Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
File: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft (raw, json)
Hash identifier: Ze40CYS0olcU5ya23EnCtAcBQ3+lJ2odVccq1cV4S9M=
Subject key identifier: A0:96:8F:DA:A0:3E:CC:0D:4F:64:47:D3:3F:DC:1F:32:8B:F4:53:09
Authority key identifier: 23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
Certificate issuer: /CN=230d311fc19463fdd30adecc917b5f0298741b44
Certificate serial: 018F20F0A0F948614D57B2A44B5F356B0CF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
Manifest number: 0B5F
Signing time: Sat 27 Apr 2024 19:03:11 +0000
Manifest this update: Sat 27 Apr 2024 19:03:11 +0000
Manifest next update: Sun 28 Apr 2024 19:03:11 +0000
Files and hashes: 1: BEtomy0z2sSvfCvzxEP-bpHIxgw.roa (hash: zzS7bis8KkCCeaBtGEc5YU1hm9A/j8o5GEfCMVs5SeI=)
2: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl (hash: c+q7iTQlOgvQQ/vrRO9tfbnVIREWbBd6tH8ScqjH3eU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Apr 2024 11:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:20:f0:a0:f9:48:61:4d:57:b2:a4:4b:5f:35:6b:0c:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230d311fc19463fdd30adecc917b5f0298741b44
Validity
Not Before: Apr 27 19:03:11 2024 GMT
Not After : Apr 28 19:03:11 2024 GMT
Subject: CN=a0968fdaa03ecc0d4f6447d33fdc1f328bf45309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4e:2c:bb:1c:fd:12:1b:b3:36:09:81:03:34:
ac:09:c4:10:11:26:14:3d:f3:51:04:6e:99:e7:f9:
f9:fe:fd:10:de:fe:6e:aa:27:be:5a:ff:b4:7a:08:
b7:c5:94:a9:c1:c0:2f:d5:7c:e8:c0:c5:56:ad:9c:
dd:6b:14:b5:4f:a2:66:ec:7e:6b:a9:5a:f0:1d:8e:
2c:56:c8:f1:d8:18:32:e7:41:74:ea:6c:84:13:ec:
bf:87:71:bf:c5:11:0a:4f:10:d4:28:44:60:c4:1e:
ca:ad:84:61:72:93:ea:19:6c:5a:f2:b8:aa:b6:8e:
b3:1c:45:c9:66:37:e3:6e:4b:43:b1:41:74:b3:e0:
58:c7:9d:49:b6:bd:b2:97:12:88:b8:b8:c2:6f:27:
93:b5:fd:0f:09:18:48:47:a9:c2:10:14:f0:c4:d3:
4c:f3:64:24:70:14:19:05:9e:4d:38:c2:15:1a:03:
21:d5:e1:c1:e3:0d:01:4b:86:79:67:4a:6d:90:36:
27:ff:32:9d:1c:b9:5d:51:83:ed:cc:4c:d6:ec:c8:
57:dd:ac:5d:ef:14:e9:df:9c:3e:13:ec:a2:eb:f4:
43:f2:69:06:83:9e:55:3e:30:e4:16:54:a9:e0:72:
ff:59:9c:03:33:4e:a4:35:a3:94:3c:88:2d:4b:ac:
d9:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:96:8F:DA:A0:3E:CC:0D:4F:64:47:D3:3F:DC:1F:32:8B:F4:53:09
X509v3 Authority Key Identifier:
keyid:23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:b7:59:3d:19:84:ec:df:39:bc:9f:f9:63:17:18:6d:a2:9b:
e0:ef:69:34:b9:e2:e4:05:4c:bd:58:88:1e:68:76:4c:11:ad:
25:97:46:1a:3c:c9:76:93:01:66:17:85:4d:ca:b4:25:e5:a1:
c7:86:fa:53:15:8b:33:45:ae:07:7e:85:d4:f4:69:98:74:4c:
dc:bd:a3:1e:10:ee:88:52:75:af:c5:bb:2b:28:51:be:c9:f4:
0f:6c:2e:15:95:b9:01:36:7a:2c:f1:6b:18:2a:89:1c:63:e7:
97:6e:c4:60:ad:57:b9:27:14:f3:c4:bd:9e:f6:7b:60:a6:94:
5d:90:d7:97:02:9b:6f:81:63:7a:61:8f:30:06:99:33:cb:9d:
6d:c3:79:68:ed:d9:55:6b:23:2b:39:24:e2:82:c5:14:2b:34:
4a:a1:b5:a1:ae:b8:7c:a9:ae:51:ff:24:73:af:1f:56:5a:df:
32:18:13:ce:43:16:50:e9:86:4e:5a:fc:f8:b2:28:70:03:fe:
68:b0:c6:35:7e:bc:a8:c2:6f:6e:86:ab:64:ef:5c:d9:4a:81:
bd:01:de:55:06:91:0b:31:2c:0e:98:7e:8f:e9:55:14:ae:0f:
36:8d:dd:49:27:f1:7f:ce:b9:b2:dd:88:b0:02:c4:65:d2:95:
87:f0:c8:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY8g8KD5SGFNV7KkS181awzzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzMGQzMTFmYzE5NDYzZmRkMzBhZGVjYzkxN2I1ZjAyOTg3
NDFiNDQwHhcNMjQwNDI3MTkwMzExWhcNMjQwNDI4MTkwMzExWjAzMTEwLwYDVQQD
EyhhMDk2OGZkYWEwM2VjYzBkNGY2NDQ3ZDMzZmRjMWYzMjhiZjQ1MzA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk04suxz9EhuzNgmBAzSsCcQQESYU
PfNRBG6Z5/n5/v0Q3v5uqie+Wv+0egi3xZSpwcAv1XzowMVWrZzdaxS1T6Jm7H5r
qVrwHY4sVsjx2Bgy50F06myEE+y/h3G/xREKTxDUKERgxB7KrYRhcpPqGWxa8riq
to6zHEXJZjfjbktDsUF0s+BYx51Jtr2ylxKIuLjCbyeTtf0PCRhIR6nCEBTwxNNM
82QkcBQZBZ5NOMIVGgMh1eHB4w0BS4Z5Z0ptkDYn/zKdHLldUYPtzEzW7MhX3axd
7xTp35w+E+yi6/RD8mkGg55VPjDkFlSp4HL/WZwDM06kNaOUPIgtS6zZWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKCWj9qgPswNT2RH0z/cHzKL9FMJMB8GA1UdIwQY
MBaAFCMNMR/BlGP90wrezJF7XwKYdBtEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXcweEg4R1VZXzNUQ3Q3TWtYdGZBcGgwRzBRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8yODFkZmItMzI5My00YmFiLWJhMjIt
MWJlY2I1ZGNkN2FhLzEvSXcweEg4R1VZXzNUQ3Q3TWtYdGZBcGgwRzBRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi8yODFkZmItMzI5My00YmFiLWJhMjItMWJlY2I1ZGNkN2Fh
LzEvSXcweEg4R1VZXzNUQ3Q3TWtYdGZBcGgwRzBRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIbdZPRmE
7N85vJ/5YxcYbaKb4O9pNLni5AVMvViIHmh2TBGtJZdGGjzJdpMBZheFTcq0JeWh
x4b6UxWLM0WuB36F1PRpmHRM3L2jHhDuiFJ1r8W7KyhRvsn0D2wuFZW5ATZ6LPFr
GCqJHGPnl27EYK1XuScU88S9nvZ7YKaUXZDXlwKbb4FjemGPMAaZM8udbcN5aO3Z
VWsjKzkk4oLFFCs0SqG1oa64fKmuUf8kc68fVlrfMhgTzkMWUOmGTlr8+LIocAP+
aLDGNX68qMJvboarZO9c2UqBvQHeVQaRCzEsDph+j+lVFK4PNo3dSSfxf865st2I
sALEZdKVh/DI/A==
-----END CERTIFICATE-----
Generated at Sat Apr 27 20:38:06 2024 by rpki-client on console-ams.rpki-client.org