Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft
File: IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft (raw, json)
Hash identifier: 1kwvICquhnvPmBderjVA8cIF5uoUuSwJ6UnHb9A6j/s=
Subject key identifier: AE:4B:EF:EA:4A:F5:0F:B6:99:AD:3A:4F:B6:31:6A:37:8C:98:EC:32
Authority key identifier: 21:01:B6:38:8D:64:35:F5:49:90:90:53:82:B4:1D:C9:67:5F:D4:90
Certificate issuer: /CN=2101b6388d6435f54990905382b41dc9675fd490
Certificate serial: 019050FC730DB8DD396A26D7D6BA45FF57D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft
Manifest number: 70
Signing time: Tue 25 Jun 2024 20:00:40 +0000
Manifest this update: Tue 25 Jun 2024 20:00:40 +0000
Manifest next update: Wed 26 Jun 2024 20:00:40 +0000
Files and hashes: 1: 8s3dvDOpKfKvysldwSVNhlHHXQ4.roa (hash: juhFAO3xvhev7E4Eo7gSkAfpubSKRHb6ORQ71ihMHf0=)
2: DlYq05wytPP026tbGQaRWPlCYbI.roa (hash: BSSoaJix6Z5XPsODi88fEh5BOANuu1KrzHVQ2eeS1Io=)
3: IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl (hash: i3HpypesyNQmZVPkDbTa/AGxW79YavPOH0eWTQrTJco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 26 Jun 2024 14:33:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:50:fc:73:0d:b8:dd:39:6a:26:d7:d6:ba:45:ff:57:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2101b6388d6435f54990905382b41dc9675fd490
Validity
Not Before: Jun 25 20:00:40 2024 GMT
Not After : Jun 26 20:00:40 2024 GMT
Subject: CN=ae4befea4af50fb699ad3a4fb6316a378c98ec32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:19:9d:0c:5d:22:3c:1f:dd:49:8b:ca:d9:71:
8c:d2:09:ff:47:c4:96:d0:38:f1:97:72:b3:94:d5:
4d:d2:3d:6f:40:cb:3f:a1:63:70:c7:33:53:f4:42:
31:40:5c:ed:4b:57:57:37:78:b6:e0:16:92:30:06:
fd:6b:ea:f0:d6:e1:75:e4:c6:90:69:83:11:08:3c:
87:41:62:0f:96:a5:05:2b:8d:c5:f4:bf:58:42:0d:
a1:85:09:27:37:35:1b:f8:3e:7b:a7:ee:34:26:0b:
23:c3:5a:33:7c:4a:a5:c2:d6:69:64:3e:b8:25:db:
19:ff:d8:b7:1a:a6:5e:d5:00:b9:49:61:39:9c:2b:
d1:d1:f9:52:ab:b9:ab:dd:f5:41:8e:22:aa:56:26:
ce:d2:eb:0b:5d:10:2e:c0:96:2f:13:53:7d:94:c8:
42:56:d7:ad:0c:a9:73:8b:f0:ee:09:d8:5b:14:38:
25:e5:1e:4d:35:92:f1:c1:1a:68:36:bf:22:65:53:
5c:fc:3e:0e:1d:08:2f:e2:1b:72:e0:8a:09:23:89:
11:d6:49:1f:2c:14:71:ca:26:e7:2d:8f:ca:75:8e:
4c:6e:6a:77:66:61:cf:da:15:cc:22:e3:18:12:dd:
3f:83:f8:8d:df:59:bc:c8:09:24:6f:0a:fa:80:2e:
6e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:4B:EF:EA:4A:F5:0F:B6:99:AD:3A:4F:B6:31:6A:37:8C:98:EC:32
X509v3 Authority Key Identifier:
keyid:21:01:B6:38:8D:64:35:F5:49:90:90:53:82:B4:1D:C9:67:5F:D4:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:c1:80:dc:9b:a0:0d:d1:58:eb:04:80:24:29:3b:65:0c:ec:
de:62:c7:5c:3f:38:2c:7d:31:86:5b:a7:6c:7e:94:ec:63:2d:
27:72:f8:a0:d9:e4:59:7c:ca:13:19:3f:17:89:25:02:13:40:
75:c8:80:40:dd:4d:d8:f2:dc:01:89:56:cc:75:c4:1c:e3:9c:
33:28:a7:54:cc:05:b8:de:6c:ed:c3:06:b0:4e:ac:84:32:1a:
c8:f9:18:4c:e0:4f:1e:92:38:f9:97:1a:78:6a:98:c4:22:d8:
52:0a:1d:d7:53:44:40:e6:fb:f4:d2:34:8b:9d:ab:1d:cf:4d:
f4:3b:06:38:fb:d1:47:ef:91:c2:8c:7d:44:34:85:e8:63:be:
4b:2c:20:f1:27:d7:be:fd:7a:2d:4d:ac:00:73:6d:9a:63:86:
1a:e0:c3:75:78:60:5f:42:57:87:16:ef:5e:a6:29:82:3b:79:
c7:b8:2d:12:4d:98:c3:73:bf:e5:34:80:ac:26:af:e1:d8:ef:
7b:9e:2f:d8:ce:be:b5:26:57:8a:6a:4d:84:07:bd:0c:66:34:
c3:d8:37:b3:64:b0:f8:88:96:a4:4c:44:bb:d2:4a:47:58:0e:
55:0b:2d:07:e6:67:84:71:91:aa:ac:ec:88:b5:84:8b:b4:f3:
aa:3f:1f:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZBQ/HMNuN05aibX1rpF/1fWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxMDFiNjM4OGQ2NDM1ZjU0OTkwOTA1MzgyYjQxZGM5Njc1
ZmQ0OTAwHhcNMjQwNjI1MjAwMDQwWhcNMjQwNjI2MjAwMDQwWjAzMTEwLwYDVQQD
EyhhZTRiZWZlYTRhZjUwZmI2OTlhZDNhNGZiNjMxNmEzNzhjOThlYzMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoRmdDF0iPB/dSYvK2XGM0gn/R8SW
0Djxl3KzlNVN0j1vQMs/oWNwxzNT9EIxQFztS1dXN3i24BaSMAb9a+rw1uF15MaQ
aYMRCDyHQWIPlqUFK43F9L9YQg2hhQknNzUb+D57p+40Jgsjw1ozfEqlwtZpZD64
JdsZ/9i3GqZe1QC5SWE5nCvR0flSq7mr3fVBjiKqVibO0usLXRAuwJYvE1N9lMhC
VtetDKlzi/DuCdhbFDgl5R5NNZLxwRpoNr8iZVNc/D4OHQgv4hty4IoJI4kR1kkf
LBRxyibnLY/KdY5Mbmp3ZmHP2hXMIuMYEt0/g/iN31m8yAkkbwr6gC5u5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK5L7+pK9Q+2ma06T7YxajeMmOwyMB8GA1UdIwQY
MBaAFCEBtjiNZDX1SZCQU4K0HclnX9SQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVFHMk9JMWtOZlZKa0pCVGdyUWR5V2RmMUpBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9jMjA5NWEtM2IzZC00YWM0LTljMzIt
NGRmODkxMjE4OGY3LzEvSVFHMk9JMWtOZlZKa0pCVGdyUWR5V2RmMUpBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9jMjA5NWEtM2IzZC00YWM0LTljMzItNGRmODkxMjE4OGY3
LzEvSVFHMk9JMWtOZlZKa0pCVGdyUWR5V2RmMUpBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPcGA3Jug
DdFY6wSAJCk7ZQzs3mLHXD84LH0xhlunbH6U7GMtJ3L4oNnkWXzKExk/F4klAhNA
dciAQN1N2PLcAYlWzHXEHOOcMyinVMwFuN5s7cMGsE6shDIayPkYTOBPHpI4+Zca
eGqYxCLYUgod11NEQOb79NI0i52rHc9N9DsGOPvRR++Rwox9RDSF6GO+Sywg8SfX
vv16LU2sAHNtmmOGGuDDdXhgX0JXhxbvXqYpgjt5x7gtEk2Yw3O/5TSArCav4djv
e54v2M6+tSZXimpNhAe9DGY0w9g3s2Sw+IiWpExEu9JKR1gOVQstB+ZnhHGRqqzs
iLWEi7Tzqj8ftg==
-----END CERTIFICATE-----
Generated at Tue Jun 25 23:58:50 2024 by rpki-client on console-ams.rpki-client.org