Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
File: a4QIvvwC39bmGQhUh4WgCKS3TWc.mft (raw, json)
Hash identifier: n5vUVb+LAX9E7dGR2gOJVPMtlnjMdAV7wYedB9vzDDk=
Subject key identifier: 87:87:3E:6E:84:BF:63:C4:49:49:5A:FF:D4:19:53:6D:DE:6B:36:D3
Authority key identifier: 6B:84:08:BE:FC:02:DF:D6:E6:19:08:54:87:85:A0:08:A4:B7:4D:67
Certificate issuer: /CN=6b8408befc02dfd6e61908548785a008a4b74d67
Certificate serial: 018F87ED636043A40F505ACF76FA79EBAB1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a4QIvvwC39bmGQhUh4WgCKS3TWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
Manifest number: 05CA
Signing time: Fri 17 May 2024 19:00:32 +0000
Manifest this update: Fri 17 May 2024 19:00:32 +0000
Manifest next update: Sat 18 May 2024 19:00:32 +0000
Files and hashes: 1: A04gDvcOtx3oLCcHZ-woVhnKAwE.roa (hash: HI7GBazOR60FE7SlyQHFmmJ42TUEDI6WRYMXHBUPs4I=)
2: a4QIvvwC39bmGQhUh4WgCKS3TWc.crl (hash: sC0yvyFJ/lu6CRFcFCZN1fX+6wkHQ0EfLT3kL6A7hRo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/a4QIvvwC39bmGQhUh4WgCKS3TWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:ed:63:60:43:a4:0f:50:5a:cf:76:fa:79:eb:ab:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b8408befc02dfd6e61908548785a008a4b74d67
Validity
Not Before: May 17 19:00:32 2024 GMT
Not After : May 18 19:00:32 2024 GMT
Subject: CN=87873e6e84bf63c449495affd419536dde6b36d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ff:68:66:1a:11:69:a0:2d:69:8a:3f:53:a7:
7f:9b:ef:1e:11:eb:75:48:15:61:46:53:5e:91:a5:
62:3e:9e:3a:fa:a7:56:77:c7:22:a3:ba:d6:2e:d0:
80:d2:c0:ac:86:a5:a1:df:39:94:dd:cd:6b:2f:39:
87:40:2e:b3:9a:ba:71:36:a7:88:3c:bd:a9:c7:2f:
7f:07:f3:10:73:f9:9f:5e:ab:02:4e:86:95:09:22:
08:72:4e:46:31:09:63:ae:1a:b0:da:29:37:00:42:
15:25:02:26:87:b3:c6:83:63:12:a0:21:0c:55:53:
f4:ab:81:c2:3a:e3:65:41:5f:27:25:d7:b4:d3:65:
85:dc:03:9c:22:91:94:3a:8b:7e:43:ad:a2:a0:5a:
8e:aa:3e:96:41:41:31:7c:15:8a:8c:b0:da:a8:d2:
b6:8e:e7:ec:3c:4f:33:6c:04:3c:98:d7:07:1e:44:
ed:e2:ab:5c:58:dd:5b:09:cd:73:fb:62:c7:2e:07:
2c:e4:83:eb:87:d4:1a:fd:aa:ca:61:53:28:52:89:
44:1e:a1:2c:2d:88:c2:1a:21:bd:21:be:63:ea:d3:
2f:63:b9:e4:44:45:ca:7c:b6:6b:35:b2:92:f7:e6:
1f:fc:fd:a8:fe:2e:6d:9d:0f:14:92:95:12:88:2c:
ce:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:87:3E:6E:84:BF:63:C4:49:49:5A:FF:D4:19:53:6D:DE:6B:36:D3
X509v3 Authority Key Identifier:
keyid:6B:84:08:BE:FC:02:DF:D6:E6:19:08:54:87:85:A0:08:A4:B7:4D:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4QIvvwC39bmGQhUh4WgCKS3TWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:c1:bc:1e:15:4d:83:47:ef:bd:25:d4:5f:a4:94:db:5e:54:
82:14:56:1d:64:16:5e:b6:6e:31:90:9c:3f:ef:a8:54:b0:9d:
66:e2:a7:fc:28:73:e5:fc:9a:0d:1f:82:96:06:d4:3f:3c:56:
89:18:b0:c7:65:15:98:d3:8c:bc:78:ab:c6:23:91:76:34:74:
54:9a:da:60:18:eb:9b:ea:5d:69:a4:58:3f:20:d0:a3:51:66:
f0:d3:bc:b0:55:f1:c6:0d:42:68:4e:89:ec:f0:96:a6:39:dc:
23:f4:82:df:a7:a1:a5:43:da:9e:23:9e:2f:5b:c1:13:6b:6a:
15:32:b3:9f:61:ef:40:4c:e1:c1:d8:5f:d2:db:35:57:3f:1b:
c0:97:b6:5f:17:84:ea:c9:af:5c:4e:ca:a3:e1:85:d1:62:24:
ba:2a:c7:74:37:d8:1f:05:ef:ce:a5:1d:d3:07:6c:a2:6b:b7:
77:bf:24:02:46:dc:34:f8:8b:ff:7d:7c:dd:2c:85:e6:4c:f5:
8b:ca:67:4d:3c:db:ee:03:1c:7f:f7:bf:6c:06:a0:36:65:cf:
f3:be:12:6f:e0:70:f9:53:ce:ee:46:db:30:db:53:90:55:a5:
7c:3c:16:d3:19:b1:3e:61:26:1c:b3:b1:38:06:f8:5f:a2:e5:
8c:f8:13:95
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+H7WNgQ6QPUFrPdvp566sbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiODQwOGJlZmMwMmRmZDZlNjE5MDg1NDg3ODVhMDA4YTRi
NzRkNjcwHhcNMjQwNTE3MTkwMDMyWhcNMjQwNTE4MTkwMDMyWjAzMTEwLwYDVQQD
Eyg4Nzg3M2U2ZTg0YmY2M2M0NDk0OTVhZmZkNDE5NTM2ZGRlNmIzNmQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwf9oZhoRaaAtaYo/U6d/m+8eEet1
SBVhRlNekaViPp46+qdWd8cio7rWLtCA0sCshqWh3zmU3c1rLzmHQC6zmrpxNqeI
PL2pxy9/B/MQc/mfXqsCToaVCSIIck5GMQljrhqw2ik3AEIVJQImh7PGg2MSoCEM
VVP0q4HCOuNlQV8nJde002WF3AOcIpGUOot+Q62ioFqOqj6WQUExfBWKjLDaqNK2
jufsPE8zbAQ8mNcHHkTt4qtcWN1bCc1z+2LHLgcs5IPrh9Qa/arKYVMoUolEHqEs
LYjCGiG9Ib5j6tMvY7nkREXKfLZrNbKS9+Yf/P2o/i5tnQ8UkpUSiCzOHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIeHPm6Ev2PESUla/9QZU23eazbTMB8GA1UdIwQY
MBaAFGuECL78At/W5hkIVIeFoAikt01nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTRRSXZ2d0MzOWJtR1FoVWg0V2dDS1MzVFdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS85ZTYxNWUtMzYxMC00NTIwLTk0ODQt
N2E4YmFlZWY1ZWU0LzEvYTRRSXZ2d0MzOWJtR1FoVWg0V2dDS1MzVFdjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZS85ZTYxNWUtMzYxMC00NTIwLTk0ODQtN2E4YmFlZWY1ZWU0
LzEvYTRRSXZ2d0MzOWJtR1FoVWg0V2dDS1MzVFdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ8G8HhVN
g0fvvSXUX6SU215UghRWHWQWXrZuMZCcP++oVLCdZuKn/Chz5fyaDR+ClgbUPzxW
iRiwx2UVmNOMvHirxiORdjR0VJraYBjrm+pdaaRYPyDQo1Fm8NO8sFXxxg1CaE6J
7PCWpjncI/SC36ehpUPaniOeL1vBE2tqFTKzn2HvQEzhwdhf0ts1Vz8bwJe2XxeE
6smvXE7Ko+GF0WIkuirHdDfYHwXvzqUd0wdsomu3d78kAkbcNPiL/3183SyF5kz1
i8pnTTzb7gMcf/e/bAagNmXP874Sb+Bw+VPO7kbbMNtTkFWlfDwW0xmxPmEmHLOx
OAb4X6LljPgTlQ==
-----END CERTIFICATE-----
Generated at Fri May 17 20:17:49 2024 by rpki-client on console-fra.rpki-client.org