Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.mft
File: OitQeZsxwLFFEkZQ1xG844PWcDk.mft (raw, json)
Hash identifier: n6pcr3yetUYXYlt9/LlZK5YZ/sG5GcReVQ0j2IeB9iw=
Subject key identifier: B8:CD:9C:04:67:F9:59:D2:DB:12:C1:7C:D2:7F:2B:7F:40:46:97:E3
Authority key identifier: 3A:2B:50:79:9B:31:C0:B1:45:12:46:50:D7:11:BC:E3:83:D6:70:39
Certificate issuer: /CN=3a2b50799b31c0b145124650d711bce383d67039
Certificate serial: 018F86A3B8C603F8DD1FF3C16614944D5C70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OitQeZsxwLFFEkZQ1xG844PWcDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.mft
Manifest number: 05C9
Signing time: Fri 17 May 2024 13:00:27 +0000
Manifest this update: Fri 17 May 2024 13:00:27 +0000
Manifest next update: Sat 18 May 2024 13:00:27 +0000
Files and hashes: 1: OitQeZsxwLFFEkZQ1xG844PWcDk.crl (hash: A9MiVHDSVVSFwCSUzTQZd3DmWB6lxiPLRuUJKwCd5Qw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OitQeZsxwLFFEkZQ1xG844PWcDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 13:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:a3:b8:c6:03:f8:dd:1f:f3:c1:66:14:94:4d:5c:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a2b50799b31c0b145124650d711bce383d67039
Validity
Not Before: May 17 13:00:27 2024 GMT
Not After : May 18 13:00:27 2024 GMT
Subject: CN=b8cd9c0467f959d2db12c17cd27f2b7f404697e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c2:3e:16:e7:71:9c:c5:79:27:85:e4:4a:37:
e9:ff:78:77:5a:75:69:87:9d:44:c7:92:ab:a3:af:
31:e4:9a:13:7f:c6:b9:c3:3b:5e:4a:70:ed:2e:e2:
0c:2a:87:b2:65:77:4e:35:08:f7:ca:ee:37:22:f9:
21:6e:77:e5:31:18:7e:6b:b3:99:d8:42:e3:08:27:
7e:9f:a0:5f:f0:ed:5a:2d:08:fc:c3:58:97:b7:b1:
e1:ca:03:6d:63:68:ba:85:9a:59:2f:a7:c9:ee:f9:
36:dd:94:ee:9b:1e:97:b7:10:be:94:2f:7a:af:06:
68:0f:69:21:06:8f:ff:8d:8f:c4:4d:be:24:48:8c:
f0:13:a7:66:f5:93:34:a6:86:de:e8:c9:58:c8:dc:
7d:b3:31:65:06:06:87:49:c8:cd:e7:b9:2f:cf:ce:
70:d4:b5:0e:f6:9e:64:9d:9a:a2:14:95:b1:9e:d2:
50:3c:f5:73:7c:1c:30:ec:7a:d2:20:bb:80:36:4c:
37:d6:14:23:24:3d:26:71:23:6b:05:47:9b:01:c9:
a2:b7:20:11:eb:a2:72:e4:94:3c:d7:5b:2c:ab:c8:
a1:58:89:e0:ff:41:2b:6d:4f:41:77:f3:30:bf:6b:
0a:c3:f7:56:cd:be:ec:48:11:b6:fc:d9:f8:ad:3f:
e3:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:CD:9C:04:67:F9:59:D2:DB:12:C1:7C:D2:7F:2B:7F:40:46:97:E3
X509v3 Authority Key Identifier:
keyid:3A:2B:50:79:9B:31:C0:B1:45:12:46:50:D7:11:BC:E3:83:D6:70:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OitQeZsxwLFFEkZQ1xG844PWcDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:10:7e:5a:af:0c:75:9a:ab:cc:1f:57:7f:af:22:1b:99:af:
