Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
File: h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft (raw, json)
Hash identifier: zisJN627RtvlW1L+ABMrnVYXqOjh+SVUAInPVHwxXXI=
Subject key identifier: 20:F8:00:93:8A:89:BA:94:CE:FC:D5:AA:D7:D2:D7:3E:22:40:35:44
Authority key identifier: 87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
Certificate issuer: /CN=877aad307ad330ebb8cf44ec21389a170436fd53
Certificate serial: 018F88241B01BD71543326D30FDC204BD609
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
Manifest number: 117A
Signing time: Fri 17 May 2024 20:00:18 +0000
Manifest this update: Fri 17 May 2024 20:00:18 +0000
Manifest next update: Sat 18 May 2024 20:00:18 +0000
Files and hashes: 1: EpNjqZ-6RxN5Nju_to1-pnLxKj4.roa (hash: SWsJXy3j/S+zIT56myYNH3cCOogi0mKiXYKvTvCuBQs=)
2: h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl (hash: LLIzS3dW9s154UmeWChY3qclDig8DEhzT3A6+MONj7c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:24:1b:01:bd:71:54:33:26:d3:0f:dc:20:4b:d6:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877aad307ad330ebb8cf44ec21389a170436fd53
Validity
Not Before: May 17 20:00:18 2024 GMT
Not After : May 18 20:00:18 2024 GMT
Subject: CN=20f800938a89ba94cefcd5aad7d2d73e22403544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:81:d5:d9:79:9f:ba:67:85:f5:83:3e:69:ad:
f0:7f:43:d4:6e:ec:05:80:dd:2e:60:c8:1d:44:3d:
57:82:8c:e2:1a:ad:8c:fd:c6:0d:cb:9a:ba:14:3c:
90:8c:1b:96:ff:b8:02:67:25:c6:8c:dd:9e:44:da:
21:20:52:cd:56:07:af:f3:7d:26:d2:00:32:92:36:
85:6c:27:8f:f3:c1:ba:e3:7d:34:84:5d:3a:08:40:
a2:6d:85:9e:22:e6:e3:aa:51:e0:a3:cd:8f:35:bf:
12:bf:b9:1a:29:68:1f:49:73:e4:04:1c:ea:88:7c:
99:e8:6f:99:89:8b:a1:a5:43:9e:ab:c3:3f:82:f1:
00:2d:9e:0e:51:f5:bc:91:2d:1b:05:37:65:da:d3:
54:45:5e:f9:c4:e1:84:45:94:3a:f6:a7:84:09:52:
ab:7e:d8:d2:11:95:4e:f2:18:96:81:d2:a6:68:79:
0d:69:fb:da:4c:35:eb:2a:2d:7c:10:34:81:bc:44:
fc:2e:86:36:26:2c:be:38:e5:61:52:c8:9b:35:50:
9b:75:47:9d:1d:32:e3:20:13:31:46:50:fa:a4:4d:
38:e5:a3:cc:38:7b:4e:c2:05:0b:a9:db:d3:0c:ff:
ac:10:a1:34:31:51:08:fe:f0:5e:20:2f:d7:34:66:
c8:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:F8:00:93:8A:89:BA:94:CE:FC:D5:AA:D7:D2:D7:3E:22:40:35:44
X509v3 Authority Key Identifier:
keyid:87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:5c:d7:92:02:e3:a5:08:80:98:9f:cb:68:f4:ec:ad:4a:44:
b6:73:19:1e:15:72:26:6e:da:72:0a:e6:13:5f:61:2c:e0:a3:
09:a7:37:d0:17:2d:99:8b:ec:cd:99:d9:f1:60:73:e8:56:8c:
ca:4e:0b:8e:13:a4:0e:03:cc:b3:b6:7e:27:62:76:8e:a1:25:
95:cd:e8:56:bc:93:88:58:f0:0a:95:45:b6:b2:65:ca:a8:4c:
1f:94:a4:d4:35:db:5a:62:e4:dd:98:79:8f:50:5e:1a:c6:ca:
49:d8:0c:51:2a:69:aa:19:00:fa:0e:f5:7a:df:3d:30:81:9c:
19:28:d6:f3:75:84:66:c3:30:53:dc:68:4c:2c:c8:af:43:b1:
2b:30:d1:0e:ae:4e:49:57:4e:0d:8e:46:a5:41:d4:9f:20:95:
52:14:64:e3:e4:0e:a6:7f:5f:15:70:dd:29:41:ad:6b:06:20:
27:ab:ea:ae:2f:1c:3b:2f:99:de:5a:51:10:79:c8:73:21:9a:
ef:fd:3b:4d:a3:ce:5e:af:b6:47:c1:e3:3f:56:09:c3:60:aa:
47:62:3d:78:9f:24:5b:a5:39:f6:f6:96:60:0b:79:32:68:8b:
db:2f:d7:aa:f7:7b:1f:97:44:10:8b:7c:c0:62:1c:7e:e0:89:
ac:21:b4:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+IJBsBvXFUMybTD9wgS9YJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3N2FhZDMwN2FkMzMwZWJiOGNmNDRlYzIxMzg5YTE3MDQz
NmZkNTMwHhcNMjQwNTE3MjAwMDE4WhcNMjQwNTE4MjAwMDE4WjAzMTEwLwYDVQQD
EygyMGY4MDA5MzhhODliYTk0Y2VmY2Q1YWFkN2QyZDczZTIyNDAzNTQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoYHV2XmfumeF9YM+aa3wf0PUbuwF
gN0uYMgdRD1XgoziGq2M/cYNy5q6FDyQjBuW/7gCZyXGjN2eRNohIFLNVgev830m
0gAykjaFbCeP88G64300hF06CECibYWeIubjqlHgo82PNb8Sv7kaKWgfSXPkBBzq
iHyZ6G+ZiYuhpUOeq8M/gvEALZ4OUfW8kS0bBTdl2tNURV75xOGERZQ69qeECVKr
ftjSEZVO8hiWgdKmaHkNafvaTDXrKi18EDSBvET8LoY2Jiy+OOVhUsibNVCbdUed
HTLjIBMxRlD6pE045aPMOHtOwgULqdvTDP+sEKE0MVEI/vBeIC/XNGbIkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCD4AJOKibqUzvzVqtfS1z4iQDVEMB8GA1UdIwQY
MBaAFId6rTB60zDruM9E7CE4mhcENv1TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDNxdE1IclRNT3U0ejBUc0lUaWFGd1EyX1ZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS85YWUyMjEtYzEwMS00OTdmLTkxZmUt
NTA4MDk5YzEzM2JiLzEvaDNxdE1IclRNT3U0ejBUc0lUaWFGd1EyX1ZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS85YWUyMjEtYzEwMS00OTdmLTkxZmUtNTA4MDk5YzEzM2Ji
LzEvaDNxdE1IclRNT3U0ejBUc0lUaWFGd1EyX1ZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd1zXkgLj
pQiAmJ/LaPTsrUpEtnMZHhVyJm7acgrmE19hLOCjCac30BctmYvszZnZ8WBz6FaM
yk4LjhOkDgPMs7Z+J2J2jqEllc3oVryTiFjwCpVFtrJlyqhMH5Sk1DXbWmLk3Zh5
j1BeGsbKSdgMUSppqhkA+g71et89MIGcGSjW83WEZsMwU9xoTCzIr0OxKzDRDq5O
SVdODY5GpUHUnyCVUhRk4+QOpn9fFXDdKUGtawYgJ6vqri8cOy+Z3lpREHnIcyGa
7/07TaPOXq+2R8HjP1YJw2CqR2I9eJ8kW6U59vaWYAt5MmiL2y/Xqvd7H5dEEIt8
wGIcfuCJrCG0UA==
-----END CERTIFICATE-----
Generated at Fri May 17 21:02:08 2024 by rpki-client on console-fra.rpki-client.org