Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
File: 10AeAklBizV1RyaIJPYkSSXY2zk.mft (raw, json)
Hash identifier: o7g1IyT1W+zkU90eOenrYzhhQVC5tbc9HoKdl1Y96cM=
Subject key identifier: D4:58:90:91:4B:09:AA:2A:BD:5C:6F:C1:60:C0:28:BB:E4:73:63:BB
Authority key identifier: D7:40:1E:02:49:41:8B:35:75:47:26:88:24:F6:24:49:25:D8:DB:39
Certificate issuer: /CN=d7401e0249418b357547268824f6244925d8db39
Certificate serial: 018F87EDA23F5949BDF1849AB212A5711B2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
Manifest number: 02F6
Signing time: Fri 17 May 2024 19:00:48 +0000
Manifest this update: Fri 17 May 2024 19:00:48 +0000
Manifest next update: Sat 18 May 2024 19:00:48 +0000
Files and hashes: 1: 10AeAklBizV1RyaIJPYkSSXY2zk.crl (hash: facu5pf75UlLk1OGNAfu5aimml5RWrHkIALwgplDz7g=)
2: jlA0frueZsS5WUPiFL7R5Z3LhPg.roa (hash: FiC2OH7wf0FeDsiUYUDXKCbyzOW1EW8FXktGMfCoN+4=)
3: vB0T-QQLxb1AMmr3JCosEtf2z9o.roa (hash: 7xabqOue4tAjq0Nu52C/e95qFQt39Z1/7dHr9sx07Ow=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:ed:a2:3f:59:49:bd:f1:84:9a:b2:12:a5:71:1b:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7401e0249418b357547268824f6244925d8db39
Validity
Not Before: May 17 19:00:48 2024 GMT
Not After : May 18 19:00:48 2024 GMT
Subject: CN=d45890914b09aa2abd5c6fc160c028bbe47363bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:07:80:63:7e:66:7b:fa:7c:f5:1b:98:1e:f9:
23:ab:79:5e:c3:69:44:95:99:bc:a0:78:ad:27:2b:
86:89:eb:a1:1b:50:24:8f:3f:1e:c1:ae:09:68:bb:
e6:26:56:14:26:f8:99:f5:92:f2:11:95:64:84:62:
a9:60:7c:93:38:fe:d1:50:55:5d:c8:05:76:7c:a1:
38:c0:f5:dd:e1:0a:79:73:56:20:2a:b9:92:d4:eb:
73:e7:a2:c8:8a:3d:c6:1c:ab:e3:19:68:80:1d:f6:
2e:1f:d9:80:6a:ee:9b:2d:e1:19:47:c1:0a:85:37:
97:65:60:2a:02:e3:50:49:1c:3f:cd:55:ed:a2:2c:
26:08:eb:32:c6:49:d3:9d:39:ed:56:be:e0:5d:fd:
b6:3b:b6:1b:b1:92:1d:10:a3:94:51:3b:ae:49:8a:
42:f0:32:7a:21:9c:cd:37:fd:7f:e0:53:cf:6a:24:
a1:ca:d9:6a:fd:2f:70:cd:4a:76:29:f5:ed:ff:cb:
b2:17:37:a3:41:12:89:31:73:5b:5b:51:54:b1:12:
b0:2a:2d:50:bf:05:82:07:70:8c:92:40:2d:42:92:
40:2a:34:7f:fc:0a:3a:e1:52:1f:35:39:1b:16:ee:
1c:1c:de:e4:78:c7:a2:b9:71:4f:7c:5b:65:e6:75:
c9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:58:90:91:4B:09:AA:2A:BD:5C:6F:C1:60:C0:28:BB:E4:73:63:BB
X509v3 Authority Key Identifier:
keyid:D7:40:1E:02:49:41:8B:35:75:47:26:88:24:F6:24:49:25:D8:DB:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:15:31:24:85:67:9c:ca:bc:94:33:42:b4:aa:18:02:19:b7:
e1:3d:9a:4a:d5:0f:53:da:0f:73:e4:ac:28:ce:df:bf:a4:8a:
36:c0:ca:f9:91:67:a5:4d:8e:b2:63:4a:a8:80:36:75:37:94:
54:ab:80:fa:71:0e:70:73:41:93:1c:f9:7f:93:74:b5:1c:6f:
1b:91:54:6a:e0:42:a7:bf:8e:37:2e:bc:63:a1:c1:11:4f:97:
26:03:11:e4:dd:10:84:5c:69:e2:8f:6d:12:da:11:e6:3b:9b:
6b:be:16:fb:d2:aa:f2:07:b3:98:b8:00:f7:3c:b1:44:52:e9:
f0:3a:76:12:c4:c9:6b:ca:d8:94:3b:c2:46:4c:3f:75:58:84:
08:77:b4:5a:6e:15:5f:c9:8e:5f:82:13:31:6b:bd:e1:b3:34:
19:3e:5e:e5:61:85:a0:97:ad:b4:fc:14:67:9a:c8:5a:73:0f:
d9:44:00:4d:e9:7f:68:e1:fb:cf:63:e8:30:ff:ca:11:1c:15:
68:7d:b1:ba:dd:01:4d:f5:fe:e7:72:b3:8b:15:72:d5:3d:9a:
83:82:8c:01:83:11:31:3e:b3:e1:62:aa:13:83:15:17:35:bd:
58:a7:7d:36:72:4e:1a:11:70:76:ea:d4:4d:eb:24:2a:ee:a5:
d2:67:3b:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+H7aI/WUm98YSashKlcRssMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NDAxZTAyNDk0MThiMzU3NTQ3MjY4ODI0ZjYyNDQ5MjVk
OGRiMzkwHhcNMjQwNTE3MTkwMDQ4WhcNMjQwNTE4MTkwMDQ4WjAzMTEwLwYDVQQD
EyhkNDU4OTA5MTRiMDlhYTJhYmQ1YzZmYzE2MGMwMjhiYmU0NzM2M2JiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2weAY35me/p89RuYHvkjq3lew2lE
lZm8oHitJyuGieuhG1Akjz8ewa4JaLvmJlYUJviZ9ZLyEZVkhGKpYHyTOP7RUFVd
yAV2fKE4wPXd4Qp5c1YgKrmS1Otz56LIij3GHKvjGWiAHfYuH9mAau6bLeEZR8EK
hTeXZWAqAuNQSRw/zVXtoiwmCOsyxknTnTntVr7gXf22O7YbsZIdEKOUUTuuSYpC
8DJ6IZzNN/1/4FPPaiShytlq/S9wzUp2KfXt/8uyFzejQRKJMXNbW1FUsRKwKi1Q
vwWCB3CMkkAtQpJAKjR//Ao64VIfNTkbFu4cHN7keMeiuXFPfFtl5nXJZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNRYkJFLCaoqvVxvwWDAKLvkc2O7MB8GA1UdIwQY
MBaAFNdAHgJJQYs1dUcmiCT2JEkl2Ns5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTBBZUFrbEJpelYxUnlhSUpQWWtTU1hZMnprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC9kNzMxMzctYjA4OS00ZGI0LWI2YjIt
NTA3ODkxMzk1NDE3LzEvMTBBZUFrbEJpelYxUnlhSUpQWWtTU1hZMnprLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC9kNzMxMzctYjA4OS00ZGI0LWI2YjItNTA3ODkxMzk1NDE3
LzEvMTBBZUFrbEJpelYxUnlhSUpQWWtTU1hZMnprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADxUxJIVn
nMq8lDNCtKoYAhm34T2aStUPU9oPc+SsKM7fv6SKNsDK+ZFnpU2OsmNKqIA2dTeU
VKuA+nEOcHNBkxz5f5N0tRxvG5FUauBCp7+ONy68Y6HBEU+XJgMR5N0QhFxp4o9t
EtoR5juba74W+9Kq8gezmLgA9zyxRFLp8Dp2EsTJa8rYlDvCRkw/dViECHe0Wm4V
X8mOX4ITMWu94bM0GT5e5WGFoJettPwUZ5rIWnMP2UQATel/aOH7z2PoMP/KERwV
aH2xut0BTfX+53KzixVy1T2ag4KMAYMRMT6z4WKqE4MVFzW9WKd9NnJOGhFwdurU
TeskKu6l0mc7UA==
-----END CERTIFICATE-----
Generated at Fri May 17 20:18:23 2024 by rpki-client on console-fra.rpki-client.org