Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.mft
File: iKVZ3N1bxLZssklvLm-w6PlUqus.mft (raw, json)
Hash identifier: a5QWitALogjkavGwH4YxXD0TX62u/XaTnLUw6jVjxME=
Subject key identifier: 87:FD:7D:E4:AC:16:20:BC:45:EA:28:F7:9E:37:DC:35:CE:84:BB:79
Authority key identifier: 88:A5:59:DC:DD:5B:C4:B6:6C:B2:49:6F:2E:6F:B0:E8:F9:54:AA:EB
Certificate issuer: /CN=88a559dcdd5bc4b66cb2496f2e6fb0e8f954aaeb
Certificate serial: 018F86A371DC7097A763E883C8D539FB7ECB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKVZ3N1bxLZssklvLm-w6PlUqus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.mft
Manifest number: 0ADF
Signing time: Fri 17 May 2024 13:00:09 +0000
Manifest this update: Fri 17 May 2024 13:00:09 +0000
Manifest next update: Sat 18 May 2024 13:00:09 +0000
Files and hashes: 1: 9jxNqZ1m5S-phxgXLPFGJuBI4fE.roa (hash: cb5Q8nDenY0WDoM66jl4Mcb54ZfXILPrgszNpZXsons=)
2: iKVZ3N1bxLZssklvLm-w6PlUqus.crl (hash: Dy5ab9cXwe9iBEzDVMiCHp4qmf61UWyDmCsIpPdBIIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKVZ3N1bxLZssklvLm-w6PlUqus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 13:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:a3:71:dc:70:97:a7:63:e8:83:c8:d5:39:fb:7e:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a559dcdd5bc4b66cb2496f2e6fb0e8f954aaeb
Validity
Not Before: May 17 13:00:09 2024 GMT
Not After : May 18 13:00:09 2024 GMT
Subject: CN=87fd7de4ac1620bc45ea28f79e37dc35ce84bb79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:68:e9:11:13:e4:6c:48:1e:e0:8f:7e:7c:86:
e1:c6:fa:27:09:76:b8:54:46:30:3b:68:dc:27:c3:
f1:19:f1:1d:47:7a:37:5a:13:e8:ff:e3:54:52:5c:
a6:f0:92:7c:62:28:26:7c:7e:9b:2f:ef:20:1a:ec:
66:d5:23:ac:9d:b9:dc:31:97:b1:4e:c1:77:95:e9:
69:24:aa:1c:f6:ca:1b:3a:ee:80:ca:c0:47:64:9f:
fa:87:09:19:42:97:03:8b:3b:a9:25:9b:a8:53:32:
9d:5f:f0:5f:e2:c2:5d:f7:77:37:84:0d:03:3b:1a:
78:6d:5f:55:51:e4:00:5e:ce:d4:29:c5:44:b9:48:
42:5c:2a:af:97:3b:c6:66:48:91:f8:a4:90:54:30:
43:a2:8b:aa:32:de:aa:44:92:30:7b:5a:59:cf:44:
c7:b9:95:a1:a3:00:7d:2e:58:02:13:c6:ff:ad:95:
ad:93:8e:03:27:d7:a3:e6:2b:c6:cf:d3:9c:24:25:
1d:ec:6e:6b:ba:b7:11:dd:f0:95:0f:42:26:71:fc:
0d:83:7f:47:ee:fa:ff:fc:fa:d3:9f:fa:8a:2f:db:
69:37:42:4e:1e:ac:0e:ac:14:78:e1:1a:63:9e:24:
d1:2a:05:56:08:b3:88:09:eb:59:fb:74:7b:e1:9f:
96:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:FD:7D:E4:AC:16:20:BC:45:EA:28:F7:9E:37:DC:35:CE:84:BB:79
X509v3 Authority Key Identifier:
keyid:88:A5:59:DC:DD:5B:C4:B6:6C:B2:49:6F:2E:6F:B0:E8:F9:54:AA:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKVZ3N1bxLZssklvLm-w6PlUqus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:94:74:0c:69:d6:66:b1:ef:7c:7a:84:83:42:16:6e:77:c5:
