Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
File: lRibFY2NYBG6X5YlLTAmanDT4GY.mft (raw, json)
Hash identifier: DgdreEocIJ+m/ePcukkLnFDcQDQkgSwXDiX5c9K/mmk=
Subject key identifier: 70:BC:76:BA:CF:F9:B2:EF:65:29:74:5A:9B:4C:BE:F1:05:C9:2E:28
Authority key identifier: 95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66
Certificate issuer: /CN=95189b158d8d6011ba5f96252d30266a70d3e066
Certificate serial: 01905C92AA5E636DCAC10668BAF6BAC8899F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
Manifest number: 11E6
Signing time: Fri 28 Jun 2024 02:00:33 +0000
Manifest this update: Fri 28 Jun 2024 02:00:33 +0000
Manifest next update: Sat 29 Jun 2024 02:00:33 +0000
Files and hashes: 1: 4HP8LX5cbVJrjtuUPXHeMcCl95Q.roa (hash: 4FyMZhvaha8W2HkWzerWXYj+JlZyYgONUJPkpQHpRGc=)
2: lRibFY2NYBG6X5YlLTAmanDT4GY.crl (hash: XaE8rDy9HrOP/8SUAozq5aJdbCodymrG8yuSOzQxSFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 28 Jun 2024 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:5c:92:aa:5e:63:6d:ca:c1:06:68:ba:f6:ba:c8:89:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95189b158d8d6011ba5f96252d30266a70d3e066
Validity
Not Before: Jun 28 02:00:33 2024 GMT
Not After : Jun 29 02:00:33 2024 GMT
Subject: CN=70bc76bacff9b2ef6529745a9b4cbef105c92e28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8a:47:e0:11:d7:82:01:c5:7d:c9:d7:37:49:
b4:e3:cb:99:fa:53:50:48:a0:4a:55:b5:37:a3:17:
d9:fe:e9:14:77:48:bc:c8:13:48:07:76:63:32:6d:
78:cc:ee:8e:da:9c:3a:d6:2c:70:a6:e3:17:d0:19:
3e:53:be:dd:e0:9b:26:10:3d:53:67:6f:9a:e1:7a:
9e:8a:48:cd:e0:6f:ee:fa:03:5c:24:5e:32:8f:45:
43:47:09:63:cf:f5:2b:e4:7c:5b:96:4f:1d:f2:71:
2b:7f:e9:8e:0b:69:14:9e:46:49:ad:ad:4b:f8:2e:
61:15:a5:c5:94:c0:a5:04:48:7d:bf:cb:4f:0b:59:
e3:10:61:a0:01:2a:1e:5c:e9:67:35:83:17:42:dc:
1d:08:50:6b:68:50:db:5a:95:ff:34:bc:38:a2:1b:
8f:bd:2f:aa:6b:db:e7:ef:b1:e0:b3:64:ad:06:37:
38:02:c9:a5:77:be:a2:03:08:ae:23:e4:d9:80:14:
be:b7:c7:45:8d:a6:fe:a1:a9:92:a3:5b:fc:b0:05:
26:5e:3d:51:98:cf:ab:2d:80:82:e2:7d:e8:d6:be:
db:fe:5b:f3:99:e6:cd:1c:eb:4f:07:a3:34:75:30:
0f:0a:79:3e:79:99:3f:4f:a1:8f:0c:5e:94:01:81:
45:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:BC:76:BA:CF:F9:B2:EF:65:29:74:5A:9B:4C:BE:F1:05:C9:2E:28
X509v3 Authority Key Identifier:
keyid:95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:06:b9:83:a5:56:7a:f0:ee:d2:fa:3e:75:4c:d5:7c:3f:fa:
4a:37:76:09:b1:e0:7f:63:2e:0e:5d:05:61:f1:76:51:1d:e7:
8f:89:55:31:fc:79:a2:e5:5f:b7:ba:ab:64:24:f3:3c:8e:a7:
95:81:77:9e:24:4f:75:71:9f:d9:83:f1:2d:48:a4:d4:fe:70:
fc:21:88:20:17:3c:e6:2d:40:ef:24:b1:3c:85:91:a6:c2:96:
60:67:cd:a4:3f:2d:8b:85:a5:bc:37:80:c7:da:4b:a5:2e:54:
dd:ec:8d:52:13:4e:bc:02:39:38:87:70:3b:da:36:0b:40:f0:
a0:97:6f:7c:0c:b2:98:45:8d:45:f5:b2:a5:34:e4:ea:cd:5d:
8c:79:8a:a4:c6:86:7e:61:21:37:e0:d2:45:0f:b1:98:25:c8:
2a:5b:b6:47:6c:a3:3f:d4:fe:71:f5:92:1a:8a:77:03:71:eb:
52:56:fe:f6:70:0f:e8:e8:dd:f7:64:f9:c5:07:bf:6f:46:7d:
50:6e:cd:3c:2d:1e:6e:49:ae:47:57:5b:9c:b4:1c:e3:c6:54:
fa:21:0c:cf:af:48:bd:c2:76:32:31:28:44:e4:b0:0c:ab:bb:
b1:ba:70:6b:31:9d:0b:67:ec:6b:15:28:59:49:95:ef:ed:87:
f7:f2:21:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZBckqpeY23KwQZouva6yImfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1MTg5YjE1OGQ4ZDYwMTFiYTVmOTYyNTJkMzAyNjZhNzBk
M2UwNjYwHhcNMjQwNjI4MDIwMDMzWhcNMjQwNjI5MDIwMDMzWjAzMTEwLwYDVQQD
Eyg3MGJjNzZiYWNmZjliMmVmNjUyOTc0NWE5YjRjYmVmMTA1YzkyZTI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt4pH4BHXggHFfcnXN0m048uZ+lNQ
SKBKVbU3oxfZ/ukUd0i8yBNIB3ZjMm14zO6O2pw61ixwpuMX0Bk+U77d4JsmED1T
Z2+a4XqeikjN4G/u+gNcJF4yj0VDRwljz/Ur5Hxblk8d8nErf+mOC2kUnkZJra1L
+C5hFaXFlMClBEh9v8tPC1njEGGgASoeXOlnNYMXQtwdCFBraFDbWpX/NLw4ohuP
vS+qa9vn77Hgs2StBjc4Asmld76iAwiuI+TZgBS+t8dFjab+oamSo1v8sAUmXj1R
mM+rLYCC4n3o1r7b/lvzmebNHOtPB6M0dTAPCnk+eZk/T6GPDF6UAYFFDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHC8drrP+bLvZSl0WptMvvEFyS4oMB8GA1UdIwQY
MBaAFJUYmxWNjWARul+WJS0wJmpw0+BmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFJpYkZZMk5ZQkc2WDVZbExUQW1hbkRUNEdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9kMjdhZDAtNTVjMi00OTA0LWE4YzUt
YWNlMTgwZmY5YjE5LzEvbFJpYkZZMk5ZQkc2WDVZbExUQW1hbkRUNEdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9kMjdhZDAtNTVjMi00OTA0LWE4YzUtYWNlMTgwZmY5YjE5
LzEvbFJpYkZZMk5ZQkc2WDVZbExUQW1hbkRUNEdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASga5g6VW
evDu0vo+dUzVfD/6Sjd2CbHgf2MuDl0FYfF2UR3nj4lVMfx5ouVft7qrZCTzPI6n
lYF3niRPdXGf2YPxLUik1P5w/CGIIBc85i1A7ySxPIWRpsKWYGfNpD8ti4WlvDeA
x9pLpS5U3eyNUhNOvAI5OIdwO9o2C0DwoJdvfAyymEWNRfWypTTk6s1djHmKpMaG
fmEhN+DSRQ+xmCXIKlu2R2yjP9T+cfWSGop3A3HrUlb+9nAP6Ojd92T5xQe/b0Z9
UG7NPC0ebkmuR1dbnLQc48ZU+iEMz69IvcJ2MjEoROSwDKu7sbpwazGdC2fsaxUo
WUmV7+2H9/IhSg==
-----END CERTIFICATE-----
Generated at Fri Jun 28 08:15:03 2024 by rpki-client on console-ams.rpki-client.org