Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
File: KeoL3n9pK8X9wLFoumFKAnLy5k0.mft (raw, json)
Hash identifier: pRU4AqbQPDtySAfZRd4yfeJPHreO5YNjEpRWgonSbR4=
Subject key identifier: 4A:2F:D6:C9:49:F6:40:C6:F8:84:D7:BC:6E:93:30:07:BD:FF:2D:6D
Authority key identifier: 29:EA:0B:DE:7F:69:2B:C5:FD:C0:B1:68:BA:61:4A:02:72:F2:E6:4D
Certificate issuer: /CN=29ea0bde7f692bc5fdc0b168ba614a0272f2e64d
Certificate serial: 018F87ED0A039D99938F8C74B53AFAF78BB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
Manifest number: 07E3
Signing time: Fri 17 May 2024 19:00:09 +0000
Manifest this update: Fri 17 May 2024 19:00:09 +0000
Manifest next update: Sat 18 May 2024 19:00:09 +0000
Files and hashes: 1: KeoL3n9pK8X9wLFoumFKAnLy5k0.crl (hash: L+ZqFU8fPSnqblAZ/598wBFcXfmL6vH7ymiegnY80KY=)
2: lH8mLE4gasgYICo5LsqC2R0vWac.roa (hash: s+D0sCpC6TcaBXNbpJvdHwa11NEoBcu9NxrPWsyJhAU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:ed:0a:03:9d:99:93:8f:8c:74:b5:3a:fa:f7:8b:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29ea0bde7f692bc5fdc0b168ba614a0272f2e64d
Validity
Not Before: May 17 19:00:09 2024 GMT
Not After : May 18 19:00:09 2024 GMT
Subject: CN=4a2fd6c949f640c6f884d7bc6e933007bdff2d6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:91:83:1f:b6:0f:d7:93:ba:8c:fb:21:56:1b:
fa:86:fe:ea:3d:e4:48:5e:32:53:14:5c:6a:ac:3c:
85:e8:db:f5:0a:ad:c9:09:1f:b6:b3:10:86:26:83:
3a:5e:7f:da:33:ff:43:ba:d6:43:bd:e2:c8:2b:31:
81:e0:d7:24:c7:20:bb:e6:74:5e:4e:00:49:bf:17:
88:81:31:7a:67:aa:00:dd:af:4c:2e:6b:6b:42:72:
10:34:80:3c:21:11:a4:8c:67:24:df:5a:cd:0b:6e:
7d:b0:52:70:71:14:c4:fe:3e:4c:28:f4:b6:e2:6b:
64:c8:ed:e8:3d:6b:01:a9:0f:8e:23:33:63:59:f2:
52:19:84:34:7c:1c:d0:12:86:3f:f2:c3:ee:5e:e0:
02:e3:3a:e5:cb:bf:77:7a:47:22:09:d5:90:28:66:
06:17:d6:b5:4e:03:c1:f8:9d:a9:67:09:88:bd:69:
59:ab:99:70:eb:53:19:33:eb:1b:fe:59:f1:e9:9f:
95:71:b0:e7:29:cd:37:fc:21:ad:f9:d7:f3:7d:f4:
17:e7:82:7c:db:c6:8f:4c:7e:1d:aa:10:65:38:f0:
3c:fb:fe:aa:8e:c3:48:d4:13:10:e9:74:70:29:ee:
a6:da:dd:94:6a:de:0a:8e:a5:b7:4b:5a:28:2f:4e:
30:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:2F:D6:C9:49:F6:40:C6:F8:84:D7:BC:6E:93:30:07:BD:FF:2D:6D
X509v3 Authority Key Identifier:
keyid:29:EA:0B:DE:7F:69:2B:C5:FD:C0:B1:68:BA:61:4A:02:72:F2:E6:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:57:c5:60:e4:c6:dd:4d:00:f8:e3:90:f6:63:e2:84:de:f4:
7c:0f:a1:12:b7:76:d9:00:b6:a6:8b:a6:c8:33:5d:bf:4e:05:
45:cf:82:16:ea:7f:b3:0d:8a:cb:10:42:c3:9b:48:4d:81:53:
d6:48:b5:76:7d:f2:0a:cc:2c:2a:9b:38:a5:e0:28:b9:05:de:
d7:0c:dc:a5:95:69:03:63:47:11:54:7a:e1:2d:52:06:91:9c:
ea:63:47:42:73:ed:75:3c:3a:d7:ea:32:ae:59:c6:22:89:e6:
d6:be:a0:d4:8a:4d:ae:d8:c5:b4:b1:a1:5b:63:42:5b:18:4f:
55:aa:a5:9a:b0:40:78:e0:58:7a:3f:5b:b1:fc:8b:57:77:a0:
d1:7b:51:1e:3b:32:ed:4e:9b:17:b5:80:9a:73:8d:9b:a3:47:
1f:54:2e:3b:bd:04:43:70:56:fe:d5:52:62:44:13:af:04:da:
1b:89:5c:31:51:9d:9f:f4:93:86:ba:64:87:9e:0d:04:0e:47:
05:71:5e:43:12:83:cf:a5:52:32:73:d5:b1:21:06:0d:dc:b8:
5a:44:e3:ba:aa:97:d0:96:b8:83:16:fd:c2:d0:6c:4d:bb:89:
17:77:a3:2a:52:da:43:34:3d:9b:ae:45:90:04:0b:24:35:e6:
9b:48:61:78
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+H7QoDnZmTj4x0tTr694uwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5ZWEwYmRlN2Y2OTJiYzVmZGMwYjE2OGJhNjE0YTAyNzJm
MmU2NGQwHhcNMjQwNTE3MTkwMDA5WhcNMjQwNTE4MTkwMDA5WjAzMTEwLwYDVQQD
Eyg0YTJmZDZjOTQ5ZjY0MGM2Zjg4NGQ3YmM2ZTkzMzAwN2JkZmYyZDZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA05GDH7YP15O6jPshVhv6hv7qPeRI
XjJTFFxqrDyF6Nv1Cq3JCR+2sxCGJoM6Xn/aM/9DutZDveLIKzGB4NckxyC75nRe
TgBJvxeIgTF6Z6oA3a9MLmtrQnIQNIA8IRGkjGck31rNC259sFJwcRTE/j5MKPS2
4mtkyO3oPWsBqQ+OIzNjWfJSGYQ0fBzQEoY/8sPuXuAC4zrly793ekciCdWQKGYG
F9a1TgPB+J2pZwmIvWlZq5lw61MZM+sb/lnx6Z+VcbDnKc03/CGt+dfzffQX54J8
28aPTH4dqhBlOPA8+/6qjsNI1BMQ6XRwKe6m2t2Uat4KjqW3S1ooL04wRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEov1slJ9kDG+ITXvG6TMAe9/y1tMB8GA1UdIwQY
MBaAFCnqC95/aSvF/cCxaLphSgJy8uZNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2VvTDNuOXBLOFg5d0xGb3VtRktBbkx5NWswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC9kMmZmNWItMDAwOC00NTcyLTkzODAt
OTc2YzA0YmRmMThmLzEvS2VvTDNuOXBLOFg5d0xGb3VtRktBbkx5NWswLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC9kMmZmNWItMDAwOC00NTcyLTkzODAtOTc2YzA0YmRmMThm
LzEvS2VvTDNuOXBLOFg5d0xGb3VtRktBbkx5NWswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVFfFYOTG
3U0A+OOQ9mPihN70fA+hErd22QC2poumyDNdv04FRc+CFup/sw2KyxBCw5tITYFT
1ki1dn3yCswsKps4peAouQXe1wzcpZVpA2NHEVR64S1SBpGc6mNHQnPtdTw61+oy
rlnGIonm1r6g1IpNrtjFtLGhW2NCWxhPVaqlmrBAeOBYej9bsfyLV3eg0XtRHjsy
7U6bF7WAmnONm6NHH1QuO70EQ3BW/tVSYkQTrwTaG4lcMVGdn/SThrpkh54NBA5H
BXFeQxKDz6VSMnPVsSEGDdy4WkTjuqqX0Ja4gxb9wtBsTbuJF3ejKlLaQzQ9m65F
kAQLJDXmm0hheA==
-----END CERTIFICATE-----
Generated at Fri May 17 20:13:07 2024 by rpki-client on console-ams.rpki-client.org