54:6f:23:94:c2:6f:f3:57:52:f4:85:fd:d7:6d:79:d9:1c:c0:
31:6f:3b:a5:38:16:dc:f0:eb:fb:e9:6d:5e:5f:6a:a9:8e:02:
66:ad:69:cb:e5:e5:dd:69:37:b7:e2:52:e8:ce:61:48:af:0d:
95:a4:9e:c5:1f:f3:65:25:28:36:d7:d9:48:e6:83:5c:b8:6d:
09:62:20:d3:b4:0b:7a:d1:6e:e9:44:ba:e7:d5:fc:bf:ff:c5:
c3:71:17:e3:d8:ee:e5:6b:cc:e3:be:ad:d7:8a:a6:8f:33:ff:
8e:4d:41:3d:f5:54:cd:80:06:20:c2:68:d9:e2:da:e1:0c:9a:
49:00:e0:81:26:54:71:08:bb:fa:0b:9b:50:20:c8:97:48:97:
a8:6f:53:9b:6b:18:1f:99:9a:44:9e:7f:b4:a0:2c:4b:68:88:
af:6f:39:c3:28:e1:57:62:2e:e0:db:50:e0:9c:51:52:ac:1c:
ca:cf:ce:43:fe:6f:64:82:23:7f:96:15:ff:d2:73:e3:95:3f:
ed:f3:43:a9:64:24:9c:38:b3:68:a3:49:da:8d:e7:3f:fb:51:
37:d5:7a:ba:7b:e8:1d:7d:e9:f3:22:c6:eb:7e:8b:ab:24:f0:
f8:e3:8c:26
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+Go7jGA/jdH/PBZhSUTVxwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhMmI1MDc5OWIzMWMwYjE0NTEyNDY1MGQ3MTFiY2UzODNk
NjcwMzkwHhcNMjQwNTE3MTMwMDI3WhcNMjQwNTE4MTMwMDI3WjAzMTEwLwYDVQQD
EyhiOGNkOWMwNDY3Zjk1OWQyZGIxMmMxN2NkMjdmMmI3ZjQwNDY5N2UzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn8I+FudxnMV5J4XkSjfp/3h3WnVp
h51Ex5Kro68x5JoTf8a5wzteSnDtLuIMKoeyZXdONQj3yu43IvkhbnflMRh+a7OZ
2ELjCCd+n6Bf8O1aLQj8w1iXt7HhygNtY2i6hZpZL6fJ7vk23ZTumx6XtxC+lC96
rwZoD2khBo//jY/ETb4kSIzwE6dm9ZM0pobe6MlYyNx9szFlBgaHScjN57kvz85w
1LUO9p5knZqiFJWxntJQPPVzfBww7HrSILuANkw31hQjJD0mcSNrBUebAcmityAR
66Jy5JQ811ssq8ihWIng/0ErbU9Bd/Mwv2sKw/dWzb7sSBG2/Nn4rT/j7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLjNnARn+VnS2xLBfNJ/K39ARpfjMB8GA1UdIwQY
MBaAFDorUHmbMcCxRRJGUNcRvOOD1nA5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2l0UWVac3h3TEZGRWtaUTF4Rzg0NFBXY0RrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi8wMTUyYWItZDM0Ni00ZTExLWIwYzMt
MzMyNzMwZmIxYzhhLzEvT2l0UWVac3h3TEZGRWtaUTF4Rzg0NFBXY0RrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi8wMTUyYWItZDM0Ni00ZTExLWIwYzMtMzMyNzMwZmIxYzhh
LzEvT2l0UWVac3h3TEZGRWtaUTF4Rzg0NFBXY0RrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdRB+Wq8M
dZqrzB9Xf68iG5mvVG8jlMJv81dS9IX912152RzAMW87pTgW3PDr++ltXl9qqY4C
Zq1py+Xl3Wk3t+JS6M5hSK8NlaSexR/zZSUoNtfZSOaDXLhtCWIg07QLetFu6US6
59X8v//Fw3EX49ju5WvM476t14qmjzP/jk1BPfVUzYAGIMJo2eLa4QyaSQDggSZU
cQi7+gubUCDIl0iXqG9Tm2sYH5maRJ5/tKAsS2iIr285wyjhV2Iu4NtQ4JxRUqwc
ys/OQ/5vZIIjf5YV/9Jz45U/7fNDqWQknDizaKNJ2o3nP/tRN9V6unvoHX3p8yLG
636LqyTw+OOMJg==
-----END CERTIFICATE-----
Generated at Fri May 17 18:40:58 2024 by rpki-client on console-fra.rpki-client.org