Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/2c3619-2c59-46d2-aaae-ef7453ad099f/1/lRZkUh1QOVkhL1WypZrsbSB7Cig.mft
File: lRZkUh1QOVkhL1WypZrsbSB7Cig.mft (raw, json)
Hash identifier: lefjKokGj2k8Jfks1CrhH6sBq/RS5hgDPvlDrVNSyzs=
Subject key identifier: 74:BE:5E:9C:8C:FD:89:CC:35:B6:12:74:C8:72:5B:ED:51:2D:45:C8
Authority key identifier: 95:16:64:52:1D:50:39:59:21:2F:55:B2:A5:9A:EC:6D:20:7B:0A:28
Certificate issuer: /CN=951664521d503959212f55b2a59aec6d207b0a28
Certificate serial: 018F88241764B6913BA4128D45ACCD46C00C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRZkUh1QOVkhL1WypZrsbSB7Cig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/2c3619-2c59-46d2-aaae-ef7453ad099f/1/lRZkUh1QOVkhL1WypZrsbSB7Cig.mft
Manifest number: 1176
Signing time: Fri 17 May 2024 20:00:17 +0000
Manifest this update: Fri 17 May 2024 20:00:17 +0000
Manifest next update: Sat 18 May 2024 20:00:17 +0000
Files and hashes: 1: i0c4Pwt4he4mE4BRvbWW0ErjLL4.roa (hash: 4+h79yAzdgHoNgMdyjMqpw/6faJtWrlF4MMK733cYBo=)
2: lRZkUh1QOVkhL1WypZrsbSB7Cig.crl (hash: kIXNCsJIOFVdF6T2txA82Vj+cFMW2ExA97wiaDa5j84=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/2c3619-2c59-46d2-aaae-ef7453ad099f/1/lRZkUh1QOVkhL1WypZrsbSB7Cig.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/2c3619-2c59-46d2-aaae-ef7453ad099f/1/lRZkUh1QOVkhL1WypZrsbSB7Cig.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRZkUh1QOVkhL1WypZrsbSB7Cig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:24:17:64:b6:91:3b:a4:12:8d:45:ac:cd:46:c0:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=951664521d503959212f55b2a59aec6d207b0a28
Validity
Not Before: May 17 20:00:17 2024 GMT
Not After : May 18 20:00:17 2024 GMT
Subject: CN=74be5e9c8cfd89cc35b61274c8725bed512d45c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:de:a7:0b:f1:48:fa:e7:94:70:b7:e2:5c:04:
5d:dd:29:ab:36:a2:6a:8f:ce:82:bf:2e:d3:e1:35:
dd:7e:d1:d7:7b:f5:c5:e0:6f:e0:d2:87:af:43:a3:
88:2e:e0:cd:7a:11:0b:4f:b9:58:e0:1f:cb:20:b2:
e5:b4:60:3a:bd:9a:8b:59:58:a9:77:42:af:b3:0b:
22:8f:f2:ca:6c:8d:4d:68:da:4b:19:05:5f:cb:8f:
83:9c:65:d6:8c:64:56:1e:a9:97:64:86:98:be:eb:
05:76:4f:7d:31:b0:27:8c:5c:f0:f9:2d:a9:c5:64:
2d:90:ac:cd:c1:db:9c:a9:6c:36:03:30:1e:45:ca:
aa:cc:8f:71:48:e9:3f:5d:c0:96:42:93:3c:d0:79:
4c:dd:b2:f3:a6:8c:82:6b:3a:6e:29:29:7a:5e:2b:
25:23:f0:29:c0:40:5b:bb:33:29:9d:38:ba:04:43:
75:d9:91:e5:da:09:6f:da:7b:e8:93:2b:26:50:72:
39:85:d0:7b:f5:2e:a1:80:df:66:f8:a8:67:d5:66:
a8:79:9b:d2:ad:5d:d3:f4:e6:ee:92:05:c7:7d:9e:
92:b4:6e:5f:2d:f4:74:17:13:85:c7:2d:c6:ea:c8:
79:b9:ae:c1:9e:60:ca:36:9b:b2:7e:0f:00:0f:1a:
3a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:BE:5E:9C:8C:FD:89:CC:35:B6:12:74:C8:72:5B:ED:51:2D:45:C8
X509v3 Authority Key Identifier:
