Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
File: cdm6oCIZQu3-SzqaVwgpXARBboA.mft (raw, json)
Hash identifier: h8PL1J9hQZYodF2Y0HAFwC5ky8Li96DVhu6e7SuViSc=
Subject key identifier: B5:F7:DF:71:3D:C8:5E:9A:E7:82:B1:09:FE:3F:B9:BE:F2:1F:66:8A
Authority key identifier: 71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
Certificate issuer: /CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Certificate serial: 018F8891C96ED44E8E4321B30F0945A63612
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
Manifest number: 1178
Signing time: Fri 17 May 2024 22:00:06 +0000
Manifest this update: Fri 17 May 2024 22:00:06 +0000
Manifest next update: Sat 18 May 2024 22:00:06 +0000
Files and hashes: 1: RWER5j5NSS1q9QXMw-JSAo44NnY.roa (hash: 1inPK15B82Wyip5h0J47FALrAC4T1wVPiXixt3TIILQ=)
2: cdm6oCIZQu3-SzqaVwgpXARBboA.crl (hash: 1jU145t/WwS+UC6Mgcf4I3+ufKwdbbH4s2OGz2aq05I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:91:c9:6e:d4:4e:8e:43:21:b3:0f:09:45:a6:36:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Validity
Not Before: May 17 22:00:06 2024 GMT
Not After : May 18 22:00:06 2024 GMT
Subject: CN=b5f7df713dc85e9ae782b109fe3fb9bef21f668a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a3:1a:c9:02:ba:2f:a9:19:3e:8e:3a:dd:2a:
2e:fb:cc:35:c7:23:a8:49:30:52:54:95:6d:4b:6b:
b0:76:e4:0b:7b:39:57:31:17:eb:93:d3:ee:1e:30:
45:d9:01:2c:5f:f5:9a:56:ca:ec:5a:05:b0:54:53:
56:02:3d:95:38:f8:93:f8:2f:c8:87:a3:6d:f3:f9:
47:61:9a:9f:cb:2d:06:19:3f:ea:6b:88:96:06:84:
11:86:32:dd:3e:56:0d:f2:45:24:d9:1c:76:dd:5f:
0b:71:a0:80:78:5b:fd:e2:5a:ce:65:35:c0:4c:74:
da:2b:64:91:a1:ac:1c:a7:8d:cb:fc:31:d1:67:c4:
1f:90:bd:ac:14:e0:17:06:0c:4b:b1:48:e0:8d:6a:
76:ec:02:6f:66:75:d4:18:fe:27:86:da:d7:ca:00:
9a:59:1a:58:64:5c:a6:ab:d6:fd:8e:c7:91:f0:cd:
cf:87:1e:af:ae:53:d6:8d:3f:c9:cd:8c:73:65:77:
3c:2f:96:72:12:26:c3:17:81:b7:31:18:33:ec:c4:
9c:bc:a3:9d:ba:2d:a2:0e:06:0d:6b:24:61:b8:bb:
dd:65:08:6b:5c:27:0a:4f:30:27:fb:4a:3c:13:00:
9f:de:d8:2a:25:82:f1:56:d4:8f:e3:e2:a0:46:8e:
ae:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:F7:DF:71:3D:C8:5E:9A:E7:82:B1:09:FE:3F:B9:BE:F2:1F:66:8A
X509v3 Authority Key Identifier:
keyid:71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:93:2c:30:61:89:37:b8:48:12:4f:b8:1c:19:88:64:6f:8f:
05:d3:1d:3a:19:35:e5:07:12:ea:56:f0:16:2c:3c:44:bf:92:
b6:e6:0d:cd:79:f1:ef:e7:e6:bb:fc:77:97:c6:95:e9:b5:c7:
fb:fa:18:b2:85:16:db:67:43:f2:7c:f2:cf:2a:29:4b:6c:b8:
f5:7c:5d:54:28:44:29:55:05:73:15:b5:cd:35:ba:c3:31:59:
72:b3:83:13:e1:17:29:a1:59:ac:a8:4e:ee:29:ab:83:6a:da:
01:1e:d4:08:d2:51:d1:52:02:86:51:c8:d0:47:c0:61:53:24:
70:08:f8:27:3b:c5:44:82:48:f4:10:fd:2f:12:76:aa:2e:5f:
3e:95:dc:e1:49:f1:8b:79:0a:2e:ac:3b:63:f8:13:aa:58:f8:
8b:d0:b3:88:cb:4e:7f:f3:71:2f:14:ca:9b:33:9f:8d:8c:08:
5e:ba:9a:6a:a5:92:62:ff:15:b2:15:24:74:cb:10:4f:da:36:
74:67:d9:c3:d9:9c:9f:02:90:85:d9:ea:2a:8c:98:25:c1:d8:
d0:f2:ec:e8:9c:4d:81:50:3b:2d:ef:82:ba:26:ff:04:38:f1:
9a:0a:b4:59:85:d9:48:43:1f:99:44:b1:27:8f:94:47:52:d5:
a9:54:65:56
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+Ikclu1E6OQyGzDwlFpjYSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxZDliYWEwMjIxOTQyZWRmZTRiM2E5YTU3MDgyOTVjMDQ0
MTZlODAwHhcNMjQwNTE3MjIwMDA2WhcNMjQwNTE4MjIwMDA2WjAzMTEwLwYDVQQD
EyhiNWY3ZGY3MTNkYzg1ZTlhZTc4MmIxMDlmZTNmYjliZWYyMWY2NjhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA36MayQK6L6kZPo463Sou+8w1xyOo
STBSVJVtS2uwduQLezlXMRfrk9PuHjBF2QEsX/WaVsrsWgWwVFNWAj2VOPiT+C/I
h6Nt8/lHYZqfyy0GGT/qa4iWBoQRhjLdPlYN8kUk2Rx23V8LcaCAeFv94lrOZTXA
THTaK2SRoawcp43L/DHRZ8QfkL2sFOAXBgxLsUjgjWp27AJvZnXUGP4nhtrXygCa
WRpYZFymq9b9jseR8M3Phx6vrlPWjT/JzYxzZXc8L5ZyEibDF4G3MRgz7MScvKOd
ui2iDgYNayRhuLvdZQhrXCcKTzAn+0o8EwCf3tgqJYLxVtSP4+KgRo6uTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLX333E9yF6a54KxCf4/ub7yH2aKMB8GA1UdIwQY
MBaAFHHZuqAiGULt/ks6mlcIKVwEQW6AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2RtNm9DSVpRdTMtU3pxYVZ3Z3BYQVJCYm9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS84YzNmYjgtNDBkZi00ZDVkLTkzNjMt
NTA0NzI3YTUwYjhlLzEvY2RtNm9DSVpRdTMtU3pxYVZ3Z3BYQVJCYm9BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS84YzNmYjgtNDBkZi00ZDVkLTkzNjMtNTA0NzI3YTUwYjhl
LzEvY2RtNm9DSVpRdTMtU3pxYVZ3Z3BYQVJCYm9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf5MsMGGJ
N7hIEk+4HBmIZG+PBdMdOhk15QcS6lbwFiw8RL+StuYNzXnx7+fmu/x3l8aV6bXH
+/oYsoUW22dD8nzyzyopS2y49XxdVChEKVUFcxW1zTW6wzFZcrODE+EXKaFZrKhO
7imrg2raAR7UCNJR0VIChlHI0EfAYVMkcAj4JzvFRIJI9BD9LxJ2qi5fPpXc4Unx
i3kKLqw7Y/gTqlj4i9CziMtOf/NxLxTKmzOfjYwIXrqaaqWSYv8VshUkdMsQT9o2
dGfZw9mcnwKQhdnqKoyYJcHY0PLs6JxNgVA7Le+Cuib/BDjxmgq0WYXZSEMfmUSx
J4+UR1LVqVRlVg==
-----END CERTIFICATE-----
Generated at Sat May 18 00:30:27 2024 by rpki-client on console-fra.rpki-client.org