Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
File: KkRyM2ydAqSIzdd1NNZfsUZewJo.mft (raw, json)
Hash identifier: 4cVOKnBtMNCuRcBiVaYOXBntF2K9rkh7vJDGCUQ79nQ=
Subject key identifier: 75:BE:F4:BA:2F:26:85:6B:FC:2D:9F:C2:4B:D5:7A:57:F3:4D:53:16
Authority key identifier: 2A:44:72:33:6C:9D:02:A4:88:CD:D7:75:34:D6:5F:B1:46:5E:C0:9A
Certificate issuer: /CN=2a4472336c9d02a488cdd77534d65fb1465ec09a
Certificate serial: 01907207E8AB5F58D19D837E7B5B810A7C5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
Manifest number: 11F0
Signing time: Tue 02 Jul 2024 06:00:39 +0000
Manifest this update: Tue 02 Jul 2024 06:00:39 +0000
Manifest next update: Wed 03 Jul 2024 06:00:39 +0000
Files and hashes: 1: KkRyM2ydAqSIzdd1NNZfsUZewJo.crl (hash: p4lqqQxU0XhzAdDDQqgVN1PnfbpDsXtuxTKIN8mLdJg=)
2: wUSdfBzpfq1oSdssYAL61ufQ8to.roa (hash: 6JoF+jkaG+6BTv5Ef72WJM4AA8skWFyk0WWL0jhT7Aw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jul 2024 06:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:72:07:e8:ab:5f:58:d1:9d:83:7e:7b:5b:81:0a:7c:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a4472336c9d02a488cdd77534d65fb1465ec09a
Validity
Not Before: Jul 2 06:00:39 2024 GMT
Not After : Jul 3 06:00:39 2024 GMT
Subject: CN=75bef4ba2f26856bfc2d9fc24bd57a57f34d5316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a6:51:3a:43:9a:dd:44:e9:f6:71:3a:63:04:
f9:73:08:ea:22:7e:c0:c0:07:aa:47:b9:ae:99:8c:
b4:d0:59:48:a0:e0:67:b7:e3:18:69:2a:bb:22:6a:
08:8b:9e:18:8d:c4:92:0b:36:ec:00:31:86:b8:6a:
3c:61:3e:8f:c0:56:60:62:c5:6c:a9:7f:ac:be:85:
90:8e:ff:db:24:d4:0f:a1:00:f4:0a:c3:d0:43:77:
7c:0f:fd:a3:33:ec:fb:e5:f4:9b:82:e9:bf:20:0e:
1d:c1:5b:e9:7c:04:65:bc:07:be:08:dd:d5:ca:96:
c7:8f:8d:26:9c:44:8a:90:2a:88:fb:ee:f3:6c:be:
97:4f:5e:1c:97:19:83:d1:8d:93:cd:22:dc:78:f9:
e7:2e:4c:2b:56:21:c0:68:03:9f:45:77:05:d2:b0:
3b:b5:94:d8:c3:65:11:08:72:34:2b:b9:ae:04:f5:
5e:87:83:4d:11:20:31:88:21:e2:be:c6:d8:f0:7f:
6a:eb:e3:ea:8d:71:1b:66:7c:55:59:96:d7:17:d0:
71:61:ac:37:61:2f:0a:6f:d6:98:d0:0b:cb:d5:13:
7c:14:a4:a6:24:1a:9e:b9:fc:43:95:42:7b:af:ca:
47:ee:2d:8d:e8:0a:60:58:64:5c:d0:52:18:2e:ba:
42:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:BE:F4:BA:2F:26:85:6B:FC:2D:9F:C2:4B:D5:7A:57:F3:4D:53:16
X509v3 Authority Key Identifier:
keyid:2A:44:72:33:6C:9D:02:A4:88:CD:D7:75:34:D6:5F:B1:46:5E:C0:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:0b:fa:17:15:80:27:0e:07:6a:6d:63:06:5c:80:8f:69:e8:
bc:7a:c1:fa:cb:89:d6:93:d0:59:fa:6b:10:9b:2d:d7:ba:83:
c6:05:d4:5b:15:a4:5a:3d:56:a4:0f:6a:4d:3d:7a:e6:4d:55:
fe:76:7a:76:b0:37:b9:a0:57:54:39:1f:e9:22:7f:63:20:07:
8f:c9:66:bc:d0:97:fc:ab:a8:9d:6a:0b:b6:37:b2:e4:1c:0d:
b2:33:e8:18:91:d0:e2:08:ad:7a:07:0e:5c:3b:7b:2f:0c:8b:
89:31:a7:44:a1:9f:60:b3:da:64:cd:3d:0b:cd:48:78:2e:8e:
7f:51:dd:10:d7:b7:6f:b7:67:fd:af:7e:97:08:c4:a8:8b:ac:
1f:f4:1c:10:b5:1d:ce:e2:69:2e:92:5f:12:bc:31:76:34:62:
71:8c:c5:ff:b7:22:1f:89:ba:e8:32:d0:21:8b:7f:46:d6:9e:
bc:4a:66:7b:f6:15:df:54:22:c1:43:a8:97:ad:aa:ed:35:80:
55:01:b6:f5:99:7a:79:e6:51:fd:bd:9e:36:c5:3c:4c:36:2f:
10:3d:9a:22:9a:36:d2:3c:54:ed:cb:68:6e:48:0d:8e:80:be:
7f:35:68:1d:fc:c1:9b:9e:18:4b:18:52:e1:88:9d:4b:53:7d:
61:4c:fb:f6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZByB+irX1jRnYN+e1uBCnxdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhNDQ3MjMzNmM5ZDAyYTQ4OGNkZDc3NTM0ZDY1ZmIxNDY1
ZWMwOWEwHhcNMjQwNzAyMDYwMDM5WhcNMjQwNzAzMDYwMDM5WjAzMTEwLwYDVQQD
Eyg3NWJlZjRiYTJmMjY4NTZiZmMyZDlmYzI0YmQ1N2E1N2YzNGQ1MzE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvqZROkOa3UTp9nE6YwT5cwjqIn7A
wAeqR7mumYy00FlIoOBnt+MYaSq7ImoIi54YjcSSCzbsADGGuGo8YT6PwFZgYsVs
qX+svoWQjv/bJNQPoQD0CsPQQ3d8D/2jM+z75fSbgum/IA4dwVvpfARlvAe+CN3V
ypbHj40mnESKkCqI++7zbL6XT14clxmD0Y2TzSLcePnnLkwrViHAaAOfRXcF0rA7
tZTYw2URCHI0K7muBPVeh4NNESAxiCHivsbY8H9q6+PqjXEbZnxVWZbXF9BxYaw3
YS8Kb9aY0AvL1RN8FKSmJBqeufxDlUJ7r8pH7i2N6ApgWGRc0FIYLrpCCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHW+9LovJoVr/C2fwkvVelfzTVMWMB8GA1UdIwQY
MBaAFCpEcjNsnQKkiM3XdTTWX7FGXsCaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2tSeU0yeWRBcVNJemRkMU5OWmZzVVpld0pvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS8wMWRiODItNDE3Mi00NDA1LWFiNTUt
MDA4NmQwMjM4NWQ2LzEvS2tSeU0yeWRBcVNJemRkMU5OWmZzVVpld0pvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS8wMWRiODItNDE3Mi00NDA1LWFiNTUtMDA4NmQwMjM4NWQ2
LzEvS2tSeU0yeWRBcVNJemRkMU5OWmZzVVpld0pvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoQv6FxWA
Jw4Ham1jBlyAj2novHrB+suJ1pPQWfprEJst17qDxgXUWxWkWj1WpA9qTT165k1V
/nZ6drA3uaBXVDkf6SJ/YyAHj8lmvNCX/KuonWoLtjey5BwNsjPoGJHQ4gitegcO
XDt7LwyLiTGnRKGfYLPaZM09C81IeC6Of1HdENe3b7dn/a9+lwjEqIusH/QcELUd
zuJpLpJfErwxdjRicYzF/7ciH4m66DLQIYt/RtaevEpme/YV31QiwUOol62q7TWA
VQG29Zl6eeZR/b2eNsU8TDYvED2aIpo20jxU7ctobkgNjoC+fzVoHfzBm54YSxhS
4YidS1N9YUz79g==
-----END CERTIFICATE-----
Generated at Tue Jul 2 14:22:28 2024 by rpki-client on console-fra.rpki-client.org