Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.mft
File: xPLYuhsZIR-p-cDbVRVFEzECzLs.mft (raw, json)
Hash identifier: FN4H03oVXjMoNOxcAIXRnxXUVX5zvu4ng+HMFMNVuDY=
Subject key identifier: 8F:1E:3F:22:17:1A:E8:ED:78:48:FE:3A:D8:2F:5A:99:37:86:B5:8B
Authority key identifier: C4:F2:D8:BA:1B:19:21:1F:A9:F9:C0:DB:55:15:45:13:31:02:CC:BB
Certificate issuer: /CN=c4f2d8ba1b19211fa9f9c0db551545133102ccbb
Certificate serial: 018F8891ED9810F1C1379A543E31605CD9F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xPLYuhsZIR-p-cDbVRVFEzECzLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.mft
Manifest number: 1002
Signing time: Fri 17 May 2024 22:00:15 +0000
Manifest this update: Fri 17 May 2024 22:00:15 +0000
Manifest next update: Sat 18 May 2024 22:00:15 +0000
Files and hashes: 1: 4oweBRtQfp7VorxsAJO8tm5Qd_I.roa (hash: EPu/kU2GkqZ/0mGGWxe1ClHCYfdHGcrXibLeVm8SR7o=)
2: xPLYuhsZIR-p-cDbVRVFEzECzLs.crl (hash: LBVcepdISl+SAJICcmgfqdGrmtSD4+F/ool+mRrCB+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.mft
rsync://rpki.ripe.net/repository/DEFAULT/xPLYuhsZIR-p-cDbVRVFEzECzLs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:91:ed:98:10:f1:c1:37:9a:54:3e:31:60:5c:d9:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4f2d8ba1b19211fa9f9c0db551545133102ccbb
Validity
Not Before: May 17 22:00:15 2024 GMT
Not After : May 18 22:00:15 2024 GMT
Subject: CN=8f1e3f22171ae8ed7848fe3ad82f5a993786b58b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a1:8d:36:ff:51:e7:66:26:3e:f9:3a:a0:93:
01:c9:67:19:81:bb:93:7e:dd:de:fc:f1:ed:f0:1f:
93:c1:4a:9d:20:76:ad:bb:28:bc:21:2d:f1:d7:c2:
92:90:22:ef:92:69:52:f2:0c:4c:13:c9:e0:95:7f:
df:9f:7d:87:85:4e:f9:36:5f:67:6d:d1:ae:98:c3:
f5:0a:0a:6b:6a:10:3a:b0:03:a6:3c:08:93:7b:bd:
68:98:0f:a4:cb:4a:b4:f3:38:88:11:27:78:58:bd:
09:93:7a:4b:a6:ae:e3:95:2c:78:db:ab:ba:9b:a9:
0f:0e:f2:ca:8e:99:ae:50:01:3a:e4:ec:3c:39:fe:
35:85:f0:f5:cf:68:41:3f:3d:88:7f:fe:b5:c9:24:
01:d7:6b:df:d0:a4:6d:eb:d4:1c:01:ec:04:b4:0f:
bf:25:eb:01:7e:63:50:27:33:37:1b:9a:ca:18:6a:
d5:ec:07:0c:fb:52:84:3c:c2:13:ab:fe:77:77:e5:
e4:65:ba:c6:9e:3a:45:72:e9:0b:9b:37:02:9d:6d:
ab:42:66:db:f3:4c:0e:83:f4:de:cc:6f:20:58:56:
16:08:1d:92:38:bb:6d:9a:d2:8a:65:d4:8d:a6:fd:
f3:f2:0a:92:10:27:9e:6f:77:d3:b7:fc:9c:43:87:
96:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:1E:3F:22:17:1A:E8:ED:78:48:FE:3A:D8:2F:5A:99:37:86:B5:8B
X509v3 Authority Key Identifier:
keyid:C4:F2:D8:BA:1B:19:21:1F:A9:F9:C0:DB:55:15:45:13:31:02:CC:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xPLYuhsZIR-p-cDbVRVFEzECzLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:9c:78:fe:eb:2d:71:7b:d5:6c:23:fc:26:73:a5:ff:10:f4:
