Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
File: kTOA6LhQRU2zgd3euawsyKL2JTE.mft (raw, json)
Hash identifier: usnK6tEEhiSYx7jls/Iv9XsKZ1KU2supmVHCOo2fVSs=
Subject key identifier: ED:87:96:EB:9A:44:39:FB:B9:07:E5:CB:F2:C6:D4:F6:1E:18:F8:21
Authority key identifier: 91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31
Certificate issuer: /CN=913380e8b850454db381dddeb9ac2cc8a2f62531
Certificate serial: 018F86DA5DCC6660B48AA9ABE7EA9A8FD952
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
Manifest number: 72
Signing time: Fri 17 May 2024 14:00:08 +0000
Manifest this update: Fri 17 May 2024 14:00:08 +0000
Manifest next update: Sat 18 May 2024 14:00:08 +0000
Files and hashes: 1: kTOA6LhQRU2zgd3euawsyKL2JTE.crl (hash: 039KCnOopgfmkDMX7/Otew7c0SrG0U5zukLMDQUezaY=)
2: s18fnWCh1fUB3t9eKjf2NmyLUSc.roa (hash: zj21FkoJFJrq03zRGLJ05KT4Ub78BnBn3Ji77mYpdtk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 14:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:da:5d:cc:66:60:b4:8a:a9:ab:e7:ea:9a:8f:d9:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913380e8b850454db381dddeb9ac2cc8a2f62531
Validity
Not Before: May 17 14:00:08 2024 GMT
Not After : May 18 14:00:08 2024 GMT
Subject: CN=ed8796eb9a4439fbb907e5cbf2c6d4f61e18f821
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:46:7b:27:ab:03:a3:53:84:9d:c8:a7:28:04:
51:85:99:06:df:d9:0c:74:f0:71:c8:20:fc:9c:76:
02:06:70:13:16:74:6c:99:eb:67:7b:82:e2:10:6e:
fc:f7:ef:04:51:44:9f:5f:0e:02:57:c3:de:4b:41:
60:15:a5:00:aa:31:69:df:72:97:fc:30:1b:15:28:
7c:4b:bf:36:83:89:02:7f:dc:d6:9c:62:d6:60:71:
47:63:60:23:bf:37:5e:25:a1:8a:95:4e:f4:24:9a:
b4:eb:e8:b3:7d:b7:53:fe:92:d4:b5:14:a6:d8:3f:
48:31:d4:ef:ab:b5:ee:98:31:60:86:d7:6c:f2:62:
60:2e:55:df:22:f3:5d:3e:4a:c4:19:04:95:c8:ac:
28:31:e8:77:96:ef:22:fe:9c:a0:8b:7e:7f:0a:c8:
1c:b9:f5:2f:73:31:7d:a5:7d:ea:82:60:02:60:1f:
08:7c:3f:75:c3:c4:34:35:4e:d8:47:18:a1:78:17:
6f:a7:ab:bd:9e:4d:1a:10:97:40:d7:11:cf:02:7f:
a8:e7:fd:ff:d5:f7:dc:6a:e7:50:a3:22:9a:d1:73:
ad:7e:75:a3:b0:dd:c0:70:37:b2:c0:c3:53:e6:e9:
24:69:13:7c:7a:2c:64:07:f1:81:43:46:5b:2f:ce:
64:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:87:96:EB:9A:44:39:FB:B9:07:E5:CB:F2:C6:D4:F6:1E:18:F8:21
X509v3 Authority Key Identifier:
keyid:91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:87:aa:fe:2c:68:f1:14:25:62:35:c9:94:f8:cf:c7:27:c6:
16:35:31:ae:63:db:ed:04:4c:bb:c5:c6:be:c9:c7:9d:f9:fe:
58:46:a4:28:d5:62:e4:d2:b0:e7:96:f6:64:75:76:5c:80:81:
bf:08:17:f3:70:ea:f1:7c:fe:63:c7:fc:cc:5f:90:13:dd:47:
d8:77:dc:dd:0a:c4:7d:e1:c0:3c:73:e0:87:67:dc:06:34:07:
59:bb:61:a2:5d:50:ac:e4:66:cf:64:86:8c:c6:8d:17:29:ca:
df:70:cb:c9:be:ec:38:be:8f:06:90:26:63:7d:df:31:84:3a:
5d:96:fd:97:48:f7:f1:b2:fd:be:40:3c:19:84:00:64:1f:32:
a2:1a:34:04:0a:74:a7:78:f5:e1:76:dd:05:2d:a4:f3:fe:bf:
d7:4a:28:66:6c:36:63:89:4b:f9:3c:62:09:c9:15:c2:76:0f:
6a:44:ca:43:61:31:09:e9:1b:e7:41:13:3f:38:e6:8e:25:93:
6b:76:08:bd:3a:b9:d6:6e:40:d4:40:a7:56:0d:17:bd:13:30:
df:42:32:f6:48:ba:5c:f8:92:54:fa:94:13:b7:72:07:53:e5:
b9:63:1a:c0:5c:9e:b1:0f:94:d1:a6:85:9b:4f:b3:ff:c4:99:
16:90:fb:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+G2l3MZmC0iqmr5+qaj9lSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxMzM4MGU4Yjg1MDQ1NGRiMzgxZGRkZWI5YWMyY2M4YTJm
NjI1MzEwHhcNMjQwNTE3MTQwMDA4WhcNMjQwNTE4MTQwMDA4WjAzMTEwLwYDVQQD
EyhlZDg3OTZlYjlhNDQzOWZiYjkwN2U1Y2JmMmM2ZDRmNjFlMThmODIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5EZ7J6sDo1OEncinKARRhZkG39kM
dPBxyCD8nHYCBnATFnRsmetne4LiEG789+8EUUSfXw4CV8PeS0FgFaUAqjFp33KX
/DAbFSh8S782g4kCf9zWnGLWYHFHY2AjvzdeJaGKlU70JJq06+izfbdT/pLUtRSm
2D9IMdTvq7XumDFghtds8mJgLlXfIvNdPkrEGQSVyKwoMeh3lu8i/pygi35/Csgc
ufUvczF9pX3qgmACYB8IfD91w8Q0NU7YRxiheBdvp6u9nk0aEJdA1xHPAn+o5/3/
1ffcaudQoyKa0XOtfnWjsN3AcDeywMNT5ukkaRN8eixkB/GBQ0ZbL85kNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO2HluuaRDn7uQfly/LG1PYeGPghMB8GA1UdIwQY
MBaAFJEzgOi4UEVNs4Hd3rmsLMii9iUxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi84Njk0YjktMDFkNy00OGI4LWE4ODIt
OTRlNzAwYmQ1NWY1LzEva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi84Njk0YjktMDFkNy00OGI4LWE4ODItOTRlNzAwYmQ1NWY1
LzEva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhYeq/ixo
8RQlYjXJlPjPxyfGFjUxrmPb7QRMu8XGvsnHnfn+WEakKNVi5NKw55b2ZHV2XICB
vwgX83Dq8Xz+Y8f8zF+QE91H2Hfc3QrEfeHAPHPgh2fcBjQHWbthol1QrORmz2SG
jMaNFynK33DLyb7sOL6PBpAmY33fMYQ6XZb9l0j38bL9vkA8GYQAZB8yoho0BAp0
p3j14XbdBS2k8/6/10ooZmw2Y4lL+TxiCckVwnYPakTKQ2ExCekb50ETPzjmjiWT
a3YIvTq51m5A1ECnVg0XvRMw30Iy9ki6XPiSVPqUE7dyB1PluWMawFyesQ+U0aaF
m0+z/8SZFpD7wg==
-----END CERTIFICATE-----
Generated at Fri May 17 19:10:13 2024 by rpki-client on console-fra.rpki-client.org