49:98:97:78:77:e3:21:ef:b6:92:25:06:2b:04:40:c6:79:34:
36:94:1d:32:72:dd:62:7e:6f:fd:b0:bc:e6:c2:f3:7a:59:77:
11:49:46:45:1e:3b:6f:c5:b3:f9:18:1e:55:0d:00:38:51:95:
3b:5c:23:45:cc:07:d4:30:dd:58:9d:ce:63:f8:1d:21:4b:5d:
2d:46:4c:2f:95:89:40:e5:0e:9f:7b:53:e9:99:50:21:2e:8c:
b6:ae:ce:94:7e:be:29:7a:dd:e0:cb:00:1e:5d:67:fe:9b:b9:
90:e2:48:24:a5:74:72:d6:b8:bf:f3:af:2d:fa:dc:59:31:ff:
fb:26:73:21:0b:45:a4:3c:18:5a:d9:31:d4:4b:3b:db:c7:30:
34:9c:ba:db:14:1d:2d:67:ca:24:e0:87:6e:8a:3c:ac:40:43:
69:e3:95:9d:11:e1:8b:ae:0b:80:1e:5e:38:b1:47:96:a3:c9:
ff:d6:ff:4a:51:46:51:f1:28:84:d0:44:54:4c:07:8c:7a:dd:
f1:7c:23:b2:9e:48:87:30:0e:0b:a7:f7:d9:81:51:5b:37:6d:
16:12:4c:33:9c:b6:09:0d:ae:20:5e:74:00:2e:44:e0:29:7d:
69:4d:b0:de
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+Go3HccJenY+iDyNU5+37LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4YTU1OWRjZGQ1YmM0YjY2Y2IyNDk2ZjJlNmZiMGU4Zjk1
NGFhZWIwHhcNMjQwNTE3MTMwMDA5WhcNMjQwNTE4MTMwMDA5WjAzMTEwLwYDVQQD
Eyg4N2ZkN2RlNGFjMTYyMGJjNDVlYTI4Zjc5ZTM3ZGMzNWNlODRiYjc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxmjpERPkbEge4I9+fIbhxvonCXa4
VEYwO2jcJ8PxGfEdR3o3WhPo/+NUUlym8JJ8YigmfH6bL+8gGuxm1SOsnbncMZex
TsF3lelpJKoc9sobOu6AysBHZJ/6hwkZQpcDizupJZuoUzKdX/Bf4sJd93c3hA0D
Oxp4bV9VUeQAXs7UKcVEuUhCXCqvlzvGZkiR+KSQVDBDoouqMt6qRJIwe1pZz0TH
uZWhowB9LlgCE8b/rZWtk44DJ9ej5ivGz9OcJCUd7G5rurcR3fCVD0ImcfwNg39H
7vr//PrTn/qKL9tpN0JOHqwOrBR44RpjniTRKgVWCLOICetZ+3R74Z+WqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIf9feSsFiC8Reoo95433DXOhLt5MB8GA1UdIwQY
MBaAFIilWdzdW8S2bLJJby5vsOj5VKrrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUtWWjNOMWJ4TFpzc2tsdkxtLXc2UGxVcXVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC9hODRjZDItNDVkOS00MTc5LWE5OTct
OTIwZDJhNjIwN2E0LzEvaUtWWjNOMWJ4TFpzc2tsdkxtLXc2UGxVcXVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC9hODRjZDItNDVkOS00MTc5LWE5OTctOTIwZDJhNjIwN2E0
LzEvaUtWWjNOMWJ4TFpzc2tsdkxtLXc2UGxVcXVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMZR0DGnW
ZrHvfHqEg0IWbnfFSZiXeHfjIe+2kiUGKwRAxnk0NpQdMnLdYn5v/bC85sLzell3
EUlGRR47b8Wz+RgeVQ0AOFGVO1wjRcwH1DDdWJ3OY/gdIUtdLUZML5WJQOUOn3tT
6ZlQIS6Mtq7OlH6+KXrd4MsAHl1n/pu5kOJIJKV0cta4v/OvLfrcWTH/+yZzIQtF
pDwYWtkx1Es728cwNJy62xQdLWfKJOCHboo8rEBDaeOVnRHhi64LgB5eOLFHlqPJ
/9b/SlFGUfEohNBEVEwHjHrd8Xwjsp5IhzAOC6f32YFRWzdtFhJMM5y2CQ2uIF50
AC5E4Cl9aU2w3g==
-----END CERTIFICATE-----
Generated at Fri May 17 18:42:06 2024 by rpki-client on console-fra.rpki-client.org