Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
File: IONyheqmIxC8nncrST2dYrqKeTg.mft (raw, json)
Hash identifier: HTcCI65rh7qokvOEwiWkGnpjyPjuKEt1ZdPPKiukwuY=
Subject key identifier: 0C:83:E6:4E:AD:BE:A2:E1:BF:ED:C3:38:36:E4:5F:D1:CE:E6:BE:32
Authority key identifier: 20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38
Certificate issuer: /CN=20e37285eaa62310bc9e772b493d9d62ba8a7938
Certificate serial: 018F86A3A53EDFC58C2A4AB8EDBEC0CE8348
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
Manifest number: 01B3
Signing time: Fri 17 May 2024 13:00:22 +0000
Manifest this update: Fri 17 May 2024 13:00:22 +0000
Manifest next update: Sat 18 May 2024 13:00:22 +0000
Files and hashes: 1: IONyheqmIxC8nncrST2dYrqKeTg.crl (hash: QHT/CPtYRbnIhpBXzfEFk5DJsQczC4IDWaYWbIZ8aoQ=)
2: po_Y6e5sIO15yNDKkoiK8Apx_0k.roa (hash: 6mpbAdYCMQvqN+A7En6SV7/HdXZy47/LLTVXMgRy1MQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 13:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:a3:a5:3e:df:c5:8c:2a:4a:b8:ed:be:c0:ce:83:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20e37285eaa62310bc9e772b493d9d62ba8a7938
Validity
Not Before: May 17 13:00:22 2024 GMT
Not After : May 18 13:00:22 2024 GMT
Subject: CN=0c83e64eadbea2e1bfedc33836e45fd1cee6be32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:4a:71:c3:27:5a:dc:a2:07:43:c1:d8:22:05:
1d:e4:41:e8:b8:50:14:15:2c:dd:33:5a:bf:ae:73:
09:cf:a2:f2:06:80:d6:68:3b:de:44:c1:78:90:47:
e9:be:1c:f5:1f:1f:aa:68:a0:31:60:e3:e9:f4:66:
52:d5:76:c7:44:8b:2e:8b:b8:d1:47:48:bd:33:d3:
27:d0:da:ac:55:d3:d3:04:1e:fa:76:8f:09:4e:d1:
42:64:e2:66:7f:92:56:1c:a9:aa:42:1a:fe:0d:0f:
3e:b2:ad:0e:6e:d6:23:d7:59:79:63:36:6c:d1:53:
a3:fe:c0:f8:0f:dd:b6:e0:a2:fd:d8:37:36:c9:f8:
c4:c9:cc:ba:64:0e:c1:34:23:3d:30:5e:e0:b7:9f:
53:74:b5:50:d4:15:ca:a2:56:1f:2b:b2:e3:95:d0:
de:b3:d9:4d:f6:61:35:f7:fb:59:13:4f:86:30:34:
6e:7d:6d:fc:3c:d0:7e:a7:54:14:63:10:40:5b:e0:
46:1e:4d:c0:53:25:ea:04:27:1b:76:2a:1e:79:bb:
63:3e:1d:4b:89:ea:5a:60:0d:cc:d0:ea:23:0e:8e:
67:66:5d:7b:e1:57:d7:b1:08:ff:2d:9c:40:32:0a:
62:0c:9f:af:49:1f:51:9e:df:04:c1:76:3e:fb:91:
b1:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:83:E6:4E:AD:BE:A2:E1:BF:ED:C3:38:36:E4:5F:D1:CE:E6:BE:32
X509v3 Authority Key Identifier:
keyid:20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:e1:11:5a:1d:b5:ad:6b:6d:6e:87:04:39:1f:0a:f9:95:5a:
75:73:34:32:29:c4:41:73:b0:9f:f7:be:a8:2a:c3:af:de:3a:
96:cc:62:9d:ed:01:19:8c:a1:26:b9:21:76:bf:3a:47:38:cc:
87:a1:93:5c:14:48:30:02:7e:b3:f3:2b:04:fe:b2:d5:46:31:
e6:ed:a8:f7:8d:9b:ad:dc:37:b1:f4:a1:42:75:33:b3:58:7c:
a6:17:6b:18:31:07:5b:dc:76:b6:2c:04:a4:37:2b:7d:b4:e9:
bd:4b:06:fb:9d:a4:8f:20:48:56:04:3b:27:a4:01:13:e1:9a:
04:74:27:76:37:ef:b6:03:d3:13:9c:6c:07:82:df:72:55:78:
8f:cc:92:c1:0d:76:b9:d7:fd:58:1d:f6:75:a7:5d:15:01:36:
52:14:05:ca:13:e6:96:f9:58:da:88:cd:7d:1b:3b:c0:b2:56:
50:98:28:a0:d8:38:60:cc:e3:a1:04:9d:ff:63:49:02:8b:c0:
5c:3f:76:b7:66:e3:01:54:30:bd:50:e6:8b:d3:65:db:9c:2c:
fd:26:35:db:a8:c8:50:cd:43:88:36:7a:31:9c:5d:f9:eb:fd:
69:cc:9d:a7:86:2c:40:ba:1f:d9:99:ba:0d:66:a1:13:2f:26:
63:e6:3a:74
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+Go6U+38WMKkq47b7AzoNIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwZTM3Mjg1ZWFhNjIzMTBiYzllNzcyYjQ5M2Q5ZDYyYmE4
YTc5MzgwHhcNMjQwNTE3MTMwMDIyWhcNMjQwNTE4MTMwMDIyWjAzMTEwLwYDVQQD
EygwYzgzZTY0ZWFkYmVhMmUxYmZlZGMzMzgzNmU0NWZkMWNlZTZiZTMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjUpxwyda3KIHQ8HYIgUd5EHouFAU
FSzdM1q/rnMJz6LyBoDWaDveRMF4kEfpvhz1Hx+qaKAxYOPp9GZS1XbHRIsui7jR
R0i9M9Mn0NqsVdPTBB76do8JTtFCZOJmf5JWHKmqQhr+DQ8+sq0ObtYj11l5YzZs
0VOj/sD4D9224KL92Dc2yfjEycy6ZA7BNCM9MF7gt59TdLVQ1BXKolYfK7LjldDe
s9lN9mE19/tZE0+GMDRufW38PNB+p1QUYxBAW+BGHk3AUyXqBCcbdioeebtjPh1L
iepaYA3M0OojDo5nZl174VfXsQj/LZxAMgpiDJ+vSR9Rnt8EwXY++5GxIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAyD5k6tvqLhv+3DODbkX9HO5r4yMB8GA1UdIwQY
MBaAFCDjcoXqpiMQvJ53K0k9nWK6ink4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSU9OeWhlcW1JeEM4bm5jclNUMmRZcnFLZVRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8xNzdmMWQtYWMzOS00YTlkLTk0MWQt
ZmE4ZDhjYTk0OTViLzEvSU9OeWhlcW1JeEM4bm5jclNUMmRZcnFLZVRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC8xNzdmMWQtYWMzOS00YTlkLTk0MWQtZmE4ZDhjYTk0OTVi
LzEvSU9OeWhlcW1JeEM4bm5jclNUMmRZcnFLZVRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADeERWh21
rWttbocEOR8K+ZVadXM0MinEQXOwn/e+qCrDr946lsxine0BGYyhJrkhdr86RzjM
h6GTXBRIMAJ+s/MrBP6y1UYx5u2o942brdw3sfShQnUzs1h8phdrGDEHW9x2tiwE
pDcrfbTpvUsG+52kjyBIVgQ7J6QBE+GaBHQndjfvtgPTE5xsB4LfclV4j8ySwQ12
udf9WB32daddFQE2UhQFyhPmlvlY2ojNfRs7wLJWUJgooNg4YMzjoQSd/2NJAovA
XD92t2bjAVQwvVDmi9Nl25ws/SY126jIUM1DiDZ6MZxd+ev9acydp4YsQLof2Zm6
DWahEy8mY+Y6dA==
-----END CERTIFICATE-----
Generated at Fri May 17 19:04:25 2024 by rpki-client on console-fra.rpki-client.org