Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft
File: q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft (raw, json)
Hash identifier: pGw6Jt6by3UxjNnDUKvmZBVRBBELLek5PvX1ALu0iFQ=
Subject key identifier: AE:47:C2:D1:3A:D8:66:73:BA:A2:5D:07:6D:67:42:86:FD:51:95:63
Authority key identifier: AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
Certificate issuer: /CN=abbad3de831da94222c1add104caf4c3247689ac
Certificate serial: 018F83A2631A6E38B3ABCDD647CAE7C7FC12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft
Manifest number: 11AC
Signing time: Thu 16 May 2024 23:00:08 +0000
Manifest this update: Thu 16 May 2024 23:00:08 +0000
Manifest next update: Fri 17 May 2024 23:00:08 +0000
Files and hashes: 1: TctpdesbX2uOObg9JVqqlpWNtOA.roa (hash: cWsnzhfY96qGytqfIezcys61uAdjDuqgAAmbGQohjv8=)
2: q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl (hash: FuLgq7YzoOcvz3ZcqM3Jo3gOPIJP2TOwHjIBcpkN9Mo=)
3: rlqwBPPzkUJ2KuxxuXQzWVi_RuE.roa (hash: bOW7MApR9QEy9QqUfJktNtHERdPWXnER7OyhifW6Hmg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 19:23:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:83:a2:63:1a:6e:38:b3:ab:cd:d6:47:ca:e7:c7:fc:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abbad3de831da94222c1add104caf4c3247689ac
Validity
Not Before: May 16 23:00:08 2024 GMT
Not After : May 17 23:00:08 2024 GMT
Subject: CN=ae47c2d13ad86673baa25d076d674286fd519563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2c:69:58:fe:e4:61:d9:cc:2d:c3:e9:1f:25:
ea:40:99:37:84:5a:d3:c5:17:f0:cc:cb:73:7a:81:
57:ac:2f:47:c9:f3:9e:f9:ab:c4:28:bf:22:78:87:
3f:06:c4:ce:6b:88:40:5a:70:cc:98:4f:ea:52:9d:
12:6f:a8:c6:18:2d:02:fb:16:81:b8:8a:11:02:17:
7a:39:12:a6:52:49:46:f8:2a:75:e0:0e:96:3b:89:
5a:f4:8d:f6:e4:6d:6b:74:fa:a7:8c:00:cf:2d:4e:
16:d3:d8:d5:da:a0:f9:32:db:a2:5b:7e:30:43:da:
04:51:20:9f:42:cc:c4:1f:ed:ba:9a:cd:69:31:e8:
17:7d:3c:46:31:7b:42:5b:46:28:87:f4:01:59:51:
cc:b6:91:ac:31:3e:9f:ec:1d:2d:65:fa:42:81:36:
ff:b4:35:2b:7e:56:f2:6e:06:9e:35:46:9f:e3:59:
3a:42:02:ca:a0:3c:2c:29:3a:19:7d:d8:4c:ea:c8:
72:56:1e:96:f6:2b:7d:7d:95:06:16:a4:9a:18:e1:
f3:57:bf:ba:a1:ab:59:0f:f3:ed:a1:c4:3c:0c:a3:
ee:88:ad:70:db:63:b4:0f:99:29:09:0f:cc:ad:f8:
2c:8a:46:10:4c:fb:f6:ca:ad:a3:b8:a0:69:6f:1e:
12:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:47:C2:D1:3A:D8:66:73:BA:A2:5D:07:6D:67:42:86:FD:51:95:63
X509v3 Authority Key Identifier:
keyid:AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:d2:c6:59:6e:2e:3d:59:87:27:53:d2:ca:8c:a1:ff:4a:6d:
e0:d9:36:22:6a:95:0e:37:83:c1:46:79:ec:f3:cc:11:41:47:
41:ab:df:f8:70:7e:2a:15:a4:bb:07:a4:55:04:ee:60:e9:d2:
9b:4c:5b:d3:80:08:ae:82:75:20:9f:9b:5d:ae:91:84:f7:c0:
05:7b:8e:52:dc:83:e9:ca:98:6a:8f:e3:76:ca:8c:27:d1:ea:
dd:b0:ff:2c:94:1a:86:b8:29:3d:c2:e3:8f:bd:15:bf:71:a2:
be:de:ff:20:a9:52:9e:ed:2a:7d:6b:8f:07:75:69:1e:00:91:
2d:48:e7:a8:f8:ad:02:88:a8:2b:cb:83:1b:5c:b8:08:dd:79:
ad:02:d1:11:b1:09:b3:2a:69:b7:a6:e9:f0:94:7a:c0:30:fa:
0b:a8:cd:2a:62:94:d2:00:e1:40:4a:49:bc:15:fc:cd:9f:75:
ff:d7:a3:0e:e1:0d:96:4b:a9:74:bf:c4:69:50:bb:d7:c5:6a:
6f:3d:18:f6:94:d6:f6:03:71:20:67:81:ac:e9:35:28:12:8b:
68:79:97:7a:1e:48:6a:28:a6:54:37:31:f0:09:d2:6c:30:89:
1c:28:ac:8e:36:3e:b2:85:b7:f3:55:00:7a:3e:08:f9:67:e0:
13:d3:97:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+DomMabjizq83WR8rnx/wSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiYmFkM2RlODMxZGE5NDIyMmMxYWRkMTA0Y2FmNGMzMjQ3
Njg5YWMwHhcNMjQwNTE2MjMwMDA4WhcNMjQwNTE3MjMwMDA4WjAzMTEwLwYDVQQD
EyhhZTQ3YzJkMTNhZDg2NjczYmFhMjVkMDc2ZDY3NDI4NmZkNTE5NTYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvyxpWP7kYdnMLcPpHyXqQJk3hFrT
xRfwzMtzeoFXrC9HyfOe+avEKL8ieIc/BsTOa4hAWnDMmE/qUp0Sb6jGGC0C+xaB
uIoRAhd6ORKmUklG+Cp14A6WO4la9I325G1rdPqnjADPLU4W09jV2qD5MtuiW34w
Q9oEUSCfQszEH+26ms1pMegXfTxGMXtCW0Yoh/QBWVHMtpGsMT6f7B0tZfpCgTb/
tDUrflbybgaeNUaf41k6QgLKoDwsKToZfdhM6shyVh6W9it9fZUGFqSaGOHzV7+6
oatZD/PtocQ8DKPuiK1w22O0D5kpCQ/MrfgsikYQTPv2yq2juKBpbx4SjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK5HwtE62GZzuqJdB21nQob9UZVjMB8GA1UdIwQY
MBaAFKu6096DHalCIsGt0QTK9MMkdomsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTdyVDNvTWRxVUlpd2EzUkJNcjB3eVIyaWF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZTgxNDktZDUzYy00OTkyLWJkMDct
NTVjNDM0ZWVjOTZjLzEvcTdyVDNvTWRxVUlpd2EzUkJNcjB3eVIyaWF3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84ZTgxNDktZDUzYy00OTkyLWJkMDctNTVjNDM0ZWVjOTZj
LzEvcTdyVDNvTWRxVUlpd2EzUkJNcjB3eVIyaWF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArdLGWW4u
PVmHJ1PSyoyh/0pt4Nk2ImqVDjeDwUZ57PPMEUFHQavf+HB+KhWkuwekVQTuYOnS
m0xb04AIroJ1IJ+bXa6RhPfABXuOUtyD6cqYao/jdsqMJ9Hq3bD/LJQahrgpPcLj
j70Vv3Givt7/IKlSnu0qfWuPB3VpHgCRLUjnqPitAoioK8uDG1y4CN15rQLREbEJ
syppt6bp8JR6wDD6C6jNKmKU0gDhQEpJvBX8zZ91/9ejDuENlkupdL/EaVC718Vq
bz0Y9pTW9gNxIGeBrOk1KBKLaHmXeh5IaiimVDcx8AnSbDCJHCisjjY+soW381UA
ej4I+WfgE9OXkQ==
-----END CERTIFICATE-----
Generated at Thu May 16 23:40:28 2024 by rpki-client on console-ams.rpki-client.org