Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
File: cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft (raw, json)
Hash identifier: Fo9s4WIxbTCQ0XHQAcRQMmnNI5Zx5zjtJVnqa6wucZ0=
Subject key identifier: E6:B6:C3:AC:A3:44:E3:EB:DC:5A:4C:6D:87:5A:EA:2A:A9:26:EC:DE
Authority key identifier: 70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
Certificate issuer: /CN=70cee62b79472dcae51ead4d8ea06923870f5197
Certificate serial: 018F934D0F72EE26AC54639D5CC80ED784AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
Manifest number: 117A
Signing time: Mon 20 May 2024 00:00:51 +0000
Manifest this update: Mon 20 May 2024 00:00:51 +0000
Manifest next update: Tue 21 May 2024 00:00:51 +0000
Files and hashes: 1: cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl (hash: 35PtoyLU6Bpd2zgzYL1MQsTkzd+q5kht9R7c1BbJY4s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 00:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:93:4d:0f:72:ee:26:ac:54:63:9d:5c:c8:0e:d7:84:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cee62b79472dcae51ead4d8ea06923870f5197
Validity
Not Before: May 20 00:00:51 2024 GMT
Not After : May 21 00:00:51 2024 GMT
Subject: CN=e6b6c3aca344e3ebdc5a4c6d875aea2aa926ecde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a3:95:b5:1b:b5:77:7c:2a:67:66:06:e9:06:
69:ef:9c:73:6b:4b:9f:f7:ce:f9:7f:9d:82:16:85:
55:9e:36:a0:67:e1:df:d5:ff:f5:5b:fc:92:06:11:
d2:d0:b8:5c:cd:a8:f2:13:7d:47:a2:2f:bc:9f:ab:
5b:ae:ca:35:78:05:e7:07:92:6d:d0:1d:c6:12:0c:
9b:02:f6:d4:47:65:68:4d:d9:1c:d0:49:5d:a8:da:
f4:fe:63:8e:98:6d:59:5c:f0:8a:36:29:e7:c3:af:
27:d3:4e:c0:f4:77:7c:b3:6b:c4:f9:2a:45:8c:b6:
1e:d6:2b:cc:a6:14:e4:e3:4f:e2:a0:04:c9:cf:c4:
23:39:03:6d:30:44:10:f8:04:e3:14:77:63:9f:80:
64:ec:8e:19:52:46:7d:65:0d:69:ae:1c:46:3d:51:
76:1a:86:95:32:07:20:4a:30:0d:a1:0a:96:99:40:
19:f7:56:d5:28:d9:01:7f:e5:80:9d:b1:65:2f:2f:
7e:93:d6:d6:4b:f6:a9:a6:dc:ed:fc:9d:17:4d:4a:
7e:23:1a:af:ac:76:1c:c0:03:af:c8:7f:dd:36:fd:
ee:81:64:00:d1:6c:f9:74:73:1e:d1:c4:d7:1b:c7:
75:fe:94:fb:de:25:78:5a:be:58:be:b3:39:ec:50:
ea:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:B6:C3:AC:A3:44:E3:EB:DC:5A:4C:6D:87:5A:EA:2A:A9:26:EC:DE
X509v3 Authority Key Identifier:
keyid:70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:f3:14:54:b6:8b:ad:e9:10:b0:8a:12:d4:71:0f:6c:ff:dc:
e8:dc:08:b3:8a:38:4f:e9:66:28:98:0b:82:f6:db:e4:8f:8b:
4c:59:ae:5d:f5:52:9e:6d:ca:fb:8b:c2:d7:d4:e3:18:14:25:
64:f0:4c:0c:89:a6:7a:13:44:46:16:8f:41:15:4e:9f:4e:f1:
4a:75:62:7a:57:79:a0:c3:dd:b6:31:57:dd:fa:73:a0:fb:28:
98:ba:d3:d8:4a:ec:ca:26:14:f3:36:fa:7a:6e:be:d2:1d:7b:
5b:b0:23:fd:0a:6c:67:6e:4b:d9:65:92:47:a0:bf:ca:57:58:
4c:e6:2e:28:38:cb:f6:a6:29:1c:8b:66:f8:79:1f:93:c1:ff:
66:2c:b3:7c:f7:11:ef:f8:54:3f:19:0e:56:58:49:44:d1:86:
68:6a:0b:ad:60:dc:e7:d0:9e:8d:a4:22:21:7f:0d:fa:20:09:
d4:36:3e:21:d1:f7:9f:da:50:d7:3e:07:9b:1c:92:4e:43:46:
a0:b1:40:1c:3d:66:65:66:e3:80:a2:a8:42:96:a7:ba:97:68:
69:85:33:6c:0b:de:98:38:d2:ea:cf:3f:8b:1e:47:1c:52:bc:
37:3f:ba:72:db:1d:84:68:18:6e:a0:71:48:b4:a7:1e:cf:4a:
10:ee:11:9f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+TTQ9y7iasVGOdXMgO14SqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwY2VlNjJiNzk0NzJkY2FlNTFlYWQ0ZDhlYTA2OTIzODcw
ZjUxOTcwHhcNMjQwNTIwMDAwMDUxWhcNMjQwNTIxMDAwMDUxWjAzMTEwLwYDVQQD
EyhlNmI2YzNhY2EzNDRlM2ViZGM1YTRjNmQ4NzVhZWEyYWE5MjZlY2RlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmaOVtRu1d3wqZ2YG6QZp75xza0uf
9875f52CFoVVnjagZ+Hf1f/1W/ySBhHS0LhczajyE31Hoi+8n6tbrso1eAXnB5Jt
0B3GEgybAvbUR2VoTdkc0EldqNr0/mOOmG1ZXPCKNinnw68n007A9Hd8s2vE+SpF
jLYe1ivMphTk40/ioATJz8QjOQNtMEQQ+ATjFHdjn4Bk7I4ZUkZ9ZQ1prhxGPVF2
GoaVMgcgSjANoQqWmUAZ91bVKNkBf+WAnbFlLy9+k9bWS/apptzt/J0XTUp+Ixqv
rHYcwAOvyH/dNv3ugWQA0Wz5dHMe0cTXG8d1/pT73iV4Wr5YvrM57FDq7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOa2w6yjROPr3FpMbYda6iqpJuzeMB8GA1UdIwQY
MBaAFHDO5it5Ry3K5R6tTY6gaSOHD1GXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9iYTgxYjYtMTI4Mi00NTVmLThjNTkt
ZDBlMjRmMDE3MDg4LzEvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9iYTgxYjYtMTI4Mi00NTVmLThjNTktZDBlMjRmMDE3MDg4
LzEvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANvMUVLaL
rekQsIoS1HEPbP/c6NwIs4o4T+lmKJgLgvbb5I+LTFmuXfVSnm3K+4vC19TjGBQl
ZPBMDImmehNERhaPQRVOn07xSnVield5oMPdtjFX3fpzoPsomLrT2ErsyiYU8zb6
em6+0h17W7Aj/QpsZ25L2WWSR6C/yldYTOYuKDjL9qYpHItm+Hkfk8H/ZiyzfPcR
7/hUPxkOVlhJRNGGaGoLrWDc59CejaQiIX8N+iAJ1DY+IdH3n9pQ1z4HmxySTkNG
oLFAHD1mZWbjgKKoQpanupdoaYUzbAvemDjS6s8/ix5HHFK8Nz+6ctsdhGgYbqBx
SLSnHs9KEO4Rnw==
-----END CERTIFICATE-----
Generated at Mon May 20 10:09:09 2024 by rpki-client on console-fra.rpki-client.org