Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.mft
File: XrtlNn2CQrAVmiU5y1oCM1Qu-WM.mft (raw, json)
Hash identifier: /ZjNHONPbuNAXHYrzswAdBTHsimTticZozliRw5xV2w=
Subject key identifier: 11:41:F4:E9:58:37:49:0F:A5:46:79:02:09:D0:AD:A3:F9:0D:35:9D
Authority key identifier: 5E:BB:65:36:7D:82:42:B0:15:9A:25:39:CB:5A:02:33:54:2E:F9:63
Certificate issuer: /CN=5ebb65367d8242b0159a2539cb5a0233542ef963
Certificate serial: 018F87ED43F829A08895877794BFD8ADE852
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.mft
Manifest number: 024D
Signing time: Fri 17 May 2024 19:00:24 +0000
Manifest this update: Fri 17 May 2024 19:00:24 +0000
Manifest next update: Sat 18 May 2024 19:00:24 +0000
Files and hashes: 1: XrtlNn2CQrAVmiU5y1oCM1Qu-WM.crl (hash: JbdNgl2bG3pA1+kk9P+LZVJur0PrINTSSPhMUeGCcJ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.mft
rsync://rpki.ripe.net/repository/DEFAULT/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:ed:43:f8:29:a0:88:95:87:77:94:bf:d8:ad:e8:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ebb65367d8242b0159a2539cb5a0233542ef963
Validity
Not Before: May 17 19:00:24 2024 GMT
Not After : May 18 19:00:24 2024 GMT
Subject: CN=1141f4e95837490fa546790209d0ada3f90d359d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:58:8b:c8:40:df:92:8c:aa:26:a8:ce:1e:e4:
4a:c5:16:0a:69:19:63:12:d8:fa:2d:68:6c:41:d7:
ff:a8:06:1b:41:23:b1:6e:7d:cc:42:ff:69:bc:97:
1b:c1:02:bb:2c:7e:46:53:80:c2:21:2b:c9:06:2c:
9a:c5:86:47:26:cc:d2:bd:5a:44:be:f2:3a:02:b2:
fa:ff:37:d4:a8:e7:12:84:9f:6e:a5:2e:0f:16:91:
cf:58:5f:1f:1d:84:7d:f5:81:ae:92:be:47:8f:68:
6f:b4:a8:52:da:3b:7d:6a:7f:e4:4d:2e:c2:b5:71:
21:02:dd:2d:b5:d4:4e:fb:d9:72:1c:84:7f:94:aa:
01:06:a2:7f:aa:0f:82:d2:6d:1b:ed:81:69:11:d0:
0a:d0:82:f1:71:e5:59:c4:3c:1c:e7:4a:db:7a:fc:
65:f4:0f:5d:5c:e3:d8:2b:1a:a8:ac:a2:8d:28:72:
4e:97:51:91:cd:94:ad:73:ba:8f:5d:c7:73:7a:bb:
43:18:56:4a:ac:87:80:4b:25:2f:4f:2e:f2:a3:68:
ac:08:6e:58:48:ef:8e:d2:20:1b:34:8d:94:66:86:
6e:a8:a8:6b:ed:f9:f5:e4:6c:5b:11:56:b2:11:ab:
e1:be:11:a6:41:6c:5f:94:08:c6:ad:ae:3c:03:4b:
9c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:41:F4:E9:58:37:49:0F:A5:46:79:02:09:D0:AD:A3:F9:0D:35:9D
X509v3 Authority Key Identifier:
keyid:5E:BB:65:36:7D:82:42:B0:15:9A:25:39:CB:5A:02:33:54:2E:F9:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:7c:14:49:75:ef:92:70:e6:64:8d:5b:46:e3:cf:e3:eb:01:
9c:37:53:2e:64:8a:ba:74:4a:72:8d:8f:c8:71:24:5d:f9:74:
71:18:df:bd:f7:3e:33:e4:ae:31:a9:13:3b:ec:18:7c:75:4f:
09:99:ba:6e:a0:3e:3a:08:9f:74:ec:b2:2f:c7:d7:20:ed:cd:
1a:03:6d:fa:8a:02:0d:00:ec:af:3e:3d:ad:a0:2e:34:65:5e:
2d:1d:de:91:f9:0c:50:30:7e:15:e7:87:54:e5:6d:44:67:f1:
da:c3:a7:39:64:86:9b:b6:d2:d0:a2:25:b1:e5:cf:61:ce:17:
24:ba:bd:b5:ef:75:0d:42:80:96:a4:ec:2e:c1:d1:84:cb:3e:
bb:6b:bc:2e:c4:ed:6c:c1:99:44:a2:c7:5d:fa:f9:24:7f:28:
b2:b9:f7:3b:8f:bc:68:03:6e:e6:17:93:bd:83:d5:2c:07:fc:
eb:05:d3:ae:8a:bb:e8:97:ea:b0:dd:86:ff:af:1a:ac:7b:b0:
fb:10:66:83:2f:d7:9e:d7:4a:2f:c9:10:76:ee:68:e4:05:d9:
19:4b:0f:ac:44:13:37:f7:40:1f:54:2f:c3:2a:15:72:da:a9:
e5:ca:59:e7:2e:af:1b:b3:44:9e:14:e3:49:cf:39:f5:26:e8:
3b:44:c2:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+H7UP4KaCIlYd3lL/YrehSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlYmI2NTM2N2Q4MjQyYjAxNTlhMjUzOWNiNWEwMjMzNTQy
ZWY5NjMwHhcNMjQwNTE3MTkwMDI0WhcNMjQwNTE4MTkwMDI0WjAzMTEwLwYDVQQD
EygxMTQxZjRlOTU4Mzc0OTBmYTU0Njc5MDIwOWQwYWRhM2Y5MGQzNTlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApFiLyEDfkoyqJqjOHuRKxRYKaRlj
Etj6LWhsQdf/qAYbQSOxbn3MQv9pvJcbwQK7LH5GU4DCISvJBiyaxYZHJszSvVpE
vvI6ArL6/zfUqOcShJ9upS4PFpHPWF8fHYR99YGukr5Hj2hvtKhS2jt9an/kTS7C
tXEhAt0ttdRO+9lyHIR/lKoBBqJ/qg+C0m0b7YFpEdAK0ILxceVZxDwc50rbevxl
9A9dXOPYKxqorKKNKHJOl1GRzZStc7qPXcdzertDGFZKrIeASyUvTy7yo2isCG5Y
SO+O0iAbNI2UZoZuqKhr7fn15GxbEVayEavhvhGmQWxflAjGra48A0ucMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBFB9OlYN0kPpUZ5AgnQraP5DTWdMB8GA1UdIwQY
MBaAFF67ZTZ9gkKwFZolOctaAjNULvljMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHJ0bE5uMkNRckFWbWlVNXkxb0NNMVF1LVdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy81NDMwZDYtZWRjMC00NDI4LWIyNGEt
MzAwZjVjYWJlZTExLzEvWHJ0bE5uMkNRckFWbWlVNXkxb0NNMVF1LVdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy81NDMwZDYtZWRjMC00NDI4LWIyNGEtMzAwZjVjYWJlZTEx
LzEvWHJ0bE5uMkNRckFWbWlVNXkxb0NNMVF1LVdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm3wUSXXv
knDmZI1bRuPP4+sBnDdTLmSKunRKco2PyHEkXfl0cRjfvfc+M+SuMakTO+wYfHVP
CZm6bqA+OgifdOyyL8fXIO3NGgNt+ooCDQDsrz49raAuNGVeLR3ekfkMUDB+FeeH
VOVtRGfx2sOnOWSGm7bS0KIlseXPYc4XJLq9te91DUKAlqTsLsHRhMs+u2u8LsTt
bMGZRKLHXfr5JH8osrn3O4+8aANu5heTvYPVLAf86wXTroq76JfqsN2G/68arHuw
+xBmgy/XntdKL8kQdu5o5AXZGUsPrEQTN/dAH1QvwyoVctqp5cpZ5y6vG7NEnhTj
Sc859SboO0TC1Q==
-----END CERTIFICATE-----
Generated at Fri May 17 20:19:38 2024 by rpki-client on console-fra.rpki-client.org