Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
File: DUHQpubfLhjCVnMjaNbnaCiTExA.mft (raw, json)
Hash identifier: yWwX2zhWF98i0w+evL+tr/DwAtqo7diWP6jcHv0mXAw=
Subject key identifier: 69:78:99:5D:49:E0:9A:45:50:E7:96:33:8B:D7:BC:D0:79:3C:93:6F
Authority key identifier: 0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10
Certificate issuer: /CN=0d41d0a6e6df2e18c256732368d6e76828931310
Certificate serial: 018F3776C814B121FE5C7532187CAFE01923
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
Manifest number: 0A95
Signing time: Thu 02 May 2024 04:01:22 +0000
Manifest this update: Thu 02 May 2024 04:01:22 +0000
Manifest next update: Fri 03 May 2024 04:01:22 +0000
Files and hashes: 1: DUHQpubfLhjCVnMjaNbnaCiTExA.crl (hash: C/S2neAvsTXLUbS87iUH1hJ7sfmuiCCPwrJuky3w7wE=)
2: L4NKfF-tf-nx__AzWv0yIZvYnhY.roa (hash: zA3ihhgrtvtHqG4sO/IPWPJHST//Xxv1Nig8QBl+scA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:37:76:c8:14:b1:21:fe:5c:75:32:18:7c:af:e0:19:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d41d0a6e6df2e18c256732368d6e76828931310
Validity
Not Before: May 2 04:01:22 2024 GMT
Not After : May 3 04:01:22 2024 GMT
Subject: CN=6978995d49e09a4550e796338bd7bcd0793c936f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d9:69:0b:09:48:ec:a9:01:ae:e0:2a:40:e6:
02:bd:d4:d4:71:05:b9:56:ab:7d:a7:dd:ae:01:23:
7f:f9:fd:b4:c5:03:25:36:be:96:79:00:3c:c4:54:
fd:1c:05:4a:39:15:80:1b:b0:c8:90:a7:2f:51:ba:
09:22:80:4b:12:87:f9:c7:da:76:08:d6:84:1f:6d:
a8:24:ec:6a:1b:22:50:f1:50:f7:0d:8a:c5:db:fc:
91:b8:3c:dd:15:42:62:11:4a:4b:98:01:d6:c0:12:
fd:88:db:8b:75:17:92:20:5a:58:7c:d1:ef:38:4e:
8d:e8:fe:7e:5c:c3:94:c4:98:5a:5d:7b:2e:6e:45:
18:b4:17:17:1b:86:62:9d:2a:f6:b2:77:77:f4:d1:
44:97:1e:7b:3f:e8:1b:da:53:3b:6a:52:20:95:10:
70:72:0f:6f:21:53:d6:cb:20:4e:39:84:0a:e0:67:
3b:8d:0e:a6:4f:12:d4:0f:59:31:4e:e4:51:e3:82:
8b:6c:7c:83:fc:a1:54:58:99:10:28:ea:4f:82:8c:
8d:94:1a:0a:0e:a1:2a:c3:e4:d1:10:69:83:7b:27:
f2:c4:2a:24:84:71:3f:58:b5:1c:5d:56:7e:fa:e1:
74:fb:c5:6b:71:ce:d6:da:eb:7f:ca:c9:c8:0e:47:
10:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:78:99:5D:49:E0:9A:45:50:E7:96:33:8B:D7:BC:D0:79:3C:93:6F
X509v3 Authority Key Identifier:
keyid:0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:01:11:20:29:e6:4b:50:53:53:fb:8e:d3:03:df:7b:ae:f5:
5f:13:06:8b:31:58:10:e4:bb:bf:b5:4f:04:a6:58:35:93:2e:
d4:61:22:ff:e5:95:57:5e:d0:b0:d6:d6:2e:59:1e:82:e0:54:
20:bf:11:d1:b0:c3:2d:30:21:48:a2:4f:4f:a9:ee:60:7d:a2:
1d:f7:4e:b1:f1:a4:24:a9:4c:2d:73:43:e3:9a:70:af:ce:e1:
ae:97:68:97:e7:9f:c5:ac:02:23:36:8b:48:d4:fa:e1:fc:b0:
71:0d:4d:3d:c4:eb:96:94:7c:93:ab:34:30:95:44:ec:bc:99:
40:99:1b:7d:2a:d1:86:9a:8f:2c:8b:a1:3f:ef:f6:ba:c0:1d:
b7:42:2f:50:0f:09:e6:c9:22:7e:a2:20:6c:81:f4:b0:2c:69:
a3:d0:15:47:4c:b1:13:23:d2:6f:fc:12:a5:ba:f4:48:85:de:
c5:88:f9:6a:02:4f:39:04:b6:da:e1:a7:91:ce:6b:60:1d:db:
1e:f5:f1:99:8e:17:30:f2:bc:85:e9:54:c7:a4:73:99:40:e0:
a6:f8:c4:9e:f3:cf:28:1b:cb:14:ee:9a:55:d1:e8:05:5e:3c:
16:77:bc:a3:d1:2d:40:19:79:b6:8f:0c:50:df:88:1e:a1:e6:
85:f1:0c:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY83dsgUsSH+XHUyGHyv4BkjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkNDFkMGE2ZTZkZjJlMThjMjU2NzMyMzY4ZDZlNzY4Mjg5
MzEzMTAwHhcNMjQwNTAyMDQwMTIyWhcNMjQwNTAzMDQwMTIyWjAzMTEwLwYDVQQD
Eyg2OTc4OTk1ZDQ5ZTA5YTQ1NTBlNzk2MzM4YmQ3YmNkMDc5M2M5MzZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNlpCwlI7KkBruAqQOYCvdTUcQW5
Vqt9p92uASN/+f20xQMlNr6WeQA8xFT9HAVKORWAG7DIkKcvUboJIoBLEof5x9p2
CNaEH22oJOxqGyJQ8VD3DYrF2/yRuDzdFUJiEUpLmAHWwBL9iNuLdReSIFpYfNHv
OE6N6P5+XMOUxJhaXXsubkUYtBcXG4ZinSr2snd39NFElx57P+gb2lM7alIglRBw
cg9vIVPWyyBOOYQK4Gc7jQ6mTxLUD1kxTuRR44KLbHyD/KFUWJkQKOpPgoyNlBoK
DqEqw+TREGmDeyfyxCokhHE/WLUcXVZ++uF0+8Vrcc7W2ut/ysnIDkcQKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGl4mV1J4JpFUOeWM4vXvNB5PJNvMB8GA1UdIwQY
MBaAFA1B0Kbm3y4YwlZzI2jW52gokxMQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFVIUXB1YmZMaGpDVm5NamFOYm5hQ2lURXhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC85ODM3YjItMGRmMC00ZjVhLTgwZGIt
NjJiNjQwYjAyZTJiLzEvRFVIUXB1YmZMaGpDVm5NamFOYm5hQ2lURXhBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC85ODM3YjItMGRmMC00ZjVhLTgwZGItNjJiNjQwYjAyZTJi
LzEvRFVIUXB1YmZMaGpDVm5NamFOYm5hQ2lURXhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGwERICnm
S1BTU/uO0wPfe671XxMGizFYEOS7v7VPBKZYNZMu1GEi/+WVV17QsNbWLlkeguBU
IL8R0bDDLTAhSKJPT6nuYH2iHfdOsfGkJKlMLXND45pwr87hrpdol+efxawCIzaL
SNT64fywcQ1NPcTrlpR8k6s0MJVE7LyZQJkbfSrRhpqPLIuhP+/2usAdt0IvUA8J
5skifqIgbIH0sCxpo9AVR0yxEyPSb/wSpbr0SIXexYj5agJPOQS22uGnkc5rYB3b
HvXxmY4XMPK8helUx6RzmUDgpvjEnvPPKBvLFO6aVdHoBV48Fne8o9EtQBl5to8M
UN+IHqHmhfEMSw==
-----END CERTIFICATE-----
Generated at Thu May 2 06:58:40 2024 by rpki-client on console-fra.rpki-client.org