Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.mft
File: 20iBY9r1DbZG3k3yTTTLrJk_RX8.mft (raw, json)
Hash identifier: 4PBUyz25mrLnfck1m5QPYGtxlLKGNPfZWuOZodSvpKg=
Subject key identifier: F9:42:89:66:1C:51:95:DD:A8:C9:FB:D8:11:05:89:E9:FC:77:E2:DA
Authority key identifier: DB:48:81:63:DA:F5:0D:B6:46:DE:4D:F2:4D:34:CB:AC:99:3F:45:7F
Certificate issuer: /CN=db488163daf50db646de4df24d34cbac993f457f
Certificate serial: 018F2FBCA1DDFFC55C81C86080909FE5746E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20iBY9r1DbZG3k3yTTTLrJk_RX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.mft
Manifest number: 1149
Signing time: Tue 30 Apr 2024 16:00:42 +0000
Manifest this update: Tue 30 Apr 2024 16:00:42 +0000
Manifest next update: Wed 01 May 2024 16:00:42 +0000
Files and hashes: 1: 20iBY9r1DbZG3k3yTTTLrJk_RX8.crl (hash: QiJqGziklYXmIYPeEPILQOuV3Jna96oMMaTcNPirbtQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/20iBY9r1DbZG3k3yTTTLrJk_RX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 May 2024 13:40:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:2f:bc:a1:dd:ff:c5:5c:81:c8:60:80:90:9f:e5:74:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db488163daf50db646de4df24d34cbac993f457f
Validity
Not Before: Apr 30 16:00:42 2024 GMT
Not After : May 1 16:00:42 2024 GMT
Subject: CN=f94289661c5195dda8c9fbd8110589e9fc77e2da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2e:aa:b8:99:74:6d:5a:ba:71:65:5c:0e:a5:
86:c6:e1:ef:17:52:f2:3b:79:66:34:ed:57:2c:80:
b1:89:bc:69:bb:ad:08:b5:ca:33:ad:f6:b4:20:5d:
25:6a:eb:2f:7d:82:39:8e:1e:23:57:78:93:d4:1d:
23:4c:12:16:10:15:9f:64:f0:34:92:36:61:3b:48:
27:15:8b:71:1f:c5:26:1a:55:35:31:7c:2e:43:b1:
c1:11:5d:d3:1a:ff:46:59:dd:a4:0b:e7:4a:ce:33:
e5:55:2c:36:0a:0e:29:ae:90:02:43:45:fe:7a:94:
7d:fe:81:19:a4:b8:c1:5f:b8:54:ee:23:da:a5:24:
73:3d:95:3b:b3:92:3c:7c:e6:38:a1:14:17:65:ea:
f8:db:23:c6:29:fb:38:70:ff:26:eb:a6:7d:36:be:
80:8c:ad:8c:04:e6:ec:b9:1b:14:56:a8:37:67:07:
a6:46:9b:77:2a:53:1f:d1:ea:7b:1f:d0:8c:44:45:
bc:96:1d:46:15:c7:2d:47:9e:e0:e1:cd:de:c3:be:
7a:af:76:80:c1:4c:c6:9d:9e:fb:83:ce:9c:e0:88:
38:1e:1f:28:4d:f4:6c:91:b8:63:29:57:a1:42:11:
5f:b6:74:7b:36:d1:e9:11:c6:b5:9c:1a:0e:2e:c0:
cf:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:42:89:66:1C:51:95:DD:A8:C9:FB:D8:11:05:89:E9:FC:77:E2:DA
X509v3 Authority Key Identifier:
keyid:DB:48:81:63:DA:F5:0D:B6:46:DE:4D:F2:4D:34:CB:AC:99:3F:45:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20iBY9r1DbZG3k3yTTTLrJk_RX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:a5:de:f3:07:6f:0f:03:84:e0:cf:01:f1:39:02:c4:72:f5:
5d:28:8d:93:ce:03:2a:29:20:c4:ec:73:49:4c:be:fe:7a:d2:
7d:9e:92:4f:fb:86:c3:e1:9f:53:94:29:54:88:c5:65:2d:1a:
e3:3c:15:8a:f5:bf:98:1a:b1:35:7e:a7:a1:2f:c4:18:f9:42:
7f:8d:03:af:be:66:71:2a:e6:43:f3:6b:4d:d3:e1:66:63:77:
f8:8c:5c:25:72:2b:7f:37:68:d9:e1:79:93:a5:03:0e:21:be:
73:c3:15:98:0d:62:45:b2:bf:5a:64:2c:87:b3:f7:00:62:15:
9e:c1:df:90:88:02:64:38:73:aa:b8:49:a2:4a:8e:40:ad:b8:
88:57:1b:e8:8c:97:2b:78:dd:13:20:69:5a:88:38:d7:32:37:
05:82:c7:c1:da:31:bd:a4:9b:1f:9c:70:3f:02:d4:1e:01:98:
6d:5f:f1:52:18:3a:ee:bc:0d:09:ea:2d:68:40:fb:02:50:ae:
01:09:95:da:8c:8e:35:dc:53:ec:dc:1b:d6:f8:8e:cd:46:72:
d7:88:62:aa:7d:a0:12:c7:2f:78:d7:dd:77:47:cd:45:99:9c:
cc:c7:f4:db:f9:9b:e6:79:35:fd:e0:e2:00:86:57:e2:69:9f:
69:0c:34:99
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY8vvKHd/8VcgchggJCf5XRuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiNDg4MTYzZGFmNTBkYjY0NmRlNGRmMjRkMzRjYmFjOTkz
ZjQ1N2YwHhcNMjQwNDMwMTYwMDQyWhcNMjQwNTAxMTYwMDQyWjAzMTEwLwYDVQQD
EyhmOTQyODk2NjFjNTE5NWRkYThjOWZiZDgxMTA1ODllOWZjNzdlMmRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwy6quJl0bVq6cWVcDqWGxuHvF1Ly
O3lmNO1XLICxibxpu60Itcozrfa0IF0lausvfYI5jh4jV3iT1B0jTBIWEBWfZPA0
kjZhO0gnFYtxH8UmGlU1MXwuQ7HBEV3TGv9GWd2kC+dKzjPlVSw2Cg4prpACQ0X+
epR9/oEZpLjBX7hU7iPapSRzPZU7s5I8fOY4oRQXZer42yPGKfs4cP8m66Z9Nr6A
jK2MBObsuRsUVqg3ZwemRpt3KlMf0ep7H9CMREW8lh1GFcctR57g4c3ew756r3aA
wUzGnZ77g86c4Ig4Hh8oTfRskbhjKVehQhFftnR7NtHpEca1nBoOLsDPVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPlCiWYcUZXdqMn72BEFien8d+LaMB8GA1UdIwQY
MBaAFNtIgWPa9Q22Rt5N8k00y6yZP0V/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjBpQlk5cjFEYlpHM2szeVRUVExySmtfUlg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy80ZTVjMTAtNzFlZC00ZGViLWI0ZTAt
MTlkNTdmZjFmYmQ5LzEvMjBpQlk5cjFEYlpHM2szeVRUVExySmtfUlg4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy80ZTVjMTAtNzFlZC00ZGViLWI0ZTAtMTlkNTdmZjFmYmQ5
LzEvMjBpQlk5cjFEYlpHM2szeVRUVExySmtfUlg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlqXe8wdv
DwOE4M8B8TkCxHL1XSiNk84DKikgxOxzSUy+/nrSfZ6ST/uGw+GfU5QpVIjFZS0a
4zwVivW/mBqxNX6noS/EGPlCf40Dr75mcSrmQ/NrTdPhZmN3+IxcJXIrfzdo2eF5
k6UDDiG+c8MVmA1iRbK/WmQsh7P3AGIVnsHfkIgCZDhzqrhJokqOQK24iFcb6IyX
K3jdEyBpWog41zI3BYLHwdoxvaSbH5xwPwLUHgGYbV/xUhg67rwNCeotaED7AlCu
AQmV2oyONdxT7Nwb1viOzUZy14hiqn2gEscveNfdd0fNRZmczMf02/mb5nk1/eDi
AIZX4mmfaQw0mQ==
-----END CERTIFICATE-----
Generated at Tue Apr 30 20:36:15 2024 by rpki-client on console-ams.rpki-client.org