Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
File: S21-pBAzg38IwoxHQphLgrj0Q98.mft (raw, json)
Hash identifier: Ma1rx4zkFXuo53Wxj1v2kAiKHr6AQamvGI5xyJ/VPXU=
Subject key identifier: 72:51:05:C5:4B:01:A4:49:85:F1:66:9E:DC:A1:C4:08:44:D1:A9:FD
Authority key identifier: 4B:6D:7E:A4:10:33:83:7F:08:C2:8C:47:42:98:4B:82:B8:F4:43:DF
Certificate issuer: /CN=4b6d7ea41033837f08c28c4742984b82b8f443df
Certificate serial: 018F874A56AEC1B228C6357B7612E8D02A81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S21-pBAzg38IwoxHQphLgrj0Q98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
Manifest number: 0DA8
Signing time: Fri 17 May 2024 16:02:26 +0000
Manifest this update: Fri 17 May 2024 16:02:26 +0000
Manifest next update: Sat 18 May 2024 16:02:26 +0000
Files and hashes: 1: S21-pBAzg38IwoxHQphLgrj0Q98.crl (hash: cUpmZE8oxrK3F6wYtC0gcnhSCDUjBkNTjN+i2M5UJ0g=)
2: cJBbl6OHoE3JIIQCxeTJWmfo8FA.roa (hash: 8c+K2QRfSnU/66TRy7gXg26zvxbotz8QrSWZ+ztDMWs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
rsync://rpki.ripe.net/repository/DEFAULT/S21-pBAzg38IwoxHQphLgrj0Q98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:56:ae:c1:b2:28:c6:35:7b:76:12:e8:d0:2a:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b6d7ea41033837f08c28c4742984b82b8f443df
Validity
Not Before: May 17 16:02:26 2024 GMT
Not After : May 18 16:02:26 2024 GMT
Subject: CN=725105c54b01a44985f1669edca1c40844d1a9fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:79:57:17:f3:47:77:f3:2c:fc:9b:b3:25:ff:
ca:b4:d7:40:5d:10:27:12:16:2b:b4:a8:8c:b2:e2:
1b:20:24:53:69:a1:97:19:bb:60:18:b3:d2:f8:6d:
e8:7d:9e:50:33:e4:c7:47:fd:69:85:5a:68:c9:4d:
ed:16:11:70:68:cd:b8:81:34:fd:56:34:c8:41:cd:
96:77:ee:4c:59:6e:71:0f:24:63:7d:5c:a9:ba:7f:
5b:d1:72:29:45:0a:ce:0b:62:7e:25:3d:2c:15:b8:
ad:47:32:ca:3a:fe:51:bf:81:13:18:08:1d:d6:12:
1b:73:a1:d9:4a:89:5d:8d:23:cf:ab:3b:ab:06:c9:
a4:a3:70:80:7a:19:ea:22:8d:4e:60:14:e5:82:74:
e4:a7:31:ab:43:29:b7:b6:15:2a:bb:e8:b8:2a:ca:
65:f4:54:fc:4b:3a:ac:04:c2:9f:63:51:9a:39:14:
41:16:03:80:7b:0e:75:38:2d:09:b0:d4:fe:04:dc:
15:2b:3a:a5:d3:0a:43:11:f7:c9:c2:d5:29:a8:ff:
37:ef:d4:9c:c9:74:5f:92:e0:64:f1:3b:25:d8:9d:
ea:76:4e:f2:b5:b0:49:01:c9:99:ae:3b:df:44:6b:
f8:a3:7f:1d:a9:d3:cf:83:b3:2b:a2:28:99:e3:dd:
83:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:51:05:C5:4B:01:A4:49:85:F1:66:9E:DC:A1:C4:08:44:D1:A9:FD
X509v3 Authority Key Identifier:
keyid:4B:6D:7E:A4:10:33:83:7F:08:C2:8C:47:42:98:4B:82:B8:F4:43:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S21-pBAzg38IwoxHQphLgrj0Q98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:95:45:68:fe:67:6d:c2:0b:a5:90:93:de:9a:3c:a0:a1:5a:
