Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft
File: hlEiwOVi5AeXaCPZThnip5T4y2I.mft (raw, json)
Hash identifier: QDiZGdw9Yk+FKCFGIC50X+yRClXpVAcFNheWoqv1PhA=
Subject key identifier: 88:AE:02:D3:EB:13:B1:76:CC:21:94:E9:AB:FE:97:3A:F6:33:16:B1
Authority key identifier: 86:51:22:C0:E5:62:E4:07:97:68:23:D9:4E:19:E2:A7:94:F8:CB:62
Certificate issuer: /CN=865122c0e562e407976823d94e19e2a794f8cb62
Certificate serial: 018F874AD58867084AD9421B77CB9A965AA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft
Manifest number: 1107
Signing time: Fri 17 May 2024 16:02:59 +0000
Manifest this update: Fri 17 May 2024 16:02:59 +0000
Manifest next update: Sat 18 May 2024 16:02:59 +0000
Files and hashes: 1: hlEiwOVi5AeXaCPZThnip5T4y2I.crl (hash: LxEGv5ygoK6Oqd+5lx/OX4GIGcd8wTxF4kT/PS7w7Ec=)
2: x-Yrl-SFkik500bWrRDQb3oNSyE.roa (hash: H/EwVY9tCGLK9wuVkXsGdgdwSiael+yVYOPvQPnyiTQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:d5:88:67:08:4a:d9:42:1b:77:cb:9a:96:5a:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865122c0e562e407976823d94e19e2a794f8cb62
Validity
Not Before: May 17 16:02:59 2024 GMT
Not After : May 18 16:02:59 2024 GMT
Subject: CN=88ae02d3eb13b176cc2194e9abfe973af63316b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:9a:a3:53:77:1b:45:b2:64:f5:dc:5f:85:c5:
88:7f:57:f7:7e:38:e5:07:95:de:32:43:55:60:db:
d3:73:25:ed:66:8e:12:b7:b1:06:14:20:0a:ef:97:
98:6a:30:97:bb:b9:ff:d3:ba:46:e5:8b:23:02:29:
ef:09:12:ae:9d:a8:26:00:be:64:8a:3b:20:7d:7b:
58:19:3e:42:a4:11:40:5b:92:09:1f:30:1e:e9:c7:
0e:57:9c:f6:3c:71:d2:0a:aa:06:10:de:b8:54:2b:
b6:46:ef:b9:aa:c9:c4:45:6b:9d:44:a7:ee:37:e7:
ba:23:6e:a3:92:bc:d2:ea:2f:30:85:15:01:0b:03:
99:29:01:00:83:28:c8:75:c9:1a:e1:ae:fd:dd:7a:
60:ea:10:93:c5:fa:fa:8b:b0:83:c1:57:37:f3:5a:
fa:e4:17:21:93:f3:ac:49:0a:d8:cc:04:5c:54:a2:
aa:2e:10:08:99:ed:72:d0:83:f5:5c:a2:b2:c0:cd:
0b:2e:cb:3a:f9:48:e1:41:2e:2b:23:88:52:f0:8d:
46:03:f5:82:06:be:e3:4a:8b:fc:52:ad:f5:12:42:
bb:9c:0a:37:0e:0a:93:07:be:ef:82:5e:1c:cd:a4:
50:7b:e8:8b:79:a2:72:f7:da:83:d1:56:bd:89:ec:
76:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:AE:02:D3:EB:13:B1:76:CC:21:94:E9:AB:FE:97:3A:F6:33:16:B1
X509v3 Authority Key Identifier:
keyid:86:51:22:C0:E5:62:E4:07:97:68:23:D9:4E:19:E2:A7:94:F8:CB:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:8b:b9:00:48:83:f5:05:ec:41:cd:da:d4:1c:63:55:0a:6b:
94:89:5f:e0:5b:90:9b:42:53:c6:2b:59:31:ae:b9:04:4f:79:
