42:9a:34:83:4a:3f:58:19:fc:57:32:d2:64:c3:
2e:ea:4d:ef:e3:88:af:ec:ec:5a:48:69:00:a5:d7:76:9a:64:
bf:18:35:d1:ec:a7:7c:fc:9e:47:a4:6d:4b:e3:14:27:78:5b:
0f:5b:ec:ed:14:90:62:f0:69:89:34:e5:9e:f3:57:2d:b5:09:
61:3b:5f:62:d3:62:5a:4c:f1:f1:31:ab:e8:5e:6c:73:37:a0:
4c:12:ea:d9:6b:76:aa:16:e0:d7:ea:1b:0e:d3:3f:13:e8:26:
b2:d3:95:e1:1e:71:54:79:68:69:68:c1:83:d5:8f:e5:d9:78:
4e:eb:32:e2:66:31:dc:de:13:66:3d:dd:80:e5:23:f3:91:05:
71:5d:66:9d:c0:d5:fc:82:3a:8f:9d:68:39:47:a1:95:ba:07:
d1:e1:9b:13:00:f7:ac:f6:5d:32:f1:98:00:2b:c2:34:39:a1:
9f:2b:10:60:62:a4:76:0c:80:9e:06:e3:3b:1f:3a:8a:a8:c8:
7b:61:44:71:01:35:41:f8:57:af:06:63:7e:62:c0:25:2d:dd:
5c:54:35:46:12:96:11:15:9f:96:9d:e1:bb:52:20:a3:d1:ba:
ad:b9:2f:12:42:da:a6:ad:fa:f7:0c:fd:f0:ed:26:b3:8c:eb:
00:2c:e5:7a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+Htl2hNVopNOEofWS21cHvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkYWIwYjA4ZTUxZjgxODIyNDYyOWZiM2EyMTFkODNkNWJl
MzU0NDAwHhcNMjQwNTE3MTgwMDI2WhcNMjQwNTE4MTgwMDI2WjAzMTEwLwYDVQQD
EyhmMTcxODdlZjc4MWE3NGM0YTUxY2QyMmM4MmNkYTI2ODk3ZTBjNzBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtXPD/Oea5bShxdigAq0LIPeKtTHa
IDWg3pgkw6666GyJiz68hCeaeJ+tBSKPyUpwO51fpcvn83wONfEAtN6RnUXIf3aA
vYfsKJUNw8pDSqiwSwWl3p8qu8fdZdFzXPpfPRT6p186Ajpg6xvXxDdA4TDYmMXu
Hsl53y1xxjsO1YeXYPkQjCmvkxfYDnnzvJQJqX/oebxNUn4SXFBaYC/zqKE8/hWZ
3897xLBXegI9t6IqJN1USS67qpUPMBGX7vyGuaI/bJIVdARJB34rgUjuKoQ4NL3S
1J4vzSiynB/OKIpav5z+vCHt14vrmGdBYfWqEwPeDZNhp69fkQUUt7986QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPFxh+94GnTEpRzSLILNomiX4McMMB8GA1UdIwQY
MBaAFF2rCwjlH4GCJGKfs6IR2D1b41RAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGFzTENPVWZnWUlrWXAtem9oSFlQVnZqVkVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9lNjIwODktYjk4YS00ZmRkLTljNGUt
NjI3ODkxODJhMGYzLzEvWGFzTENPVWZnWUlrWXAtem9oSFlQVnZqVkVBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC9lNjIwODktYjk4YS00ZmRkLTljNGUtNjI3ODkxODJhMGYz
LzEvWGFzTENPVWZnWUlrWXAtem9oSFlQVnZqVkVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANyNIaEKa
NINKP1gZ/Fcy0mTDLupN7+OIr+zsWkhpAKXXdppkvxg10eynfPyeR6RtS+MUJ3hb
D1vs7RSQYvBpiTTlnvNXLbUJYTtfYtNiWkzx8TGr6F5sczegTBLq2Wt2qhbg1+ob
DtM/E+gmstOV4R5xVHloaWjBg9WP5dl4Tusy4mYx3N4TZj3dgOUj85EFcV1mncDV
/II6j51oOUehlboH0eGbEwD3rPZdMvGYACvCNDmhnysQYGKkdgyAngbjOx86iqjI
e2FEcQE1QfhXrwZjfmLAJS3dXFQ1RhKWERWflp3hu1Igo9G6rbkvEkLapq369wz9
8O0ms4zrACzleg==
-----END CERTIFICATE-----
Generated at Fri May 17 20:15:53 2024 by rpki-client on console-fra.rpki-client.org