95:cf:39:36:8e:d5:98:9a:89:fa:25:92:7b:ac:c2:15:8d:f0:
58:17:27:86:e9:26:e6:c7:1c:a1:51:4a:a2:16:0c:06:9b:cd:
75:ed:e1:e6:1c:93:f2:52:44:28:05:01:45:12:95:86:13:96:
53:d8:5a:d7:0c:3d:e9:76:28:60:4c:e5:5f:58:f5:c8:79:bd:
ac:28:97:95:8f:8c:97:ad:8e:24:db:28:9e:b1:bd:81:3c:25:
30:35:12:98:32:c5:d0:7b:31:7b:5e:2e:d6:3a:49:af:f8:52:
ca:a9:18:a2:a2:9b:85:47:17:6d:f1:54:47:94:55:f8:a3:7a:
14:36:a5:48:eb:ea:37:c7:8d:97:23:9e:37:c2:a4:9d:0d:4a:
0c:6a:49:17:06:ca:b1:2f:c2:a9:e0:20:fd:73:9a:05:98:49:
85:c9:c1:9b:8c:5c:e1:d0:b3:40:6a:93:ea:df:eb:85:76:e6:
3e:7d:58:53:d3:31:c9:99:e4:90:08:1f:d1:0c:6c:4c:44:af:
cf:74:4e:0f:4f:ae:4f:4b:e2:1b:4e:4f:52:0f:a4:1a:f7:17:
81:f1:4a:74:ad:d5:e3:0e:33:ee:4a:92:65:6a:23:84:aa:68:
7b:d0:54:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+HSlauwbIoxjV7dhLo0CqBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiNmQ3ZWE0MTAzMzgzN2YwOGMyOGM0NzQyOTg0YjgyYjhm
NDQzZGYwHhcNMjQwNTE3MTYwMjI2WhcNMjQwNTE4MTYwMjI2WjAzMTEwLwYDVQQD
Eyg3MjUxMDVjNTRiMDFhNDQ5ODVmMTY2OWVkY2ExYzQwODQ0ZDFhOWZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAinlXF/NHd/Ms/JuzJf/KtNdAXRAn
EhYrtKiMsuIbICRTaaGXGbtgGLPS+G3ofZ5QM+THR/1phVpoyU3tFhFwaM24gTT9
VjTIQc2Wd+5MWW5xDyRjfVypun9b0XIpRQrOC2J+JT0sFbitRzLKOv5Rv4ETGAgd
1hIbc6HZSoldjSPPqzurBsmko3CAehnqIo1OYBTlgnTkpzGrQym3thUqu+i4Kspl
9FT8SzqsBMKfY1GaORRBFgOAew51OC0JsNT+BNwVKzql0wpDEffJwtUpqP8379Sc
yXRfkuBk8Tsl2J3qdk7ytbBJAcmZrjvfRGv4o38dqdPPg7MroiiZ492D7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHJRBcVLAaRJhfFmntyhxAhE0an9MB8GA1UdIwQY
MBaAFEttfqQQM4N/CMKMR0KYS4K49EPfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUzIxLXBCQXpnMzhJd294SFFwaExncmowUTk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8xZDA2ODEtZmUyMC00N2EzLTk0ZGYt
NWVlODcyMWMxY2ZjLzEvUzIxLXBCQXpnMzhJd294SFFwaExncmowUTk4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi8xZDA2ODEtZmUyMC00N2EzLTk0ZGYtNWVlODcyMWMxY2Zj
LzEvUzIxLXBCQXpnMzhJd294SFFwaExncmowUTk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX5VFaP5n
bcILpZCT3po8oKFalc85No7VmJqJ+iWSe6zCFY3wWBcnhukm5sccoVFKohYMBpvN
de3h5hyT8lJEKAUBRRKVhhOWU9ha1ww96XYoYEzlX1j1yHm9rCiXlY+Ml62OJNso
nrG9gTwlMDUSmDLF0Hsxe14u1jpJr/hSyqkYoqKbhUcXbfFUR5RV+KN6FDalSOvq
N8eNlyOeN8KknQ1KDGpJFwbKsS/CqeAg/XOaBZhJhcnBm4xc4dCzQGqT6t/rhXbm
Pn1YU9MxyZnkkAgf0QxsTESvz3ROD0+uT0viG05PUg+kGvcXgfFKdK3V4w4z7kqS
ZWojhKpoe9BUaw==
-----END CERTIFICATE-----
Generated at Sat May 18 00:10:10 2024 by rpki-client on console-ams.rpki-client.org