Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
File: yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft (raw, json)
Hash identifier: togunFGfoPc5Pvzs2oM3uJzxtfLPoTk7lLVnmFkSHGg=
Subject key identifier: A2:78:27:0F:FF:9E:62:33:D6:18:D0:01:DD:E2:A3:DE:68:55:90:EE
Authority key identifier: CA:23:1A:43:62:BC:1E:C0:FD:B4:34:99:01:B6:1C:CF:9D:67:9D:65
Certificate issuer: /CN=ca231a4362bc1ec0fdb4349901b61ccf9d679d65
Certificate serial: 01920ACCEB5FD23EF7A0B53531F3039444C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
Manifest number: 4A
Signing time: Thu 19 Sep 2024 15:00:54 +0000
Manifest this update: Thu 19 Sep 2024 15:00:54 +0000
Manifest next update: Fri 20 Sep 2024 15:00:54 +0000
Files and hashes: 1: bw8xpCSdpnybIeooGmpGtHp_Nl8.roa (hash: liJieVqkkHupxG74jujwZ78I30NPBP+XCsDvw4l7eko=)
2: yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl (hash: 3Qj0uWCtaGyIN3qZQdeztEsbL4UQlSdhBRViD+7Alig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Sep 2024 15:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:0a:cc:eb:5f:d2:3e:f7:a0:b5:35:31:f3:03:94:44:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca231a4362bc1ec0fdb4349901b61ccf9d679d65
Validity
Not Before: Sep 19 15:00:54 2024 GMT
Not After : Sep 20 15:00:54 2024 GMT
Subject: CN=a278270fff9e6233d618d001dde2a3de685590ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4d:5d:ca:4d:c6:09:2c:bb:f2:cb:92:57:03:
8f:2b:7a:e8:89:db:88:60:33:c7:0e:86:c9:fc:db:
fe:e2:d9:04:ae:9c:dd:01:30:7a:c9:47:dc:10:94:
6b:32:27:d7:e0:54:3f:b9:c4:6d:8d:be:41:68:92:
8a:c5:42:b5:0e:dd:1f:73:86:27:5d:3f:86:f8:0d:
e8:6e:fa:f6:3d:c9:0f:0a:d7:c8:11:61:45:6e:78:
f3:b4:24:d9:a6:85:4f:e9:81:5b:7c:56:99:1a:76:
a6:dd:94:71:c8:82:aa:48:3a:f7:dc:e6:a9:99:54:
b0:39:6f:26:97:45:9d:53:dd:d6:5f:c6:48:9a:21:
c8:23:ad:22:e8:5e:80:bd:e1:6d:18:d0:db:eb:e7:
5e:64:15:73:1f:dd:21:8c:59:3d:7e:2e:47:19:23:
ba:c5:ef:ff:5c:c0:a9:ad:e2:bc:d0:71:59:f2:42:
b9:96:82:1f:31:f8:db:16:56:17:3d:0f:74:0f:01:
9a:f2:7a:4e:6e:2a:6d:36:03:c1:2b:f7:83:c0:f0:
a0:1a:32:37:a5:3f:4c:08:b8:20:1e:64:fb:6b:33:
71:e4:f3:6f:b9:aa:5c:8f:10:53:bc:43:65:dd:c6:
d8:d2:74:9b:91:87:36:08:8a:07:21:6c:65:a9:61:
bc:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:78:27:0F:FF:9E:62:33:D6:18:D0:01:DD:E2:A3:DE:68:55:90:EE
X509v3 Authority Key Identifier:
keyid:CA:23:1A:43:62:BC:1E:C0:FD:B4:34:99:01:B6:1C:CF:9D:67:9D:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:2a:e8:53:6d:21:3e:c6:de:36:be:85:08:16:38:d6:0a:77:
59:d6:34:f4:70:23:57:f4:1d:f9:25:28:28:09:44:68:85:82:
88:5a:fd:13:0f:57:00:66:e2:1d:cf:c9:fc:1f:65:16:5d:04:
dc:9e:fb:5e:48:69:c1:09:17:c1:ae:31:d6:cf:d9:8a:c6:db:
38:61:be:25:f4:63:17:f5:6c:06:71:9e:e7:20:1b:4b:cf:c4:
a3:10:27:e4:33:57:a5:06:34:a9:e3:9e:e6:48:58:0b:80:6b:
f2:8e:1e:f2:9e:a4:a4:5b:84:7b:fe:6c:88:54:39:3f:02:e1:
2d:99:90:07:76:92:a6:96:4b:0a:6e:d0:90:74:13:63:38:0e:
00:e5:68:15:97:17:04:b9:69:1a:61:37:8c:ea:2a:a6:b6:b8:
8f:4d:bc:21:ad:f1:30:74:06:8b:3d:9b:8c:56:94:bd:22:bb:
3b:2c:7c:3f:e8:85:1e:6e:de:22:48:a7:27:d6:7b:95:46:40:
92:03:08:c5:7d:4c:2b:bf:13:fc:67:c0:91:da:43:6f:43:00:
2b:bd:53:ce:c6:2c:f7:7b:7f:12:59:32:1b:a2:72:c7:0a:f0:
88:dc:e7:70:14:0a:15:35:23:cb:99:10:02:7e:2a:27:a7:14:
8c:da:cf:44
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZIKzOtf0j73oLU1MfMDlETCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhMjMxYTQzNjJiYzFlYzBmZGI0MzQ5OTAxYjYxY2NmOWQ2
NzlkNjUwHhcNMjQwOTE5MTUwMDU0WhcNMjQwOTIwMTUwMDU0WjAzMTEwLwYDVQQD
EyhhMjc4MjcwZmZmOWU2MjMzZDYxOGQwMDFkZGUyYTNkZTY4NTU5MGVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArk1dyk3GCSy78suSVwOPK3roiduI
YDPHDobJ/Nv+4tkErpzdATB6yUfcEJRrMifX4FQ/ucRtjb5BaJKKxUK1Dt0fc4Yn
XT+G+A3obvr2PckPCtfIEWFFbnjztCTZpoVP6YFbfFaZGnam3ZRxyIKqSDr33Oap
mVSwOW8ml0WdU93WX8ZImiHII60i6F6AveFtGNDb6+deZBVzH90hjFk9fi5HGSO6
xe//XMCpreK80HFZ8kK5loIfMfjbFlYXPQ90DwGa8npObiptNgPBK/eDwPCgGjI3
pT9MCLggHmT7azNx5PNvuapcjxBTvENl3cbY0nSbkYc2CIoHIWxlqWG8jwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKJ4Jw//nmIz1hjQAd3io95oVZDuMB8GA1UdIwQY
MBaAFMojGkNivB7A/bQ0mQG2HM+dZ51lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWlNYVEySzhIc0Q5dERTWkFiWWN6NTFubldVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS84NTZjMDUtZDdiMi00OTlhLWFmMzkt
MzlkZmE0OGVhNmI5LzEveWlNYVEySzhIc0Q5dERTWkFiWWN6NTFubldVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NS84NTZjMDUtZDdiMi00OTlhLWFmMzktMzlkZmE0OGVhNmI5
LzEveWlNYVEySzhIc0Q5dERTWkFiWWN6NTFubldVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAliroU20h
PsbeNr6FCBY41gp3WdY09HAjV/Qd+SUoKAlEaIWCiFr9Ew9XAGbiHc/J/B9lFl0E
3J77XkhpwQkXwa4x1s/ZisbbOGG+JfRjF/VsBnGe5yAbS8/EoxAn5DNXpQY0qeOe
5khYC4Br8o4e8p6kpFuEe/5siFQ5PwLhLZmQB3aSppZLCm7QkHQTYzgOAOVoFZcX
BLlpGmE3jOoqpra4j028Ia3xMHQGiz2bjFaUvSK7Oyx8P+iFHm7eIkinJ9Z7lUZA
kgMIxX1MK78T/GfAkdpDb0MAK71TzsYs93t/ElkyG6JyxwrwiNzncBQKFTUjy5kQ
An4qJ6cUjNrPRA==
-----END CERTIFICATE-----
Generated at Thu Sep 19 22:57:06 2024 by rpki-client on console-fra.rpki-client.org