Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft
File: Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft (raw, json)
Hash identifier: kDw3fMRgcOgX9ybi9LJmEJ4bLVUtsoyKxz3UYACtL1M=
Subject key identifier: 4A:1A:9C:E7:23:15:19:03:66:D3:A1:AC:C0:81:8D:1C:F6:32:24:4C
Authority key identifier: 63:3B:68:95:FE:49:93:39:7B:66:23:2B:B0:A2:D3:E3:C6:25:CC:1B
Certificate issuer: /CN=633b6895fe4993397b66232bb0a2d3e3c625cc1b
Certificate serial: 018F9616936BCF3A42F0D5B0139BE6CF8690
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yztolf5Jkzl7ZiMrsKLT48YlzBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft
Manifest number: 0B9A
Signing time: Mon 20 May 2024 13:00:12 +0000
Manifest this update: Mon 20 May 2024 13:00:12 +0000
Manifest next update: Tue 21 May 2024 13:00:12 +0000
Files and hashes: 1: ScAzM3Pv8V_KKFpDgRm6J0ZBPo4.roa (hash: bdJVrwOk9s8HD7oIoaxEd9p8Goq3MJSdOc3ZS23GIis=)
2: Yztolf5Jkzl7ZiMrsKLT48YlzBs.crl (hash: BU7kENuUuoyepa3CfIKHLXkbDmqCVCuO1/cUMHaIXK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yztolf5Jkzl7ZiMrsKLT48YlzBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:96:16:93:6b:cf:3a:42:f0:d5:b0:13:9b:e6:cf:86:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=633b6895fe4993397b66232bb0a2d3e3c625cc1b
Validity
Not Before: May 20 13:00:12 2024 GMT
Not After : May 21 13:00:12 2024 GMT
Subject: CN=4a1a9ce72315190366d3a1acc0818d1cf632244c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:23:89:5b:db:0a:68:66:fb:90:c6:6b:33:98:
27:78:ab:8b:a8:3a:03:7e:d6:01:a1:11:0f:da:cc:
ef:de:06:86:2c:4c:06:a2:55:89:d6:4d:2f:50:f8:
9d:f6:49:46:df:0a:aa:16:aa:12:c3:cb:3f:5b:7a:
d3:99:e7:90:d9:ba:99:b4:d9:e5:61:8b:aa:6b:73:
ab:c8:70:b5:f0:15:8e:d8:4c:a0:8d:75:ec:bc:80:
46:43:8b:1a:2a:de:e5:55:58:b7:83:fb:1c:ba:b2:
08:f5:6d:4d:54:6e:00:50:da:ed:01:b5:e1:c4:1e:
9b:2a:ef:82:4e:16:83:6a:a4:f2:4f:f2:7c:00:4a:
e8:98:36:85:36:b5:35:58:7f:d3:18:2e:f1:d6:d4:
d9:a8:cb:76:b9:b4:74:a6:f3:4b:11:9e:3e:ff:6b:
3d:3c:69:57:a8:6b:ab:bb:8e:6a:c1:dc:b4:76:a1:
33:23:8e:01:ba:0a:04:18:b0:0b:cc:a6:cd:71:b5:
a0:ec:d5:fa:1b:43:80:11:f3:5f:4e:d0:11:82:b7:
8b:3a:10:1f:31:7e:0e:c3:ed:e6:ef:53:a4:2e:bd:
d0:39:2b:4e:89:ca:cf:c2:ed:ef:db:d4:7a:13:e1:
a8:69:e8:83:61:fe:05:f8:6a:24:94:f4:4f:50:86:
e5:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:1A:9C:E7:23:15:19:03:66:D3:A1:AC:C0:81:8D:1C:F6:32:24:4C
X509v3 Authority Key Identifier:
keyid:63:3B:68:95:FE:49:93:39:7B:66:23:2B:B0:A2:D3:E3:C6:25:CC:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yztolf5Jkzl7ZiMrsKLT48YlzBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:e0:bf:bf:e3:72:02:fc:e2:bd:c1:51:ec:4b:8c:ef:17:7d:
86:08:af:ad:6e:86:cc:a7:c2:4d:41:61:80:03:bc:7e:29:9e:
35:4f:81:e5:8c:cc:02:e1:01:28:2a:ab:52:6a:f6:a9:db:1a:
11:e0:bf:ac:a8:38:c5:20:ee:9c:3b:50:0e:af:3b:e6:c9:d5:
56:07:e2:b7:f1:a4:5c:6b:50:89:7c:61:49:75:3a:ab:a2:5f:
9d:ac:b1:de:fa:89:f1:c3:d8:e5:67:16:9c:d3:f9:11:b8:d8:
27:02:ff:82:b6:a4:e0:7b:b6:5d:5c:fe:54:3e:8a:f0:cc:d7:
41:3d:13:4c:18:59:8e:17:fa:31:98:32:d9:49:23:d9:a2:d6:
c5:a2:89:f9:f0:b6:94:a5:f5:3b:b9:64:1e:44:7d:22:19:db:
79:9e:ca:ee:b9:6f:52:cd:6e:bb:f2:00:8d:35:b4:21:f9:cf:
2c:27:f8:4f:51:50:58:b0:fc:7e:71:50:55:26:8d:dd:8e:40:
e4:0b:07:55:54:28:3a:6e:90:7b:1f:09:99:6f:23:a5:10:87:
d3:c9:a3:d0:d2:84:7d:c6:46:7e:bc:73:5d:c1:7d:06:f8:8a:
a4:1c:58:75:6d:1a:8f:d6:f5:16:5c:c2:ae:2c:f7:56:35:13:
5f:9c:8d:58
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+WFpNrzzpC8NWwE5vmz4aQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzM2I2ODk1ZmU0OTkzMzk3YjY2MjMyYmIwYTJkM2UzYzYy
NWNjMWIwHhcNMjQwNTIwMTMwMDEyWhcNMjQwNTIxMTMwMDEyWjAzMTEwLwYDVQQD
Eyg0YTFhOWNlNzIzMTUxOTAzNjZkM2ExYWNjMDgxOGQxY2Y2MzIyNDRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmSOJW9sKaGb7kMZrM5gneKuLqDoD
ftYBoREP2szv3gaGLEwGolWJ1k0vUPid9klG3wqqFqoSw8s/W3rTmeeQ2bqZtNnl
YYuqa3OryHC18BWO2EygjXXsvIBGQ4saKt7lVVi3g/scurII9W1NVG4AUNrtAbXh
xB6bKu+CThaDaqTyT/J8AEromDaFNrU1WH/TGC7x1tTZqMt2ubR0pvNLEZ4+/2s9
PGlXqGuru45qwdy0dqEzI44BugoEGLALzKbNcbWg7NX6G0OAEfNfTtARgreLOhAf
MX4Ow+3m71OkLr3QOStOicrPwu3v29R6E+GoaeiDYf4F+GoklPRPUIbleQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEoanOcjFRkDZtOhrMCBjRz2MiRMMB8GA1UdIwQY
MBaAFGM7aJX+SZM5e2YjK7Ci0+PGJcwbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXp0b2xmNUpremw3WmlNcnNLTFQ0OFlsekJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yZmM0MGEtNTVlMy00YWJhLTkxYjUt
NzBiODg3MWI4ZTIwLzEvWXp0b2xmNUpremw3WmlNcnNLTFQ0OFlsekJzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yZmM0MGEtNTVlMy00YWJhLTkxYjUtNzBiODg3MWI4ZTIw
LzEvWXp0b2xmNUpremw3WmlNcnNLTFQ0OFlsekJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQOC/v+Ny
AvzivcFR7EuM7xd9hgivrW6GzKfCTUFhgAO8fimeNU+B5YzMAuEBKCqrUmr2qdsa
EeC/rKg4xSDunDtQDq875snVVgfit/GkXGtQiXxhSXU6q6Jfnayx3vqJ8cPY5WcW
nNP5EbjYJwL/grak4Hu2XVz+VD6K8MzXQT0TTBhZjhf6MZgy2Ukj2aLWxaKJ+fC2
lKX1O7lkHkR9IhnbeZ7K7rlvUs1uu/IAjTW0IfnPLCf4T1FQWLD8fnFQVSaN3Y5A
5AsHVVQoOm6Qex8JmW8jpRCH08mj0NKEfcZGfrxzXcF9BviKpBxYdW0aj9b1FlzC
riz3VjUTX5yNWA==
-----END CERTIFICATE-----
Generated at Mon May 20 18:21:00 2024 by rpki-client on console-fra.rpki-client.org