Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft
File: OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft (raw, json)
Hash identifier: p25pMQ25Gk+uKu+dPWrmx16v0qbZopDuscOY/nY8hTE=
Subject key identifier: AF:3B:60:C5:39:69:0A:AE:9E:19:9F:D7:09:53:CF:9C:58:56:B7:54
Authority key identifier: 38:52:06:AC:08:D8:40:C2:8B:F4:AC:56:89:9F:2A:28:F8:FD:CC:C5
Certificate issuer: /CN=385206ac08d840c28bf4ac56899f2a28f8fdccc5
Certificate serial: 018F97973744B6BAAE96E6A93E87C55C71A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft
Manifest number: 117F
Signing time: Mon 20 May 2024 20:00:20 +0000
Manifest this update: Mon 20 May 2024 20:00:20 +0000
Manifest next update: Tue 21 May 2024 20:00:20 +0000
Files and hashes: 1: OFIGrAjYQMKL9KxWiZ8qKPj9zMU.crl (hash: R9XXIKzTbK3Flbccz9qIaCLjnrHDGQkjhyBmpJOGdSs=)
2: cWaZ2JO_nw5F0JqO1QOXOmHu07U.roa (hash: 5wySDFiaOK7W34S9smooEH68nkvAhDaiP+LfiAZQ+Rk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:97:97:37:44:b6:ba:ae:96:e6:a9:3e:87:c5:5c:71:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385206ac08d840c28bf4ac56899f2a28f8fdccc5
Validity
Not Before: May 20 20:00:20 2024 GMT
Not After : May 21 20:00:20 2024 GMT
Subject: CN=af3b60c539690aae9e199fd70953cf9c5856b754
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0c:85:be:3a:21:34:e0:a9:08:54:92:9f:a0:
f1:a7:e7:c3:84:ed:96:c3:73:85:e3:11:22:4e:6d:
e6:99:17:ad:2d:2e:f1:b4:70:4f:2d:42:09:d8:48:
8b:86:d7:1a:95:a3:70:d7:f8:be:a8:fd:0b:2e:cf:
b4:c2:d1:93:c9:1c:25:cb:63:60:8c:a9:20:8f:e0:
3b:4a:11:84:1c:87:3e:74:1b:56:72:d9:93:be:a9:
85:f3:12:f6:8b:9e:58:f4:71:d2:bd:e6:6f:5a:f5:
cc:36:15:1f:0d:1e:43:07:10:08:16:b3:5d:c6:8a:
e0:e3:ee:09:af:99:80:9e:0d:a4:ed:c1:22:6a:c9:
ed:a8:67:aa:31:61:77:4b:aa:60:b2:f2:ab:6a:a8:
29:d5:85:e3:0e:e7:61:8b:a4:26:05:40:11:b0:d1:
85:60:81:4b:20:4e:35:8a:a7:49:06:95:48:55:5c:
8b:55:88:94:7d:68:9f:1c:2b:75:8d:9e:33:3b:4e:
a2:0f:e3:1e:ed:ce:de:11:dd:b4:1f:56:26:25:fc:
de:ac:ea:21:62:0e:98:38:2d:fa:3e:d5:d9:7a:b1:
14:7a:01:69:ce:7e:05:a0:7d:27:a2:c2:e0:6f:86:
98:1c:2e:51:6a:26:21:a0:62:90:87:61:3b:e8:61:
32:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:3B:60:C5:39:69:0A:AE:9E:19:9F:D7:09:53:CF:9C:58:56:B7:54
X509v3 Authority Key Identifier:
keyid:38:52:06:AC:08:D8:40:C2:8B:F4:AC:56:89:9F:2A:28:F8:FD:CC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:7e:23:1e:fe:35:36:ab:03:8a:20:ec:05:a5:fe:27:c6:69:
d0:41:37:fe:b8:e0:64:36:67:0e:31:43:47:a6:4b:4c:e1:e5:
77:cd:d5:90:e6:a5:27:ea:00:67:1d:66:07:bb:59:af:76:4e:
2d:8f:e2:5b:a0:f7:e4:b4:a8:05:c7:2f:75:55:e7:30:23:f2:
3d:be:e9:db:29:05:18:49:4e:7e:8d:9d:80:2f:c1:f0:a2:31:
bb:a3:f4:6d:86:25:9d:92:11:32:78:f8:2a:0d:72:1d:bb:d9:
a3:1d:19:4e:a1:41:0a:5f:3f:f1:73:4e:fc:54:e3:9c:7e:39:
05:67:6a:7f:a2:c3:fe:33:bd:c0:a0:9a:04:7c:47:ed:0e:29:
45:bb:46:c1:2a:47:22:50:18:30:00:1a:7b:85:25:92:db:94:
19:30:c1:2d:c5:2d:a0:ce:17:05:ec:a9:29:fc:96:55:b6:a3:
ea:11:4f:bb:6f:34:1a:f0:b3:07:cd:f2:ba:57:d4:c3:19:f1:
1e:56:3b:b3:62:63:50:f8:72:83:48:f8:05:2a:0a:89:5d:73:
7b:e9:8e:c1:94:50:51:0a:3b:40:4d:ed:0e:a4:b4:f1:eb:41:
f2:23:cc:26:30:20:f6:53:6e:91:5e:d0:ac:c6:bb:27:1b:54:
b7:ff:b4:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+XlzdEtrquluapPofFXHGhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4NTIwNmFjMDhkODQwYzI4YmY0YWM1Njg5OWYyYTI4Zjhm
ZGNjYzUwHhcNMjQwNTIwMjAwMDIwWhcNMjQwNTIxMjAwMDIwWjAzMTEwLwYDVQQD
EyhhZjNiNjBjNTM5NjkwYWFlOWUxOTlmZDcwOTUzY2Y5YzU4NTZiNzU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApQyFvjohNOCpCFSSn6Dxp+fDhO2W
w3OF4xEiTm3mmRetLS7xtHBPLUIJ2EiLhtcalaNw1/i+qP0LLs+0wtGTyRwly2Ng
jKkgj+A7ShGEHIc+dBtWctmTvqmF8xL2i55Y9HHSveZvWvXMNhUfDR5DBxAIFrNd
xorg4+4Jr5mAng2k7cEiasntqGeqMWF3S6pgsvKraqgp1YXjDudhi6QmBUARsNGF
YIFLIE41iqdJBpVIVVyLVYiUfWifHCt1jZ4zO06iD+Me7c7eEd20H1YmJfzerOoh
Yg6YOC36PtXZerEUegFpzn4FoH0nosLgb4aYHC5RaiYhoGKQh2E76GEyPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK87YMU5aQqunhmf1wlTz5xYVrdUMB8GA1UdIwQY
MBaAFDhSBqwI2EDCi/SsVomfKij4/czFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0ZJR3JBallRTUtMOUt4V2laOHFLUGo5ek1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS9mOTU5NjktNjdlZi00MDhlLWE3NDMt
ZTFlYjc5ODk5MjQyLzEvT0ZJR3JBallRTUtMOUt4V2laOHFLUGo5ek1VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOS9mOTU5NjktNjdlZi00MDhlLWE3NDMtZTFlYjc5ODk5MjQy
LzEvT0ZJR3JBallRTUtMOUt4V2laOHFLUGo5ek1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI34jHv41
NqsDiiDsBaX+J8Zp0EE3/rjgZDZnDjFDR6ZLTOHld83VkOalJ+oAZx1mB7tZr3ZO
LY/iW6D35LSoBccvdVXnMCPyPb7p2ykFGElOfo2dgC/B8KIxu6P0bYYlnZIRMnj4
Kg1yHbvZox0ZTqFBCl8/8XNO/FTjnH45BWdqf6LD/jO9wKCaBHxH7Q4pRbtGwSpH
IlAYMAAae4UlktuUGTDBLcUtoM4XBeypKfyWVbaj6hFPu280GvCzB83yulfUwxnx
HlY7s2JjUPhyg0j4BSoKiV1ze+mOwZRQUQo7QE3tDqS08etB8iPMJjAg9lNukV7Q
rMa7JxtUt/+0hA==
-----END CERTIFICATE-----
Generated at Tue May 21 00:47:17 2024 by rpki-client on console-fra.rpki-client.org