Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
File: nEswhmFPR4OKPoCj5uBR09imkvk.mft (raw, json)
Hash identifier: x0yDuASNByAOa510CtgSmmleHmgUNuMQHua6D15Zx9E=
Subject key identifier: D8:A7:30:A5:0C:D6:58:36:D4:05:41:A3:7D:01:7A:C5:52:19:3B:BB
Authority key identifier: 9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
Certificate issuer: /CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Certificate serial: 018F87486CC1B9C1A6F2C7002C4AB756A08D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
Manifest number: 01C4
Signing time: Fri 17 May 2024 16:00:21 +0000
Manifest this update: Fri 17 May 2024 16:00:21 +0000
Manifest next update: Sat 18 May 2024 16:00:21 +0000
Files and hashes: 1: nEswhmFPR4OKPoCj5uBR09imkvk.crl (hash: r1FLjy+sPW2x/DAzVuJvYvsISNBNUEQd8+0B+XGuVmM=)
2: yT9Obr-7i0K3xxPJ2TA55I_0n7Y.roa (hash: 4qgqagsff8WDge+3SB0JOyfsf93xTAQ6K15ij/OHxUw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:48:6c:c1:b9:c1:a6:f2:c7:00:2c:4a:b7:56:a0:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Validity
Not Before: May 17 16:00:21 2024 GMT
Not After : May 18 16:00:21 2024 GMT
Subject: CN=d8a730a50cd65836d40541a37d017ac552193bbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:7f:3a:44:3f:eb:a6:32:5b:8d:fc:b6:08:69:
2c:60:c8:5a:77:3d:a4:3c:fb:9d:a5:17:4f:27:ea:
86:58:90:45:aa:c2:4c:48:15:4f:cf:3f:d7:11:3f:
26:d7:fb:df:92:f5:6f:bc:3e:8a:75:b9:4e:ba:a3:
73:f2:c5:7a:74:50:ea:76:a8:ce:93:03:38:8d:76:
6d:75:cf:16:9e:0c:98:92:f9:64:d9:f0:9d:69:38:
83:56:6a:59:ce:f1:39:e9:51:9c:4b:06:af:8f:79:
25:69:2b:8c:64:cf:34:91:ba:d1:24:bc:55:7c:2f:
4c:b4:b2:d2:fb:1d:e6:72:7f:70:0c:b1:1e:bb:6c:
d8:27:49:66:60:34:16:6b:11:ec:b0:21:eb:4d:99:
18:26:fb:84:98:72:bc:c0:52:4b:cd:e2:76:38:d8:
d0:fe:17:0d:fa:d3:4a:df:8b:b8:30:60:4c:5d:72:
a8:a6:29:43:82:7d:49:6c:7e:d4:77:7d:8c:59:8f:
bf:29:85:be:0a:be:1d:88:91:cf:67:35:05:1b:ff:
f3:fc:e3:3c:6a:1e:b0:86:a2:49:59:5a:bb:cf:36:
08:75:a2:77:ec:5b:8c:5b:24:32:76:e0:d5:fb:51:
d1:d8:1f:9f:83:a7:f3:2d:da:db:fc:e1:6e:85:9a:
4f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:A7:30:A5:0C:D6:58:36:D4:05:41:A3:7D:01:7A:C5:52:19:3B:BB
X509v3 Authority Key Identifier:
keyid:9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:aa:ec:3d:2c:98:bb:70:47:62:e5:51:db:88:e8:d9:21:28:
3d:b5:9c:df:14:e7:e8:d5:f5:11:49:89:5f:87:18:20:67:d3:
45:a8:e6:a2:e8:1e:69:b3:a9:9c:e3:7e:5a:b5:03:69:fc:e4:
06:bb:21:b7:a0:50:c4:ea:54:06:70:98:56:52:f8:59:35:a2:
64:9b:f9:42:e9:2e:12:a7:3d:46:38:bd:9a:69:9f:96:0d:87:
24:b7:da:c1:9d:0d:57:c5:03:f5:d7:77:2d:03:99:c3:e0:be:
e4:cf:c2:95:9a:2c:97:46:6b:66:c1:32:ce:27:35:9d:14:5d:
7e:50:30:91:f9:e6:cc:b8:d9:bb:dd:d3:21:9e:be:29:46:0e:
1f:b6:74:94:2b:a9:f0:ec:65:aa:74:51:5a:5f:4d:b3:96:17:
aa:7d:9e:1f:5b:a7:80:c2:0a:77:37:61:41:8b:dd:99:f5:79:
cc:08:d3:ba:a3:8f:38:26:d9:51:da:8d:d2:84:2f:98:7b:0e:
ad:91:01:b5:52:44:b3:ee:58:fd:b0:49:a2:25:52:77:9c:af:
d8:46:88:42:70:7d:cc:09:72:dc:4f:c0:ce:5c:c6:96:4d:79:
d0:13:10:a8:2b:d2:b8:41:d4:a9:c8:f1:8a:1a:eb:fb:00:36:
e5:7f:51:a2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+HSGzBucGm8scALEq3VqCNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljNGIzMDg2NjE0ZjQ3ODM4YTNlODBhM2U2ZTA1MWQzZDhh
NjkyZjkwHhcNMjQwNTE3MTYwMDIxWhcNMjQwNTE4MTYwMDIxWjAzMTEwLwYDVQQD
EyhkOGE3MzBhNTBjZDY1ODM2ZDQwNTQxYTM3ZDAxN2FjNTUyMTkzYmJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4H86RD/rpjJbjfy2CGksYMhadz2k
PPudpRdPJ+qGWJBFqsJMSBVPzz/XET8m1/vfkvVvvD6KdblOuqNz8sV6dFDqdqjO
kwM4jXZtdc8WngyYkvlk2fCdaTiDVmpZzvE56VGcSwavj3klaSuMZM80kbrRJLxV
fC9MtLLS+x3mcn9wDLEeu2zYJ0lmYDQWaxHssCHrTZkYJvuEmHK8wFJLzeJ2ONjQ
/hcN+tNK34u4MGBMXXKopilDgn1JbH7Ud32MWY+/KYW+Cr4diJHPZzUFG//z/OM8
ah6whqJJWVq7zzYIdaJ37FuMWyQyduDV+1HR2B+fg6fzLdrb/OFuhZpP3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNinMKUM1lg21AVBo30BesVSGTu7MB8GA1UdIwQY
MBaAFJxLMIZhT0eDij6Ao+bgUdPYppL5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkVzd2htRlBSNE9LUG9DajV1QlIwOWlta3ZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82Mjk2ZDctYzAwOC00YzMxLWFlN2Et
ODRlZjljYWJiOWI2LzEvbkVzd2htRlBSNE9LUG9DajV1QlIwOWlta3ZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82Mjk2ZDctYzAwOC00YzMxLWFlN2EtODRlZjljYWJiOWI2
LzEvbkVzd2htRlBSNE9LUG9DajV1QlIwOWlta3ZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA6rsPSyY
u3BHYuVR24jo2SEoPbWc3xTn6NX1EUmJX4cYIGfTRajmougeabOpnON+WrUDafzk
Brsht6BQxOpUBnCYVlL4WTWiZJv5QukuEqc9Rji9mmmflg2HJLfawZ0NV8UD9dd3
LQOZw+C+5M/ClZosl0ZrZsEyzic1nRRdflAwkfnmzLjZu93TIZ6+KUYOH7Z0lCup
8OxlqnRRWl9Ns5YXqn2eH1ungMIKdzdhQYvdmfV5zAjTuqOPOCbZUdqN0oQvmHsO
rZEBtVJEs+5Y/bBJoiVSd5yv2EaIQnB9zAly3E/AzlzGlk150BMQqCvSuEHUqcjx
ihrr+wA25X9Rog==
-----END CERTIFICATE-----
Generated at Fri May 17 18:39:37 2024 by rpki-client on console-fra.rpki-client.org