Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
File: BAfWwkhET2tcN42w_-wPiZJW66M.mft (raw, json)
Hash identifier: Ee1/P7DUZa/los1LVvOQlTelLfCdTZZeEJskuR/WUiY=
Subject key identifier: DD:20:D6:08:FD:D6:C6:38:D2:69:69:51:75:CB:B7:26:81:45:53:19
Authority key identifier: 04:07:D6:C2:48:44:4F:6B:5C:37:8D:B0:FF:EC:0F:89:92:56:EB:A3
Certificate issuer: /CN=0407d6c248444f6b5c378db0ffec0f899256eba3
Certificate serial: 018F362CF9075509D9289FE9644123B8DD69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BAfWwkhET2tcN42w_-wPiZJW66M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
Manifest number: 0421
Signing time: Wed 01 May 2024 22:01:07 +0000
Manifest this update: Wed 01 May 2024 22:01:07 +0000
Manifest next update: Thu 02 May 2024 22:01:07 +0000
Files and hashes: 1: BAfWwkhET2tcN42w_-wPiZJW66M.crl (hash: Aav0VKjGGvXQnyQrA6wZR3+Dwh4rYaX+yyNPILjfgWU=)
2: gjXeT_CX85V1SmXg2yVdfWdVwpo.roa (hash: d64L+GdUi1AUohMh1W/XSeAAsIEaAyrIG0zzPdnZNHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
rsync://rpki.ripe.net/repository/DEFAULT/BAfWwkhET2tcN42w_-wPiZJW66M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 22:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:36:2c:f9:07:55:09:d9:28:9f:e9:64:41:23:b8:dd:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0407d6c248444f6b5c378db0ffec0f899256eba3
Validity
Not Before: May 1 22:01:07 2024 GMT
Not After : May 2 22:01:07 2024 GMT
Subject: CN=dd20d608fdd6c638d269695175cbb72681455319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b7:32:34:6a:5e:b2:64:ae:9f:63:ad:73:e9:
01:71:fa:18:c0:14:2a:86:8a:78:5f:39:a3:e0:9a:
da:ba:c8:9d:2d:f7:fe:32:3e:99:32:a0:4d:65:86:
df:7c:07:40:c4:67:0b:89:d6:37:5d:ed:a5:3f:72:
0f:3c:95:80:0d:53:9a:02:3f:1a:a2:1b:1f:21:ac:
f6:3c:b6:12:59:de:4c:aa:78:20:72:3d:55:00:c6:
9a:8c:b3:8b:ce:3b:f0:c2:ec:f4:1e:06:3d:eb:f9:
02:ce:1f:77:c3:c2:22:fe:0f:8c:0d:18:7d:ff:3d:
ee:25:b0:09:de:88:6a:cf:9d:b4:1e:06:3e:07:20:
23:bf:73:16:4f:85:a1:ca:dd:8d:74:f3:7b:ac:fc:
ee:66:f5:bc:ce:98:56:f4:1c:d2:08:cb:da:fb:b4:
76:35:df:67:09:48:49:44:d1:1b:8f:58:f6:52:cc:
53:00:39:b3:35:64:d0:34:a3:e1:be:97:0b:32:03:
58:8c:0d:f5:74:3d:02:13:29:6c:70:28:1b:a4:eb:
36:1c:f0:2a:ac:fd:30:fd:4f:34:bb:d7:53:a9:75:
48:6e:c9:25:05:ca:df:cc:72:3c:ca:24:62:9b:ff:
24:d3:7a:c3:12:a3:33:4f:e2:ad:cd:81:20:9a:37:
e8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:20:D6:08:FD:D6:C6:38:D2:69:69:51:75:CB:B7:26:81:45:53:19
X509v3 Authority Key Identifier:
keyid:04:07:D6:C2:48:44:4F:6B:5C:37:8D:B0:FF:EC:0F:89:92:56:EB:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BAfWwkhET2tcN42w_-wPiZJW66M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:d7:86:20:3a:eb:01:81:b2:89:e9:b7:57:7e:ac:dd:84:7c:
9c:23:78:06:69:1d:4a:37:e2:a0:49:94:6b:e2:30:18:71:de:
79:6b:d1:89:22:e2:be:03:9c:52:7c:08:bc:03:55:93:e6:14:
c8:98:82:16:d1:12:f4:fb:78:24:a6:8d:c6:9c:6e:ee:7d:bc:
68:fa:88:31:31:86:4c:37:40:00:a0:59:66:93:96:e2:fa:95:
ad:4e:32:8b:98:e8:06:88:72:7f:df:e7:cd:a0:90:02:b9:66:
12:0d:25:b1:a0:fc:ee:47:a5:4f:fd:9d:e8:8f:05:ab:a5:11:
2c:83:17:bc:f2:9d:78:28:71:61:dc:0f:39:15:44:1c:93:d6:
2b:1f:6d:70:85:ac:bc:dc:92:bb:48:2d:16:47:94:81:8f:03:
bd:4e:ba:87:9f:71:17:11:cf:a4:5a:92:d2:aa:39:8a:74:f4:
2c:05:37:1b:91:32:e7:1d:5b:7f:ef:60:69:9b:30:d7:31:b1:
9b:45:d3:da:72:2c:74:28:33:5d:4d:02:5b:7f:12:0d:d1:c4:
a8:e0:f4:7a:e6:18:d1:ff:8b:22:1e:4b:3c:0e:da:53:91:a5:
3f:0e:23:18:9d:7d:73:63:01:3b:cd:25:28:1a:33:a4:cb:28:
9f:5b:9c:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY82LPkHVQnZKJ/pZEEjuN1pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0MDdkNmMyNDg0NDRmNmI1YzM3OGRiMGZmZWMwZjg5OTI1
NmViYTMwHhcNMjQwNTAxMjIwMTA3WhcNMjQwNTAyMjIwMTA3WjAzMTEwLwYDVQQD
EyhkZDIwZDYwOGZkZDZjNjM4ZDI2OTY5NTE3NWNiYjcyNjgxNDU1MzE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsbcyNGpesmSun2Otc+kBcfoYwBQq
hop4Xzmj4JrausidLff+Mj6ZMqBNZYbffAdAxGcLidY3Xe2lP3IPPJWADVOaAj8a
ohsfIaz2PLYSWd5Mqnggcj1VAMaajLOLzjvwwuz0HgY96/kCzh93w8Ii/g+MDRh9
/z3uJbAJ3ohqz520HgY+ByAjv3MWT4Whyt2NdPN7rPzuZvW8zphW9BzSCMva+7R2
Nd9nCUhJRNEbj1j2UsxTADmzNWTQNKPhvpcLMgNYjA31dD0CEylscCgbpOs2HPAq
rP0w/U80u9dTqXVIbsklBcrfzHI8yiRim/8k03rDEqMzT+KtzYEgmjfoxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN0g1gj91sY40mlpUXXLtyaBRVMZMB8GA1UdIwQY
MBaAFAQH1sJIRE9rXDeNsP/sD4mSVuujMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQkFmV3draEVUMnRjTjQyd18td1BpWkpXNjZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi81ZjllMWYtMDk3MS00NDQ2LWE2MTEt
ZmFkMTliZGM3OTJiLzEvQkFmV3draEVUMnRjTjQyd18td1BpWkpXNjZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi81ZjllMWYtMDk3MS00NDQ2LWE2MTEtZmFkMTliZGM3OTJi
LzEvQkFmV3draEVUMnRjTjQyd18td1BpWkpXNjZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUNeGIDrr
AYGyiem3V36s3YR8nCN4BmkdSjfioEmUa+IwGHHeeWvRiSLivgOcUnwIvANVk+YU
yJiCFtES9Pt4JKaNxpxu7n28aPqIMTGGTDdAAKBZZpOW4vqVrU4yi5joBohyf9/n
zaCQArlmEg0lsaD87kelT/2d6I8Fq6URLIMXvPKdeChxYdwPORVEHJPWKx9tcIWs
vNySu0gtFkeUgY8DvU66h59xFxHPpFqS0qo5inT0LAU3G5Ey5x1bf+9gaZsw1zGx
m0XT2nIsdCgzXU0CW38SDdHEqOD0euYY0f+LIh5LPA7aU5GlPw4jGJ19c2MBO80l
KBozpMson1ucUA==
-----END CERTIFICATE-----
Generated at Thu May 2 06:55:15 2024 by rpki-client on console-fra.rpki-client.org