Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.mft
File: rJpRvqG1cP-nLZxS0aUYwkvHjAI.mft (raw, json)
Hash identifier: vHqG/4JmHCivrAcBgBcZnhsTfjEmlGX/Tsvntkz9klg=
Subject key identifier: BA:A3:89:59:99:87:5A:B3:91:40:E8:5E:B8:EA:76:BF:85:D6:2F:13
Authority key identifier: AC:9A:51:BE:A1:B5:70:FF:A7:2D:9C:52:D1:A5:18:C2:4B:C7:8C:02
Certificate issuer: /CN=ac9a51bea1b570ffa72d9c52d1a518c24bc78c02
Certificate serial: 018FB3B52B34586F8F0C6962D61CEDC8F3BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rJpRvqG1cP-nLZxS0aUYwkvHjAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.mft
Manifest number: 0DAB
Signing time: Sun 26 May 2024 07:02:25 +0000
Manifest this update: Sun 26 May 2024 07:02:25 +0000
Manifest next update: Mon 27 May 2024 07:02:25 +0000
Files and hashes: 1: rJpRvqG1cP-nLZxS0aUYwkvHjAI.crl (hash: PX7Kt3+nj/jpvh9azrLkga5O4dMNB1gPUleNMWIgXWI=)
2: xR2RbMANlNFhXEYDRfk9sz_rL8A.roa (hash: YW0KNJlV0yM77prNumjT9aDQqgXPWMQ9fpcpd80OP9Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/rJpRvqG1cP-nLZxS0aUYwkvHjAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 May 2024 07:02:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b3:b5:2b:34:58:6f:8f:0c:69:62:d6:1c:ed:c8:f3:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac9a51bea1b570ffa72d9c52d1a518c24bc78c02
Validity
Not Before: May 26 07:02:25 2024 GMT
Not After : May 27 07:02:25 2024 GMT
Subject: CN=baa3895999875ab39140e85eb8ea76bf85d62f13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b8:10:62:3e:25:b6:d9:66:09:8b:57:2a:11:
76:d8:14:75:fd:38:09:e5:f7:f8:08:80:52:2b:49:
03:3a:72:b1:af:8d:ca:7d:f3:fb:73:9f:90:f1:93:
75:d8:b8:89:49:f2:6b:d5:bd:a8:69:68:84:02:cd:
37:f9:90:fa:42:99:01:79:f6:26:50:03:86:a6:17:
c1:66:4d:70:98:c6:3a:84:1f:bc:95:16:4c:98:0a:
bc:f3:d6:3a:9b:1a:51:61:ae:8f:5a:86:55:7b:66:
f9:93:89:6f:1e:ee:97:88:ba:88:08:eb:fc:04:3f:
37:ee:d4:50:5c:d8:78:53:0e:6b:5e:80:18:91:9b:
73:ea:4f:ef:22:9a:cf:01:f9:b0:cc:08:b1:c3:b7:
16:d6:71:31:e2:96:4d:ce:ac:60:0a:c0:ff:d4:69:
7f:c3:97:a5:e0:1d:98:e1:69:fd:b4:09:1d:d4:7b:
10:cd:c0:ed:01:67:59:55:80:21:80:ae:96:dc:24:
5c:90:87:47:8a:3d:c2:98:e1:e4:69:b4:5d:48:17:
f8:62:a2:91:09:7c:4e:1c:77:5f:c3:78:93:a9:ca:
81:e0:06:19:2c:3e:e4:35:91:ae:b7:36:37:fd:18:
3e:bb:4f:0f:e9:9a:78:0f:07:ae:2c:3f:31:e1:66:
58:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:A3:89:59:99:87:5A:B3:91:40:E8:5E:B8:EA:76:BF:85:D6:2F:13
X509v3 Authority Key Identifier:
keyid:AC:9A:51:BE:A1:B5:70:FF:A7:2D:9C:52:D1:A5:18:C2:4B:C7:8C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rJpRvqG1cP-nLZxS0aUYwkvHjAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:bc:d1:7c:f5:cf:da:70:03:a0:f3:7b:aa:71:0e:6e:9a:09:
11:b4:13:06:82:4d:aa:f7:db:a5:b7:f9:91:d0:c0:2b:af:45:
1b:84:a6:79:bc:07:83:d2:72:a9:d2:34:d0:bd:23:8c:b9:df:
17:6f:68:ac:ad:b6:c4:bf:ae:15:62:64:6f:e4:a1:95:a9:63:
98:88:fd:a1:3d:16:50:ed:f5:5d:4d:e7:81:26:ac:ef:f3:2a:
f7:a8:78:ac:8a:01:d7:0d:6c:c1:e5:b7:cf:3a:ec:68:34:0c:
d3:ce:05:ab:e8:7b:9f:f1:81:f5:20:bf:42:ff:e1:0f:c6:14:
9e:04:d6:df:57:d2:4f:20:ad:c6:b4:25:ea:01:13:7f:54:88:
04:f4:42:c3:82:da:7a:0e:06:29:0c:6c:ac:cf:b4:56:11:94:
3c:b7:a7:82:d8:79:39:aa:ae:a5:10:d6:32:2b:ad:ef:5a:d9:
1a:ad:8a:aa:64:f8:36:17:70:57:19:8a:53:a3:ad:91:ae:15:
03:69:b5:1f:79:c0:d8:c5:50:ec:42:4a:26:42:ac:d0:22:e8:
21:6f:90:64:40:a3:8f:dc:8e:29:7b:a3:3f:e2:64:99:a6:93:
f6:6e:9d:cf:7b:90:85:14:3e:e8:b7:19:b5:70:1d:b8:34:91:
db:85:c3:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+ztSs0WG+PDGli1hztyPO7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjOWE1MWJlYTFiNTcwZmZhNzJkOWM1MmQxYTUxOGMyNGJj
NzhjMDIwHhcNMjQwNTI2MDcwMjI1WhcNMjQwNTI3MDcwMjI1WjAzMTEwLwYDVQQD
EyhiYWEzODk1OTk5ODc1YWIzOTE0MGU4NWViOGVhNzZiZjg1ZDYyZjEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq7gQYj4lttlmCYtXKhF22BR1/TgJ
5ff4CIBSK0kDOnKxr43KffP7c5+Q8ZN12LiJSfJr1b2oaWiEAs03+ZD6QpkBefYm
UAOGphfBZk1wmMY6hB+8lRZMmAq889Y6mxpRYa6PWoZVe2b5k4lvHu6XiLqICOv8
BD837tRQXNh4Uw5rXoAYkZtz6k/vIprPAfmwzAixw7cW1nEx4pZNzqxgCsD/1Gl/
w5el4B2Y4Wn9tAkd1HsQzcDtAWdZVYAhgK6W3CRckIdHij3CmOHkabRdSBf4YqKR
CXxOHHdfw3iTqcqB4AYZLD7kNZGutzY3/Rg+u08P6Zp4DweuLD8x4WZYkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLqjiVmZh1qzkUDoXrjqdr+F1i8TMB8GA1UdIwQY
MBaAFKyaUb6htXD/py2cUtGlGMJLx4wCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvckpwUnZxRzFjUC1uTFp4UzBhVVl3a3ZIakFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8yZGU4N2EtMDE3Ni00ZjE5LWIwZTgt
YWI1NjMwMjExZjdhLzEvckpwUnZxRzFjUC1uTFp4UzBhVVl3a3ZIakFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy8yZGU4N2EtMDE3Ni00ZjE5LWIwZTgtYWI1NjMwMjExZjdh
LzEvckpwUnZxRzFjUC1uTFp4UzBhVVl3a3ZIakFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAirzRfPXP
2nADoPN7qnEObpoJEbQTBoJNqvfbpbf5kdDAK69FG4SmebwHg9JyqdI00L0jjLnf
F29orK22xL+uFWJkb+ShlaljmIj9oT0WUO31XU3ngSas7/Mq96h4rIoB1w1sweW3
zzrsaDQM084Fq+h7n/GB9SC/Qv/hD8YUngTW31fSTyCtxrQl6gETf1SIBPRCw4La
eg4GKQxsrM+0VhGUPLength5OaqupRDWMiut71rZGq2KqmT4NhdwVxmKU6Otka4V
A2m1H3nA2MVQ7EJKJkKs0CLoIW+QZECjj9yOKXujP+JkmaaT9m6dz3uQhRQ+6LcZ
tXAduDSR24XDaQ==
-----END CERTIFICATE-----
Generated at Sun May 26 17:03:13 2024 by rpki-client on console-ams.rpki-client.org