Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2dfefc-24b5-41fb-b1ef-11b8c283ece4/1/DoNbiW2nHS2q3_E51ltymPhBJBc.mft
File: DoNbiW2nHS2q3_E51ltymPhBJBc.mft (raw, json)
Hash identifier: v+OIYvZ73FsQSgowRIlXMl/KYYgs7txrKiQhoCvmbZI=
Subject key identifier: 29:F0:65:C4:69:E4:3D:ED:98:A0:72:75:46:C0:95:8C:9D:05:EF:BC
Authority key identifier: 0E:83:5B:89:6D:A7:1D:2D:AA:DF:F1:39:D6:5B:72:98:F8:41:24:17
Certificate issuer: /CN=0e835b896da71d2daadff139d65b7298f8412417
Certificate serial: 018F497D167515099DDDABD3A0E71A22CAB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DoNbiW2nHS2q3_E51ltymPhBJBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2dfefc-24b5-41fb-b1ef-11b8c283ece4/1/DoNbiW2nHS2q3_E51ltymPhBJBc.mft
Manifest number: 1157
Signing time: Sun 05 May 2024 16:01:25 +0000
Manifest this update: Sun 05 May 2024 16:01:25 +0000
Manifest next update: Mon 06 May 2024 16:01:25 +0000
Files and hashes: 1: DoNbiW2nHS2q3_E51ltymPhBJBc.crl (hash: 5DHT4EF2esxEs4QZkBMrsKEaqaM4LyZM1J4qAJt79gs=)
2: gqZqbl8bgZiYMRj424vElO7P6K8.roa (hash: Jv4rdhea3bNvrBpL+Xq0069YaSnnuYTyTtuhPGJQWuc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/2dfefc-24b5-41fb-b1ef-11b8c283ece4/1/DoNbiW2nHS2q3_E51ltymPhBJBc.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/2dfefc-24b5-41fb-b1ef-11b8c283ece4/1/DoNbiW2nHS2q3_E51ltymPhBJBc.mft
rsync://rpki.ripe.net/repository/DEFAULT/DoNbiW2nHS2q3_E51ltymPhBJBc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 16:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:49:7d:16:75:15:09:9d:dd:ab:d3:a0:e7:1a:22:ca:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e835b896da71d2daadff139d65b7298f8412417
Validity
Not Before: May 5 16:01:25 2024 GMT
Not After : May 6 16:01:25 2024 GMT
Subject: CN=29f065c469e43ded98a0727546c0958c9d05efbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:bf:73:d9:8c:b6:ad:87:35:78:27:c4:b3:e7:
5d:3b:1d:b9:24:3e:45:4a:53:44:38:1c:31:95:ef:
01:b1:77:d3:45:b0:cd:60:f7:91:c0:90:d1:04:e5:
62:3c:e1:20:b9:6f:a2:46:21:25:5c:26:d4:ba:d1:
94:bb:26:bc:61:f9:0e:14:c3:15:9a:5d:69:50:46:
78:a1:4a:2a:f4:24:5c:ed:97:d1:11:87:83:7b:06:
f3:76:48:dd:98:b7:9b:ca:f9:50:ef:4b:18:58:9c:
4b:df:f9:35:96:fa:1a:51:aa:a6:2b:85:93:14:6c:
fd:bc:7f:0e:6a:1e:47:16:86:ee:77:d7:89:2e:6f:
ef:c8:bf:eb:d5:cd:5a:5c:44:be:b5:51:07:65:b9:
89:b8:ea:62:a0:65:c7:11:83:e4:f5:76:f4:1a:31:
a1:21:39:fc:1f:54:5a:36:7b:6e:ee:df:a8:f5:40:
83:d8:1e:34:37:fa:19:79:ef:73:98:85:cb:09:f2:
43:2e:b9:85:ff:25:99:6e:44:de:d7:60:24:e6:99:
16:7e:f8:21:a1:52:02:ad:a0:6f:a1:e8:2f:e2:bb:
14:70:0b:ce:18:49:d7:b0:af:c8:03:c3:2e:d4:6c:
48:37:4a:1f:ea:04:56:8c:c4:e6:9e:0f:5c:3d:f8:
41:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:F0:65:C4:69:E4:3D:ED:98:A0:72:75:46:C0:95:8C:9D:05:EF:BC
X509v3 Authority Key Identifier:
