Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft
File: aAONTKy9QZGZUus3CcFlM4OJAOM.mft (raw, json)
Hash identifier: RXIspxRXTJudFC8oid/KixC/+zFdQLdbWtYVcoKBj04=
Subject key identifier: BC:32:33:D5:3B:0E:36:9B:54:3F:21:4C:4F:7B:D2:8A:94:28:D9:5D
Authority key identifier: 68:03:8D:4C:AC:BD:41:91:99:52:EB:37:09:C1:65:33:83:89:00:E3
Certificate issuer: /CN=68038d4cacbd41919952eb3709c16533838900e3
Certificate serial: 018F86A39F2C45F79AEF1A0FABCED4EFEDF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft
Manifest number: 117A
Signing time: Fri 17 May 2024 13:00:21 +0000
Manifest this update: Fri 17 May 2024 13:00:21 +0000
Manifest next update: Sat 18 May 2024 13:00:21 +0000
Files and hashes: 1: 8KQQ-Gpiby7znTIielViN0qL6Us.roa (hash: boQ2YI+4QwSAWqwfaDSp88YrJS3MVk48A4s6VhuKliQ=)
2: aAONTKy9QZGZUus3CcFlM4OJAOM.crl (hash: 0qbSK7ILqmTX7DStE5AFH0UqQAUWAW2KTJmZJpn0CwY=)
3: mcegTA8KryHaQRa4XPE5O1v4yY4.roa (hash: FD5+bKCL030R5u9B0DUU4AyDw7samia6m+1hQW0MLL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 13:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:a3:9f:2c:45:f7:9a:ef:1a:0f:ab:ce:d4:ef:ed:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68038d4cacbd41919952eb3709c16533838900e3
Validity
Not Before: May 17 13:00:21 2024 GMT
Not After : May 18 13:00:21 2024 GMT
Subject: CN=bc3233d53b0e369b543f214c4f7bd28a9428d95d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5c:73:7a:35:31:09:65:97:5c:b6:55:08:be:
8d:df:db:0c:22:95:e8:2c:bd:23:ed:0a:fb:58:cd:
3b:05:09:8a:aa:0f:c3:22:58:76:b1:25:d9:fb:49:
9e:46:8d:d0:6c:4e:53:59:79:ac:f6:d5:10:5d:e6:
8a:59:16:b0:f4:0c:65:29:e4:5c:cf:25:b8:86:2a:
f9:f5:e6:c0:85:01:eb:06:5f:cb:fc:c5:bb:22:fd:
67:22:43:42:97:cc:64:7d:89:1d:02:d2:08:f3:05:
2d:4d:12:9f:81:3b:bb:43:b8:29:bd:fc:cf:e8:17:
ef:4c:be:47:27:b5:80:73:5a:d7:67:9a:de:89:f5:
f5:22:99:23:04:20:6e:09:b5:b1:ae:54:51:d9:9b:
60:94:91:cf:2d:26:d8:35:2d:4d:70:44:0a:62:30:
90:ec:f3:4c:d4:f6:00:06:24:35:c0:24:40:66:77:
82:80:c2:fa:f6:44:b5:20:d3:ab:f6:eb:9b:af:c2:
81:98:f8:b2:c1:47:67:d6:88:e2:c5:d2:0a:f7:19:
b6:70:16:72:d2:cd:ee:10:d4:df:e8:c3:ca:db:84:
39:cb:4e:bc:f0:c6:8d:8c:92:3c:1b:85:ca:bb:0a:
62:52:7b:cd:28:34:7b:0a:ce:6a:c1:f5:f5:33:52:
19:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:32:33:D5:3B:0E:36:9B:54:3F:21:4C:4F:7B:D2:8A:94:28:D9:5D
X509v3 Authority Key Identifier:
keyid:68:03:8D:4C:AC:BD:41:91:99:52:EB:37:09:C1:65:33:83:89:00:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:89:91:0a:e4:e2:6e:08:8a:fa:1c:7e:49:de:15:90:16:77:
04:0a:8d:5a:b5:bb:96:23:7f:7f:95:a4:11:6a:ca:f7:97:5d:
fe:f6:ec:08:8b:22:0c:80:ca:d8:c7:1f:2b:5e:a3:6e:60:59:
6d:99:44:ab:22:d1:a0:31:7a:c0:51:c6:fc:6f:ac:5e:e9:e6:
af:2d:7c:d2:1c:5c:9b:a7:94:54:c5:29:e4:9b:57:05:74:fe:
0d:65:ff:59:67:0e:15:b1:04:25:bf:fc:c8:8c:5b:09:36:08:
8d:0f:25:bd:57:5c:bc:10:2a:51:e3:dc:a9:02:93:39:c8:a1:
fe:8e:dd:8a:0b:36:18:0a:02:87:ba:71:ab:d9:ef:ca:f9:1e:
73:61:79:3d:d8:c5:01:44:ab:bd:db:99:8f:f3:8b:7e:60:f1:
aa:b8:f1:0b:8c:99:91:b0:00:5e:89:e7:b1:8e:31:8c:94:df:
3c:8e:c8:4c:04:77:90:d4:7c:10:04:b3:64:16:3e:45:51:06:
73:79:ff:a6:87:03:0e:5f:81:df:41:73:6d:09:58:8c:ab:d3:
15:5a:57:e2:ce:b9:22:34:9b:3b:d0:22:24:bd:6f:1a:2b:59:
ff:82:42:75:b8:60:fc:bc:ee:9a:ff:77:c1:e6:76:2e:00:21:
ca:02:b9:19
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+Go58sRfea7xoPq87U7+31MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4MDM4ZDRjYWNiZDQxOTE5OTUyZWIzNzA5YzE2NTMzODM4
OTAwZTMwHhcNMjQwNTE3MTMwMDIxWhcNMjQwNTE4MTMwMDIxWjAzMTEwLwYDVQQD
EyhiYzMyMzNkNTNiMGUzNjliNTQzZjIxNGM0ZjdiZDI4YTk0MjhkOTVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxFxzejUxCWWXXLZVCL6N39sMIpXo
LL0j7Qr7WM07BQmKqg/DIlh2sSXZ+0meRo3QbE5TWXms9tUQXeaKWRaw9AxlKeRc
zyW4hir59ebAhQHrBl/L/MW7Iv1nIkNCl8xkfYkdAtII8wUtTRKfgTu7Q7gpvfzP
6BfvTL5HJ7WAc1rXZ5reifX1IpkjBCBuCbWxrlRR2ZtglJHPLSbYNS1NcEQKYjCQ
7PNM1PYABiQ1wCRAZneCgML69kS1INOr9uubr8KBmPiywUdn1ojixdIK9xm2cBZy
0s3uENTf6MPK24Q5y0688MaNjJI8G4XKuwpiUnvNKDR7Cs5qwfX1M1IZ6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLwyM9U7DjabVD8hTE970oqUKNldMB8GA1UdIwQY
MBaAFGgDjUysvUGRmVLrNwnBZTODiQDjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUFPTlRLeTlRWkdaVXVzM0NjRmxNNE9KQU9NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yMDcxNjctZDU1MS00MWJhLTg2YTgt
MmY1MGVhMjcyMTNjLzEvYUFPTlRLeTlRWkdaVXVzM0NjRmxNNE9KQU9NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8yMDcxNjctZDU1MS00MWJhLTg2YTgtMmY1MGVhMjcyMTNj
LzEvYUFPTlRLeTlRWkdaVXVzM0NjRmxNNE9KQU9NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATImRCuTi
bgiK+hx+Sd4VkBZ3BAqNWrW7liN/f5WkEWrK95dd/vbsCIsiDIDK2McfK16jbmBZ
bZlEqyLRoDF6wFHG/G+sXunmry180hxcm6eUVMUp5JtXBXT+DWX/WWcOFbEEJb/8
yIxbCTYIjQ8lvVdcvBAqUePcqQKTOcih/o7digs2GAoCh7pxq9nvyvkec2F5PdjF
AUSrvduZj/OLfmDxqrjxC4yZkbAAXonnsY4xjJTfPI7ITAR3kNR8EASzZBY+RVEG
c3n/pocDDl+B30FzbQlYjKvTFVpX4s65IjSbO9AiJL1vGitZ/4JCdbhg/Lzumv93
weZ2LgAhygK5GQ==
-----END CERTIFICATE-----
Generated at Fri May 17 18:41:31 2024 by rpki-client on console-fra.rpki-client.org