Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
File: NgHDzOanHKshpLut8KuE3ePyurI.mft (raw, json)
Hash identifier: Aw7fLbZYxT57S+H2AtAWwIDbaHabu5w9d8ztpruIY6c=
Subject key identifier: D9:02:FA:CA:5A:0B:23:18:05:DB:7F:07:9C:D7:8F:EF:E4:7C:89:EF
Authority key identifier: 36:01:C3:CC:E6:A7:1C:AB:21:A4:BB:AD:F0:AB:84:DD:E3:F2:BA:B2
Certificate issuer: /CN=3601c3cce6a71cab21a4bbadf0ab84dde3f2bab2
Certificate serial: 018F87B645DD8920418FE97088F3855E9557
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
Manifest number: 117B
Signing time: Fri 17 May 2024 18:00:20 +0000
Manifest this update: Fri 17 May 2024 18:00:20 +0000
Manifest next update: Sat 18 May 2024 18:00:20 +0000
Files and hashes: 1: NgHDzOanHKshpLut8KuE3ePyurI.crl (hash: 3xxWc4OZXFlNkzaR/PiqOIP7ZMIzTmAA1MvmFiFFeBw=)
2: VCrOu3qxJsvnrL9jI759XQGd49o.roa (hash: h6gteG11f+LVWbk4jQI52xl6NGeU5G+Hj7IRZK1K1xw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:b6:45:dd:89:20:41:8f:e9:70:88:f3:85:5e:95:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3601c3cce6a71cab21a4bbadf0ab84dde3f2bab2
Validity
Not Before: May 17 18:00:20 2024 GMT
Not After : May 18 18:00:20 2024 GMT
Subject: CN=d902faca5a0b231805db7f079cd78fefe47c89ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:30:3a:ee:2f:3a:ff:50:06:97:24:7b:8f:73:
54:6e:d5:82:6e:15:8d:67:b5:f1:23:7c:7f:42:4b:
a6:b1:2c:a6:6e:00:1e:14:40:aa:be:0a:71:3f:92:
81:6a:6f:0a:df:f1:c3:fb:bc:21:7a:49:ee:fd:44:
54:16:62:c1:8d:8b:c8:8a:6c:cf:2f:1d:e0:27:f9:
b8:f3:2f:a0:0a:68:2e:4c:09:a9:51:1b:0e:28:e9:
16:aa:15:47:f4:32:21:e8:20:49:da:f2:3c:0b:7e:
14:c2:61:1c:9c:d6:55:64:29:11:de:77:2b:55:f7:
b9:62:3a:2e:53:d6:a7:ca:68:7e:4c:e7:be:14:60:
dd:47:1a:91:86:91:02:a7:1d:68:55:cb:1b:93:b8:
f5:ef:c0:4b:1b:59:dc:8c:a7:02:5f:5d:de:99:a5:
16:a4:2d:bf:f9:63:ee:06:cb:07:1c:f5:fa:1c:5d:
ce:64:83:b2:89:f0:0a:d5:27:8a:87:30:7e:65:e3:
91:c0:03:59:11:88:7c:c1:39:c8:6a:9a:3a:d8:e5:
2b:ae:98:b7:f2:27:d9:47:5f:53:69:ce:c3:ed:3d:
09:b7:ca:e6:9f:90:d7:f6:7c:8c:13:13:e4:a8:02:
a3:6b:1b:90:38:3a:56:e6:62:65:a8:30:ee:a2:38:
c4:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:02:FA:CA:5A:0B:23:18:05:DB:7F:07:9C:D7:8F:EF:E4:7C:89:EF
X509v3 Authority Key Identifier:
keyid:36:01:C3:CC:E6:A7:1C:AB:21:A4:BB:AD:F0:AB:84:DD:E3:F2:BA:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:e6:04:8d:89:f7:d9:f0:ac:03:28:0c:21:30:c9:cb:7f:c5:
77:1c:1c:a9:e4:ff:a0:10:58:53:e1:d9:41:e1:9d:53:40:a7:
9f:cc:f2:e3:ce:9d:73:e9:94:bd:a1:05:60:8b:ae:88:ac:17:
76:f4:4a:3f:1c:38:23:47:c8:3f:ea:23:9b:6d:ff:1a:86:9e:
37:1f:de:80:5f:63:a5:d8:74:f8:fc:e2:e7:ff:56:1c:d3:d8:
74:f0:ea:63:a7:a1:f2:0c:fe:a1:45:af:b6:8b:ef:2f:75:e9:
00:45:d7:51:ed:ff:6b:46:a2:af:9e:85:d1:86:90:30:04:39:
8b:4a:8c:d7:d8:1e:82:48:4d:df:fd:a9:03:ea:fa:dd:cf:88:
3f:ab:db:41:54:21:15:0f:52:25:c9:1c:16:6a:e6:ef:d1:e7:
99:e8:cb:dc:8a:c5:16:0a:bb:0d:3d:4f:28:80:3e:61:0a:75:
64:4f:3b:90:7d:0a:81:df:1d:8a:57:71:03:68:c3:1e:c0:11:
0c:07:b8:68:32:9d:93:94:c1:59:96:cb:fa:06:26:4e:a9:4e:
6f:74:0c:08:a1:4c:5c:3c:85:1a:b5:38:a0:7d:eb:17:bb:f8:
e9:09:db:ba:3d:5f:08:e2:49:67:9e:a0:5d:4d:1b:dc:cd:8e:
75:7e:9a:3d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+HtkXdiSBBj+lwiPOFXpVXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2MDFjM2NjZTZhNzFjYWIyMWE0YmJhZGYwYWI4NGRkZTNm
MmJhYjIwHhcNMjQwNTE3MTgwMDIwWhcNMjQwNTE4MTgwMDIwWjAzMTEwLwYDVQQD
EyhkOTAyZmFjYTVhMGIyMzE4MDVkYjdmMDc5Y2Q3OGZlZmU0N2M4OWVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2TA67i86/1AGlyR7j3NUbtWCbhWN
Z7XxI3x/QkumsSymbgAeFECqvgpxP5KBam8K3/HD+7wheknu/URUFmLBjYvIimzP
Lx3gJ/m48y+gCmguTAmpURsOKOkWqhVH9DIh6CBJ2vI8C34UwmEcnNZVZCkR3ncr
Vfe5YjouU9anymh+TOe+FGDdRxqRhpECpx1oVcsbk7j178BLG1ncjKcCX13emaUW
pC2/+WPuBssHHPX6HF3OZIOyifAK1SeKhzB+ZeORwANZEYh8wTnIapo62OUrrpi3
8ifZR19Tac7D7T0Jt8rmn5DX9nyMExPkqAKjaxuQODpW5mJlqDDuojjEHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNkC+spaCyMYBdt/B5zXj+/kfInvMB8GA1UdIwQY
MBaAFDYBw8zmpxyrIaS7rfCrhN3j8rqyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmdIRHpPYW5IS3NocEx1dDhLdUUzZVB5dXJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS8wZjBhMDEtMGNjNC00ZWZjLTlkZDUt
ODAxZWYzOGRlYTljLzEvTmdIRHpPYW5IS3NocEx1dDhLdUUzZVB5dXJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS8wZjBhMDEtMGNjNC00ZWZjLTlkZDUtODAxZWYzOGRlYTlj
LzEvTmdIRHpPYW5IS3NocEx1dDhLdUUzZVB5dXJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMeYEjYn3
2fCsAygMITDJy3/FdxwcqeT/oBBYU+HZQeGdU0Cnn8zy486dc+mUvaEFYIuuiKwX
dvRKPxw4I0fIP+ojm23/GoaeNx/egF9jpdh0+Pzi5/9WHNPYdPDqY6eh8gz+oUWv
tovvL3XpAEXXUe3/a0air56F0YaQMAQ5i0qM19gegkhN3/2pA+r63c+IP6vbQVQh
FQ9SJckcFmrm79HnmejL3IrFFgq7DT1PKIA+YQp1ZE87kH0Kgd8dildxA2jDHsAR
DAe4aDKdk5TBWZbL+gYmTqlOb3QMCKFMXDyFGrU4oH3rF7v46Qnbuj1fCOJJZ56g
XU0b3M2OdX6aPQ==
-----END CERTIFICATE-----
Generated at Fri May 17 20:20:41 2024 by rpki-client on console-fra.rpki-client.org