Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.mft
File: M-okCE9ribBlVZkQ4DEetRS-uxE.mft (raw, json)
Hash identifier: Yt2ANF7BQOMz6FpU3bCduZTRyZOsar+C95NzoYcKwZY=
Subject key identifier: 92:A0:BA:D8:77:0B:90:26:D8:E2:32:BA:11:C4:AC:25:8D:2E:AD:9D
Authority key identifier: 33:EA:24:08:4F:6B:89:B0:65:55:99:10:E0:31:1E:B5:14:BE:BB:11
Certificate issuer: /CN=33ea24084f6b89b065559910e0311eb514bebb11
Certificate serial: 018F87495585AB5DDCC784E993D51DAF9991
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M-okCE9ribBlVZkQ4DEetRS-uxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.mft
Manifest number: 04AF
Signing time: Fri 17 May 2024 16:01:21 +0000
Manifest this update: Fri 17 May 2024 16:01:21 +0000
Manifest next update: Sat 18 May 2024 16:01:21 +0000
Files and hashes: 1: M-okCE9ribBlVZkQ4DEetRS-uxE.crl (hash: QbYJUgDAVXI9E7LA6Uy1sJ7YyIwwk4rqkWcawvpp/w0=)
2: u1golxCdnIwv9i_BsPgKmr2g3vI.roa (hash: 0y8aYsZLNzu6J8ZCgkmbf3RhIowBAVptIn8LjGcw7nc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.mft
rsync://rpki.ripe.net/repository/DEFAULT/M-okCE9ribBlVZkQ4DEetRS-uxE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:55:85:ab:5d:dc:c7:84:e9:93:d5:1d:af:99:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33ea24084f6b89b065559910e0311eb514bebb11
Validity
Not Before: May 17 16:01:21 2024 GMT
Not After : May 18 16:01:21 2024 GMT
Subject: CN=92a0bad8770b9026d8e232ba11c4ac258d2ead9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:0c:22:08:70:13:7f:22:62:86:f7:05:b8:98:
b1:7e:b9:9d:f8:1c:ed:e6:cf:0c:5e:13:5a:27:ea:
72:56:dc:1f:ed:0d:14:46:ec:47:a6:70:01:9e:ec:
ed:32:f3:87:ec:25:97:55:85:78:31:00:b5:87:e1:
12:f3:e9:ed:60:7e:a6:a9:db:d5:28:ad:c6:9a:91:
42:15:6a:6e:0e:7c:31:0a:09:27:f2:cc:6a:ca:09:
23:7e:89:b1:30:19:4d:24:af:c4:63:80:f5:42:20:
70:54:89:59:c1:9b:e6:1e:dd:88:a5:f7:53:cd:3c:
93:16:88:17:c5:fe:d2:de:09:b3:f0:43:55:12:0d:
1b:07:d5:e4:61:e2:eb:98:11:ea:dd:67:1e:01:dd:
f0:b0:7e:90:f9:74:11:11:cb:18:98:e3:20:dc:7a:
b0:a2:0b:ee:74:1f:5f:f9:ec:03:f0:95:26:f2:ed:
2c:5b:46:97:27:81:5b:ea:b2:76:97:fa:7d:d6:e9:
20:45:11:07:2c:6f:a4:20:94:37:c3:a1:8b:2a:1c:
65:33:f9:06:56:70:99:64:ad:bc:c1:54:6c:77:22:
8a:21:b0:e4:44:ea:3b:d3:b8:a4:53:9a:a3:5d:ab:
04:7c:1e:fa:d9:9b:37:f1:65:41:dd:4a:90:eb:b5:
ef:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:A0:BA:D8:77:0B:90:26:D8:E2:32:BA:11:C4:AC:25:8D:2E:AD:9D
X509v3 Authority Key Identifier:
keyid:33:EA:24:08:4F:6B:89:B0:65:55:99:10:E0:31:1E:B5:14:BE:BB:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M-okCE9ribBlVZkQ4DEetRS-uxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:66:2b:b1:f9:4c:e0:37:71:97:e9:55:91:14:bb:a1:9e:5f:
56:98:93:50:60:f1:94:53:b5:f7:d6:3a:17:fb:24:00:d2:5f:
3f:a1:68:51:69:34:82:b9:e4:1a:33:d2:19:91:7a:67:c7:52:
8b:2c:38:80:f0:f2:0a:66:ee:bc:93:39:0c:ce:0c:e9:6f:13:
71:e6:8f:9a:32:42:df:5f:52:67:97:90:95:2d:6f:b7:4d:db:
b0:a8:3c:81:e0:62:26:8d:b2:f4:fa:3a:a5:40:b2:e4:56:c5:
53:96:45:39:c6:42:a3:6d:8f:cb:39:60:00:6e:0e:78:f7:f7:
59:e2:49:34:57:a9:09:c9:49:04:fe:1d:ed:66:a4:c4:e0:6d:
f1:35:b0:02:4f:ef:83:a9:73:a4:3e:02:07:f8:71:8a:ca:ce:
05:93:2d:4c:1f:54:32:01:d5:15:3f:c1:26:e2:6a:e4:8f:90:
2c:06:f3:4d:10:05:24:83:f4:a4:99:ca:96:39:61:45:2e:63:
b1:cd:1f:9d:76:37:e1:4e:95:f1:a9:43:c7:14:5e:08:b4:66:
0d:67:6f:b5:2b:55:c0:ed:06:a3:4b:1b:31:e0:7b:69:25:4b:
0c:e6:07:ca:19:87:e5:a3:49:10:72:bd:54:15:c9:3b:f9:3b:
1d:b0:a5:a4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+HSVWFq13cx4Tpk9Udr5mRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMzZWEyNDA4NGY2Yjg5YjA2NTU1OTkxMGUwMzExZWI1MTRi
ZWJiMTEwHhcNMjQwNTE3MTYwMTIxWhcNMjQwNTE4MTYwMTIxWjAzMTEwLwYDVQQD
Eyg5MmEwYmFkODc3MGI5MDI2ZDhlMjMyYmExMWM0YWMyNThkMmVhZDlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAygwiCHATfyJihvcFuJixfrmd+Bzt
5s8MXhNaJ+pyVtwf7Q0URuxHpnABnuztMvOH7CWXVYV4MQC1h+ES8+ntYH6mqdvV
KK3GmpFCFWpuDnwxCgkn8sxqygkjfomxMBlNJK/EY4D1QiBwVIlZwZvmHt2IpfdT
zTyTFogXxf7S3gmz8ENVEg0bB9XkYeLrmBHq3WceAd3wsH6Q+XQREcsYmOMg3Hqw
ogvudB9f+ewD8JUm8u0sW0aXJ4Fb6rJ2l/p91ukgRREHLG+kIJQ3w6GLKhxlM/kG
VnCZZK28wVRsdyKKIbDkROo707ikU5qjXasEfB762Zs38WVB3UqQ67XvEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJKguth3C5Am2OIyuhHErCWNLq2dMB8GA1UdIwQY
MBaAFDPqJAhPa4mwZVWZEOAxHrUUvrsRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTS1va0NFOXJpYkJsVlprUTRERWV0UlMtdXhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9mZTNmZWYtZTE3Ni00NTFhLTk1ZDUt
OTA1MTk2ZWJhMGJlLzEvTS1va0NFOXJpYkJsVlprUTRERWV0UlMtdXhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9mZTNmZWYtZTE3Ni00NTFhLTk1ZDUtOTA1MTk2ZWJhMGJl
LzEvTS1va0NFOXJpYkJsVlprUTRERWV0UlMtdXhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB2YrsflM
4Ddxl+lVkRS7oZ5fVpiTUGDxlFO199Y6F/skANJfP6FoUWk0grnkGjPSGZF6Z8dS
iyw4gPDyCmbuvJM5DM4M6W8TceaPmjJC319SZ5eQlS1vt03bsKg8geBiJo2y9Po6
pUCy5FbFU5ZFOcZCo22PyzlgAG4OePf3WeJJNFepCclJBP4d7WakxOBt8TWwAk/v
g6lzpD4CB/hxisrOBZMtTB9UMgHVFT/BJuJq5I+QLAbzTRAFJIP0pJnKljlhRS5j
sc0fnXY34U6V8alDxxReCLRmDWdvtStVwO0Go0sbMeB7aSVLDOYHyhmH5aNJEHK9
VBXJO/k7HbClpA==
-----END CERTIFICATE-----
Generated at Fri May 17 18:12:28 2024 by rpki-client on console-ams.rpki-client.org