a8:3c:cb:82:ae:57:6a:2b:38:91:9d:a6:2b:9f:c6:4e:c7:3b:
14:5f:91:f5:b4:7d:0e:71:47:08:bd:24:8f:57:58:d1:e9:bc:
43:4f:ed:39:ca:c4:b2:78:7e:dd:0d:c8:36:f5:48:ed:36:46:
ff:db:5c:2b:7a:85:80:cf:af:44:c3:3b:10:13:e2:e1:f0:23:
5b:41:1a:88:4d:ec:9e:45:58:39:fc:77:f5:99:b4:6b:76:6f:
69:02:e0:0f:cd:e0:fa:0a:7f:86:91:c1:58:69:56:7d:71:fd:
ec:cf:f1:36:cf:67:8b:55:f4:43:65:be:1a:52:31:2f:88:6b:
d9:9e:e4:e7:95:30:2b:a3:b2:42:8b:25:1f:d4:5e:c2:1a:93:
51:68:ce:41:14:7e:8f:70:0b:51:23:67:2b:c4:a8:82:02:ce:
df:fa:15:bc:ae:9d:fd:0d:28:59:17:09:ef:ed:dc:2e:b7:82:
67:7e:b1:b4:fc:96:97:0a:e6:e6:b7:94:03:ef:32:26:b5:0e:
61:cc:b5:9c:70:5c:4f:e7:c4:8f:43:d7:fd:21:5e:bd:21:15:
65:33:c8:b3:ad:1a:49:99:7e:17:64:b9:f2:5a:7d:22:af:ea:
9c:83:df:0a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+Ike2YEPHBN5pUPjFgXNn4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0ZjJkOGJhMWIxOTIxMWZhOWY5YzBkYjU1MTU0NTEzMzEw
MmNjYmIwHhcNMjQwNTE3MjIwMDE1WhcNMjQwNTE4MjIwMDE1WjAzMTEwLwYDVQQD
Eyg4ZjFlM2YyMjE3MWFlOGVkNzg0OGZlM2FkODJmNWE5OTM3ODZiNThiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt6GNNv9R52YmPvk6oJMByWcZgbuT
ft3e/PHt8B+TwUqdIHatuyi8IS3x18KSkCLvkmlS8gxME8nglX/fn32HhU75Nl9n
bdGumMP1CgprahA6sAOmPAiTe71omA+ky0q08ziIESd4WL0Jk3pLpq7jlSx426u6
m6kPDvLKjpmuUAE65Ow8Of41hfD1z2hBPz2If/61ySQB12vf0KRt69QcAewEtA+/
JesBfmNQJzM3G5rKGGrV7AcM+1KEPMITq/53d+XkZbrGnjpFcukLmzcCnW2rQmbb
80wOg/TezG8gWFYWCB2SOLttmtKKZdSNpv3z8gqSECeeb3fTt/ycQ4eWZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI8ePyIXGujteEj+OtgvWpk3hrWLMB8GA1UdIwQY
MBaAFMTy2LobGSEfqfnA21UVRRMxAsy7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveFBMWXVoc1pJUi1wLWNEYlZSVkZFekVDekxzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC9lOGMyYmQtOThmYS00YmRmLTgwYmIt
YzVlZWU1N2VkMmU2LzEveFBMWXVoc1pJUi1wLWNEYlZSVkZFekVDekxzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC9lOGMyYmQtOThmYS00YmRmLTgwYmItYzVlZWU1N2VkMmU2
LzEveFBMWXVoc1pJUi1wLWNEYlZSVkZFekVDekxzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVpx4/ust
cXvVbCP8JnOl/xD0qDzLgq5Xais4kZ2mK5/GTsc7FF+R9bR9DnFHCL0kj1dY0em8
Q0/tOcrEsnh+3Q3INvVI7TZG/9tcK3qFgM+vRMM7EBPi4fAjW0EaiE3snkVYOfx3
9Zm0a3ZvaQLgD83g+gp/hpHBWGlWfXH97M/xNs9ni1X0Q2W+GlIxL4hr2Z7k55Uw
K6OyQoslH9RewhqTUWjOQRR+j3ALUSNnK8SoggLO3/oVvK6d/Q0oWRcJ7+3cLreC
Z36xtPyWlwrm5reUA+8yJrUOYcy1nHBcT+fEj0PX/SFevSEVZTPIs60aSZl+F2S5
8lp9Iq/qnIPfCg==
-----END CERTIFICATE-----
Generated at Sat May 18 00:03:05 2024 by rpki-client on console-ams.rpki-client.org