Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
File: TMC300XPrlNH086YtCQbkA5KnvM.mft (raw, json)
Hash identifier: ErIb1MedwGHltQOli7KjBBoVEsOKVkdqA8fW9XD8N5g=
Subject key identifier: 8B:56:E8:70:96:68:33:93:A7:C4:B4:01:29:E7:90:9B:D9:BC:07:42
Authority key identifier: 4C:C0:B7:D3:45:CF:AE:53:47:D3:CE:98:B4:24:1B:90:0E:4A:9E:F3
Certificate issuer: /CN=4cc0b7d345cfae5347d3ce98b4241b900e4a9ef3
Certificate serial: 018F87EDA5BC7B3A1E2F02AF03EE142BD496
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
Manifest number: 02EB
Signing time: Fri 17 May 2024 19:00:49 +0000
Manifest this update: Fri 17 May 2024 19:00:49 +0000
Manifest next update: Sat 18 May 2024 19:00:49 +0000
Files and hashes: 1: TMC300XPrlNH086YtCQbkA5KnvM.crl (hash: Ti/ptTi9H6bg/EMdUA0nbAUR3mdhi+RdNooIjifLuVI=)
2: fKFje3-QQpSov0F9KCXPfe7hYLo.roa (hash: BxpLzNVKXAR0si4zO5ipguP2qLI/NKV9bXd5X8LeBso=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:ed:a5:bc:7b:3a:1e:2f:02:af:03:ee:14:2b:d4:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cc0b7d345cfae5347d3ce98b4241b900e4a9ef3
Validity
Not Before: May 17 19:00:49 2024 GMT
Not After : May 18 19:00:49 2024 GMT
Subject: CN=8b56e87096683393a7c4b40129e7909bd9bc0742
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:db:3b:64:ad:ad:3b:94:63:0f:1f:ea:6c:d3:
3f:d1:6c:30:e7:09:65:fb:27:90:74:d5:6a:ee:44:
7a:c8:dc:4f:22:34:fc:1b:30:dc:a9:52:0e:d2:a4:
3f:b3:39:5a:13:74:26:08:f3:57:75:5d:fe:69:fa:
ba:4c:66:ef:7b:67:40:79:5c:87:5c:5d:99:06:5a:
2e:b1:eb:a0:4e:1a:f4:ae:39:c4:88:3f:9d:d8:93:
ea:27:84:b0:06:8b:a3:5a:75:65:99:c3:14:2d:bb:
5d:14:ae:f3:d0:9f:21:76:dd:4d:b9:f1:39:5f:9c:
3e:cc:1a:bc:6d:18:80:6f:33:09:50:b2:9c:78:02:
86:11:ba:dc:56:88:f7:da:56:fc:49:65:75:95:b5:
fa:b5:55:85:d9:55:8c:3e:02:b9:14:6d:6b:de:0a:
ae:be:0f:bf:82:1b:dd:56:26:6c:5d:8d:a6:e3:11:
4c:5b:50:3f:70:a6:16:7b:e5:31:e6:1c:93:3c:32:
05:86:61:38:78:7c:23:4f:97:6b:96:3f:a8:e2:10:
74:87:c1:d3:f7:d1:94:e0:b4:a1:ec:23:78:b6:7c:
8d:01:8f:90:79:2a:fe:41:7d:a7:c9:3c:b5:df:ea:
97:ef:0f:54:79:0e:d9:50:b9:f4:be:08:26:44:6b:
07:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:56:E8:70:96:68:33:93:A7:C4:B4:01:29:E7:90:9B:D9:BC:07:42
X509v3 Authority Key Identifier:
keyid:4C:C0:B7:D3:45:CF:AE:53:47:D3:CE:98:B4:24:1B:90:0E:4A:9E:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:a4:c0:cd:90:3a:c2:34:ca:f1:79:d9:23:ef:0f:e6:0b:10:
85:b5:a3:1d:75:de:58:42:43:bc:e8:e8:4c:7a:4c:1c:aa:56:
37:3c:e0:bd:51:40:ec:f3:32:28:dd:cd:de:d4:2b:51:59:6b:
1f:62:cf:6d:75:32:29:65:59:15:41:d0:74:e0:65:bb:8a:a6:
7f:37:35:55:ce:8b:6e:4d:35:65:48:39:9a:96:18:16:5f:37:
b4:5e:d7:df:06:67:96:f3:da:02:00:bd:20:dc:e1:bd:35:f2:
4b:25:a0:ad:23:3a:1a:d7:c9:00:d6:3b:9b:b4:cd:e5:07:cc:
90:a6:34:5c:80:97:77:60:f5:45:16:80:ae:f8:b5:93:ae:40:
c3:34:06:cd:c5:ab:96:98:9d:46:39:fa:72:c4:c9:a7:c2:d2:
61:c6:e4:bb:00:cc:a3:93:10:de:8f:cd:17:4b:60:1e:bf:08:
5c:be:ac:76:34:7f:c8:e5:a7:42:f3:4d:e7:a9:8a:8e:fb:33:
b4:d5:dd:26:24:97:57:de:9b:00:91:86:c0:ec:29:81:0e:d9:
38:d8:60:3a:e2:f3:1d:ec:bf:83:ee:df:21:72:93:dc:ea:ef:
db:fc:09:b6:74:f4:77:21:93:dd:17:1a:90:d1:cd:55:00:26:
b9:73:29:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+H7aW8ezoeLwKvA+4UK9SWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjYzBiN2QzNDVjZmFlNTM0N2QzY2U5OGI0MjQxYjkwMGU0
YTllZjMwHhcNMjQwNTE3MTkwMDQ5WhcNMjQwNTE4MTkwMDQ5WjAzMTEwLwYDVQQD
Eyg4YjU2ZTg3MDk2NjgzMzkzYTdjNGI0MDEyOWU3OTA5YmQ5YmMwNzQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxts7ZK2tO5RjDx/qbNM/0Www5wll
+yeQdNVq7kR6yNxPIjT8GzDcqVIO0qQ/szlaE3QmCPNXdV3+afq6TGbve2dAeVyH
XF2ZBlouseugThr0rjnEiD+d2JPqJ4SwBoujWnVlmcMULbtdFK7z0J8hdt1NufE5
X5w+zBq8bRiAbzMJULKceAKGEbrcVoj32lb8SWV1lbX6tVWF2VWMPgK5FG1r3gqu
vg+/ghvdViZsXY2m4xFMW1A/cKYWe+Ux5hyTPDIFhmE4eHwjT5drlj+o4hB0h8HT
99GU4LSh7CN4tnyNAY+QeSr+QX2nyTy13+qX7w9UeQ7ZULn0vggmRGsHnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFItW6HCWaDOTp8S0ASnnkJvZvAdCMB8GA1UdIwQY
MBaAFEzAt9NFz65TR9POmLQkG5AOSp7zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVE1DMzAwWFBybE5IMDg2WXRDUWJrQTVLbnZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8xNmQzNzAtZjYzMi00Y2ExLThiOTYt
MWJlMzI1ZjdhMmUzLzEvVE1DMzAwWFBybE5IMDg2WXRDUWJrQTVLbnZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS8xNmQzNzAtZjYzMi00Y2ExLThiOTYtMWJlMzI1ZjdhMmUz
LzEvVE1DMzAwWFBybE5IMDg2WXRDUWJrQTVLbnZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgaTAzZA6
wjTK8XnZI+8P5gsQhbWjHXXeWEJDvOjoTHpMHKpWNzzgvVFA7PMyKN3N3tQrUVlr
H2LPbXUyKWVZFUHQdOBlu4qmfzc1Vc6Lbk01ZUg5mpYYFl83tF7X3wZnlvPaAgC9
INzhvTXySyWgrSM6GtfJANY7m7TN5QfMkKY0XICXd2D1RRaArvi1k65AwzQGzcWr
lpidRjn6csTJp8LSYcbkuwDMo5MQ3o/NF0tgHr8IXL6sdjR/yOWnQvNN56mKjvsz
tNXdJiSXV96bAJGGwOwpgQ7ZONhgOuLzHey/g+7fIXKT3Orv2/wJtnT0dyGT3Rca
kNHNVQAmuXMpaQ==
-----END CERTIFICATE-----
Generated at Sat May 18 00:31:41 2024 by rpki-client on console-fra.rpki-client.org