keyid:95:16:64:52:1D:50:39:59:21:2F:55:B2:A5:9A:EC:6D:20:7B:0A:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRZkUh1QOVkhL1WypZrsbSB7Cig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2c3619-2c59-46d2-aaae-ef7453ad099f/1/lRZkUh1QOVkhL1WypZrsbSB7Cig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2c3619-2c59-46d2-aaae-ef7453ad099f/1/lRZkUh1QOVkhL1WypZrsbSB7Cig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:65:41:f3:8e:fc:79:f8:7e:b1:47:28:ac:85:af:37:83:5c:
13:2c:46:fd:89:a4:38:aa:dd:db:53:f1:4c:00:e5:e0:12:3d:
30:c2:7d:ec:06:10:54:09:d7:25:28:75:61:70:0a:eb:53:7f:
4a:be:67:4d:6c:cc:2e:b6:41:e6:79:bd:3a:31:bb:88:4b:b0:
a4:60:8a:98:84:c2:ee:6b:87:76:05:b7:60:e8:14:06:36:8c:
f7:13:0f:17:0e:b9:38:7e:81:7f:db:28:bf:57:8a:b6:a6:29:
c5:cc:d0:c6:2b:f9:61:8b:24:58:3a:3b:ff:ef:40:66:b7:5e:
3f:b7:f3:7c:98:0c:e4:f0:35:a5:59:44:af:9a:1f:70:f9:c9:
87:57:9d:26:6c:1d:e7:42:69:f1:ee:26:75:3a:0a:2f:c1:4b:
de:39:1c:0a:5b:c8:0e:f1:e1:37:45:03:6f:3e:c4:9a:cd:62:
52:39:ed:90:b5:a4:21:f7:7d:b2:2c:bb:b3:f4:85:68:1a:57:
99:5a:6d:36:b1:bb:71:8b:98:26:06:36:bf:8e:56:0f:a1:09:
ff:df:a7:9a:22:93:d1:81:d4:9b:da:a9:5e:1c:51:15:8d:f3:
9a:a8:a8:64:58:de:3e:93:4a:9b:f4:25:7f:e4:b9:a3:18:5d:
ed:57:3f:e1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+IJBdktpE7pBKNRazNRsAMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1MTY2NDUyMWQ1MDM5NTkyMTJmNTViMmE1OWFlYzZkMjA3
YjBhMjgwHhcNMjQwNTE3MjAwMDE3WhcNMjQwNTE4MjAwMDE3WjAzMTEwLwYDVQQD
Eyg3NGJlNWU5YzhjZmQ4OWNjMzViNjEyNzRjODcyNWJlZDUxMmQ0NWM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr96nC/FI+ueUcLfiXARd3SmrNqJq
j86Cvy7T4TXdftHXe/XF4G/g0oevQ6OILuDNehELT7lY4B/LILLltGA6vZqLWVip
d0Kvswsij/LKbI1NaNpLGQVfy4+DnGXWjGRWHqmXZIaYvusFdk99MbAnjFzw+S2p
xWQtkKzNwducqWw2AzAeRcqqzI9xSOk/XcCWQpM80HlM3bLzpoyCazpuKSl6Xisl
I/ApwEBbuzMpnTi6BEN12ZHl2glv2nvokysmUHI5hdB79S6hgN9m+Khn1WaoeZvS
rV3T9ObukgXHfZ6StG5fLfR0FxOFxy3G6sh5ua7BnmDKNpuyfg8ADxo6hwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHS+XpyM/YnMNbYSdMhyW+1RLUXIMB8GA1UdIwQY
MBaAFJUWZFIdUDlZIS9VsqWa7G0gewooMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFJaa1VoMVFPVmtoTDFXeXBacnNiU0I3Q2lnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8yYzM2MTktMmM1OS00NmQyLWFhYWUt
ZWY3NDUzYWQwOTlmLzEvbFJaa1VoMVFPVmtoTDFXeXBacnNiU0I3Q2lnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS8yYzM2MTktMmM1OS00NmQyLWFhYWUtZWY3NDUzYWQwOTlm
LzEvbFJaa1VoMVFPVmtoTDFXeXBacnNiU0I3Q2lnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuWVB8478
efh+sUcorIWvN4NcEyxG/YmkOKrd21PxTADl4BI9MMJ97AYQVAnXJSh1YXAK61N/
Sr5nTWzMLrZB5nm9OjG7iEuwpGCKmITC7muHdgW3YOgUBjaM9xMPFw65OH6Bf9so
v1eKtqYpxczQxiv5YYskWDo7/+9AZrdeP7fzfJgM5PA1pVlEr5ofcPnJh1edJmwd
50Jp8e4mdToKL8FL3jkcClvIDvHhN0UDbz7Ems1iUjntkLWkIfd9siy7s/SFaBpX
mVptNrG7cYuYJgY2v45WD6EJ/9+nmiKT0YHUm9qpXhxRFY3zmqioZFjePpNKm/Ql
f+S5oxhd7Vc/4Q==
-----END CERTIFICATE-----
Generated at Fri May 17 21:02:49 2024 by rpki-client on console-fra.rpki-client.org