keyid:0E:83:5B:89:6D:A7:1D:2D:AA:DF:F1:39:D6:5B:72:98:F8:41:24:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DoNbiW2nHS2q3_E51ltymPhBJBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2dfefc-24b5-41fb-b1ef-11b8c283ece4/1/DoNbiW2nHS2q3_E51ltymPhBJBc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2dfefc-24b5-41fb-b1ef-11b8c283ece4/1/DoNbiW2nHS2q3_E51ltymPhBJBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:2d:97:11:ea:61:ec:06:7e:44:db:c3:c4:79:7f:ed:8c:71:
d3:70:89:00:9a:ed:6d:37:f9:d5:a5:cb:b5:b2:15:22:15:31:
71:a7:e5:ac:6b:86:a7:06:5c:4f:98:af:d2:42:0d:dc:88:61:
23:66:1d:73:9b:bf:90:07:4e:07:d2:8b:1d:79:72:3b:d1:2a:
e4:fb:96:b4:6c:1a:46:df:c2:c0:99:76:19:f1:d4:44:f7:6f:
bd:8d:e6:d3:13:05:6e:fc:74:84:e4:cd:aa:79:b2:a5:f8:f6:
65:7e:b2:bb:c1:c9:2d:8c:15:fc:2a:4e:55:9a:45:f5:d1:a9:
d3:b7:a9:2a:29:7d:29:ea:55:de:58:c7:4c:69:7d:e7:38:a7:
1b:6d:af:1c:62:e2:f7:29:1c:f0:bf:35:16:c9:50:7e:35:52:
f8:69:60:ad:03:b2:6c:af:89:c7:54:be:20:f1:ca:f7:c2:a9:
76:27:78:33:9f:94:82:9c:93:a4:df:da:e1:d1:14:6e:bc:0c:
da:af:15:cb:1f:14:34:b0:46:45:da:71:f0:fe:e5:03:fe:ed:
39:d0:86:9d:ce:63:a0:9a:f0:41:e2:99:67:33:2b:08:79:7c:
19:87:a5:a1:84:36:b1:6f:e5:76:37:83:f6:1a:74:81:e2:36:
85:83:2a:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY9JfRZ1FQmd3avToOcaIsqyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlODM1Yjg5NmRhNzFkMmRhYWRmZjEzOWQ2NWI3Mjk4Zjg0
MTI0MTcwHhcNMjQwNTA1MTYwMTI1WhcNMjQwNTA2MTYwMTI1WjAzMTEwLwYDVQQD
EygyOWYwNjVjNDY5ZTQzZGVkOThhMDcyNzU0NmMwOTU4YzlkMDVlZmJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAur9z2Yy2rYc1eCfEs+ddOx25JD5F
SlNEOBwxle8BsXfTRbDNYPeRwJDRBOViPOEguW+iRiElXCbUutGUuya8YfkOFMMV
ml1pUEZ4oUoq9CRc7ZfREYeDewbzdkjdmLebyvlQ70sYWJxL3/k1lvoaUaqmK4WT
FGz9vH8Oah5HFobud9eJLm/vyL/r1c1aXES+tVEHZbmJuOpioGXHEYPk9Xb0GjGh
ITn8H1RaNntu7t+o9UCD2B40N/oZee9zmIXLCfJDLrmF/yWZbkTe12Ak5pkWfvgh
oVICraBvoegv4rsUcAvOGEnXsK/IA8Mu1GxIN0of6gRWjMTmng9cPfhBIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCnwZcRp5D3tmKBydUbAlYydBe+8MB8GA1UdIwQY
MBaAFA6DW4ltpx0tqt/xOdZbcpj4QSQXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRG9OYmlXMm5IUzJxM19FNTFsdHltUGhCSkJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8yZGZlZmMtMjRiNS00MWZiLWIxZWYt
MTFiOGMyODNlY2U0LzEvRG9OYmlXMm5IUzJxM19FNTFsdHltUGhCSkJjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi8yZGZlZmMtMjRiNS00MWZiLWIxZWYtMTFiOGMyODNlY2U0
LzEvRG9OYmlXMm5IUzJxM19FNTFsdHltUGhCSkJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGi2XEeph
7AZ+RNvDxHl/7Yxx03CJAJrtbTf51aXLtbIVIhUxcaflrGuGpwZcT5iv0kIN3Ihh
I2Ydc5u/kAdOB9KLHXlyO9Eq5PuWtGwaRt/CwJl2GfHURPdvvY3m0xMFbvx0hOTN
qnmypfj2ZX6yu8HJLYwV/CpOVZpF9dGp07epKil9KepV3ljHTGl95zinG22vHGLi
9ykc8L81FslQfjVS+GlgrQOybK+Jx1S+IPHK98Kpdid4M5+UgpyTpN/a4dEUbrwM
2q8Vyx8UNLBGRdpx8P7lA/7tOdCGnc5joJrwQeKZZzMrCHl8GYeloYQ2sW/ldjeD
9hp0geI2hYMqhg==
-----END CERTIFICATE-----
Generated at Sun May 5 19:11:37 2024 by rpki-client on console-fra.rpki-client.org