dc:52:20:2f:f1:57:b1:24:2f:b2:db:97:ee:e7:89:63:40:74:
e4:a4:ae:d3:5a:2f:a6:d9:7a:8e:38:d5:7d:fa:18:0a:8d:c1:
b9:03:cb:cc:44:c5:5a:37:ce:08:8d:c0:42:a5:2e:09:37:d4:
11:67:30:b0:a0:d4:24:c4:4f:31:0c:48:df:6b:e6:96:7b:e3:
8d:f1:aa:6c:14:c1:e6:c4:c5:0f:59:f9:9e:d8:f0:60:41:bc:
ae:c1:51:b4:02:3e:dc:dc:76:82:d5:c9:d5:5e:7d:41:bb:22:
3b:62:7b:a2:f8:8b:ad:eb:05:d4:22:9a:bd:fb:71:24:b2:87:
4f:94:25:9e:e7:72:a6:25:b2:c7:9f:85:5f:0a:4d:ae:df:b4:
d3:0b:a2:79:c0:c2:4a:57:de:82:d5:ad:35:3a:32:91:b1:bf:
9c:26:44:66:9d:a9:03:e0:af:52:e9:f9:46:b3:fc:0d:2a:20:
02:c3:97:9c:5a:4b:51:4c:b1:a6:40:38:8d:ae:99:3d:71:05:
52:fd:0c:12:9d:40:b0:b6:a8:8c:24:92:a2:70:0d:b4:bf:c4:
ae:36:6a:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+HStWIZwhK2UIbd8uallqpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2NTEyMmMwZTU2MmU0MDc5NzY4MjNkOTRlMTllMmE3OTRm
OGNiNjIwHhcNMjQwNTE3MTYwMjU5WhcNMjQwNTE4MTYwMjU5WjAzMTEwLwYDVQQD
Eyg4OGFlMDJkM2ViMTNiMTc2Y2MyMTk0ZTlhYmZlOTczYWY2MzMxNmIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlpqjU3cbRbJk9dxfhcWIf1f3fjjl
B5XeMkNVYNvTcyXtZo4St7EGFCAK75eYajCXu7n/07pG5YsjAinvCRKunagmAL5k
ijsgfXtYGT5CpBFAW5IJHzAe6ccOV5z2PHHSCqoGEN64VCu2Ru+5qsnERWudRKfu
N+e6I26jkrzS6i8whRUBCwOZKQEAgyjIdcka4a793Xpg6hCTxfr6i7CDwVc381r6
5Bchk/OsSQrYzARcVKKqLhAIme1y0IP1XKKywM0LLss6+UjhQS4rI4hS8I1GA/WC
Br7jSov8Uq31EkK7nAo3DgqTB77vgl4czaRQe+iLeaJy99qD0Va9iex2YQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIiuAtPrE7F2zCGU6av+lzr2MxaxMB8GA1UdIwQY
MBaAFIZRIsDlYuQHl2gj2U4Z4qeU+MtiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGxFaXdPVmk1QWVYYUNQWlRobmlwNVQ0eTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni8wMjhiODItZmUwMy00MDI1LTk3NjUt
YjhkZDE4ZTQ4ZTg2LzEvaGxFaXdPVmk1QWVYYUNQWlRobmlwNVQ0eTJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ni8wMjhiODItZmUwMy00MDI1LTk3NjUtYjhkZDE4ZTQ4ZTg2
LzEvaGxFaXdPVmk1QWVYYUNQWlRobmlwNVQ0eTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXYu5AEiD
9QXsQc3a1BxjVQprlIlf4FuQm0JTxitZMa65BE953FIgL/FXsSQvstuX7ueJY0B0
5KSu01ovptl6jjjVffoYCo3BuQPLzETFWjfOCI3AQqUuCTfUEWcwsKDUJMRPMQxI
32vmlnvjjfGqbBTB5sTFD1n5ntjwYEG8rsFRtAI+3Nx2gtXJ1V59QbsiO2J7oviL
resF1CKavftxJLKHT5QlnudypiWyx5+FXwpNrt+00wuiecDCSlfegtWtNToykbG/
nCZEZp2pA+CvUun5RrP8DSogAsOXnFpLUUyxpkA4ja6ZPXEFUv0MEp1AsLaojCSS
onANtL/ErjZq5g==
-----END CERTIFICATE-----
Generated at Fri May 17 18:15:30 2024 by rpki-client on console-ams.rpki-client.org