Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
File: 1-hskeN_g8zonixP0LdMZYB1jeKg.mft (raw, json)
Hash identifier: VNYZJnNqLGpyCQVgTBe4IpoI9V/KtzTlzlMgw+CjLjg=
Subject key identifier: 42:04:3B:0B:BB:48:4F:30:66:A7:8B:5A:8D:86:A7:AF:40:EF:49:00
Authority key identifier: FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8
Certificate issuer: /CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8
Certificate serial: 018F874ADD1C7FF23752BFF14079FC61626E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
Manifest number: 029F
Signing time: Fri 17 May 2024 16:03:01 +0000
Manifest this update: Fri 17 May 2024 16:03:01 +0000
Manifest next update: Sat 18 May 2024 16:03:01 +0000
Files and hashes: 1: 1-hskeN_g8zonixP0LdMZYB1jeKg.crl (hash: /gJ2reBxpMmgJ1PNTn7g5I7lQAO7JhuqNCHruHKooRA=)
2: oqABzLnfbsDsIn5kWplXBMzY43Q.roa (hash: 9f8YlT5OwrLMMipcAAqwOnsbNvAc7ctfNIT3GMCo+9I=)
3: uy18rfNLyuQiQTCNDG2p5HtgVvM.roa (hash: /PktlFARYSrfZjA3NuU81XhcPjb/Y7Pow5NVwBdwcdY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:03:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:dd:1c:7f:f2:37:52:bf:f1:40:79:fc:61:62:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8
Validity
Not Before: May 17 16:03:01 2024 GMT
Not After : May 18 16:03:01 2024 GMT
Subject: CN=42043b0bbb484f3066a78b5a8d86a7af40ef4900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e0:b7:f9:a9:a6:21:e4:bd:8c:01:f5:a7:dc:
1a:7e:11:c7:91:53:43:ad:48:7c:4a:ba:ce:67:9d:
84:d6:19:4e:64:0a:2a:17:c0:1e:99:ff:87:f1:a3:
3d:b0:c2:38:5f:2c:3f:0e:86:87:00:58:1b:17:32:
5a:c5:c6:e1:01:1b:f1:bf:47:8b:1d:18:d7:31:cf:
6a:87:00:c8:53:d7:9e:af:42:8e:79:31:57:84:36:
75:7b:93:da:e6:ed:64:2b:18:6e:60:26:a1:df:2e:
7d:b5:e4:98:39:6c:05:32:49:39:df:8b:4e:4d:72:
d7:3c:f2:88:87:84:73:3f:01:48:7b:9b:18:5b:4a:
26:92:b1:2d:0b:47:71:9e:cc:da:ab:cd:9c:4a:50:
ce:b1:45:f1:c0:7f:0d:b4:a3:7d:04:09:f5:fe:cc:
d3:40:30:3e:e5:96:fc:68:29:8f:63:34:0a:dd:72:
b1:77:e1:d1:ca:29:c7:60:ce:80:7a:27:ec:ca:5c:
7d:25:8a:8f:3b:5b:fa:38:6d:ab:c0:05:a7:58:1b:
5c:3f:79:9c:70:c1:9f:4a:43:e7:18:f7:51:38:53:
5a:2a:b6:e3:aa:90:c5:0e:4b:9d:11:0a:bc:9d:1c:
b8:d8:80:99:6e:2e:b5:e2:f0:47:be:2e:5b:c0:8f:
89:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:04:3B:0B:BB:48:4F:30:66:A7:8B:5A:8D:86:A7:AF:40:EF:49:00
X509v3 Authority Key Identifier:
keyid:FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:70:fc:9e:62:5a:ee:2d:0b:72:73:ed:60:d6:e3:7d:1b:df:
d3:cf:7e:c1:e7:fc:5a:10:04:58:e1:5c:ca:fa:96:49:d4:fb:
7a:c4:3e:44:1d:ba:83:66:d8:04:b2:d9:18:d6:f8:4d:c8:8a:
b5:f0:bb:e4:f0:7d:47:1e:72:71:f7:08:64:64:23:42:9f:cd:
36:4e:fc:0d:6c:1d:95:b3:6b:34:2d:11:03:45:3f:e4:87:49:
16:79:07:60:a9:49:cc:6f:8d:4a:20:8b:30:d2:c2:c3:33:2d:
55:8b:2e:ea:f9:45:4e:5b:dd:f3:58:8b:d9:e5:20:be:d0:60:
cd:f1:9d:4f:50:f7:b9:4b:f9:2c:dd:62:dc:e3:b2:66:1d:eb:
60:96:8e:dd:83:d3:5b:e0:a6:e8:ab:1d:7a:0b:09:36:eb:da:
6c:df:3f:98:71:bf:ba:98:ed:36:88:12:be:e0:d8:41:b9:71:
f9:ed:4b:4a:f6:56:70:01:84:22:88:ac:3a:fd:4f:b0:19:79:
2a:6a:dc:ab:cb:2e:16:f9:f8:ae:89:d3:e0:5e:ed:76:5d:98:
4f:ed:52:44:6d:16:53:38:2f:14:88:ad:cf:ac:03:7a:3d:51:
e5:eb:45:4a:32:d7:28:92:14:6b:c1:da:1b:84:de:90:24:8f:
4e:c3:2c:c2
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAY+HSt0cf/I3Ur/xQHn8YWJuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhMWIyNDc4ZGZlMGYzM2EyNzhiMTNmNDJkZDMxOTYwMWQ2
Mzc4YTgwHhcNMjQwNTE3MTYwMzAxWhcNMjQwNTE4MTYwMzAxWjAzMTEwLwYDVQQD
Eyg0MjA0M2IwYmJiNDg0ZjMwNjZhNzhiNWE4ZDg2YTdhZjQwZWY0OTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+C3+ammIeS9jAH1p9wafhHHkVND
rUh8SrrOZ52E1hlOZAoqF8Aemf+H8aM9sMI4Xyw/DoaHAFgbFzJaxcbhARvxv0eL
HRjXMc9qhwDIU9eer0KOeTFXhDZ1e5Pa5u1kKxhuYCah3y59teSYOWwFMkk534tO
TXLXPPKIh4RzPwFIe5sYW0omkrEtC0dxnszaq82cSlDOsUXxwH8NtKN9BAn1/szT
QDA+5Zb8aCmPYzQK3XKxd+HRyinHYM6Aeifsylx9JYqPO1v6OG2rwAWnWBtcP3mc
cMGfSkPnGPdROFNaKrbjqpDFDkudEQq8nRy42ICZbi614vBHvi5bwI+JVwIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFEIEOwu7SE8wZqeLWo2Gp69A70kAMB8GA1UdIwQY
MBaAFPobJHjf4PM6J4sT9C3TGWAdY3ioMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1oc2tlTl9nOHpvbml4UDBMZE1aWUIxamVLZy5jZXIw
gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWYvMDhhOWM4LTRiZTMtNDY4Mi1hZjgy
LTJhMWNjZTdkMmM2NS8xLzEtaHNrZU5fZzh6b25peFAwTGRNWllCMWplS2cubWZ0
MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np
dG9yeS9ERUZBVUxUL2FmLzA4YTljOC00YmUzLTQ2ODItYWY4Mi0yYTFjY2U3ZDJj
NjUvMS8xLWhza2VOX2c4em9uaXhQMExkTVpZQjFqZUtnLmNybDAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC
BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAHD8
nmJa7i0LcnPtYNbjfRvf089+wef8WhAEWOFcyvqWSdT7esQ+RB26g2bYBLLZGNb4
TciKtfC75PB9Rx5ycfcIZGQjQp/NNk78DWwdlbNrNC0RA0U/5IdJFnkHYKlJzG+N
SiCLMNLCwzMtVYsu6vlFTlvd81iL2eUgvtBgzfGdT1D3uUv5LN1i3OOyZh3rYJaO
3YPTW+Cm6KsdegsJNuvabN8/mHG/upjtNogSvuDYQblx+e1LSvZWcAGEIoisOv1P
sBl5Kmrcq8suFvn4ronT4F7tdl2YT+1SRG0WUzgvFIitz6wDej1R5etFSjLXKJIU
a8HaG4TekCSPTsMswg==
-----END CERTIFICATE-----
Generated at Fri May 17 19:06:25 2024 by rpki-client on console-fra.rpki-client.org