Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft
File: nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft (raw, json)
Hash identifier: +IZ7ZfM1INxb1BKJkSlTDVxo+ZI3a/DK7OYEENIag+s=
Subject key identifier: 17:DE:13:A6:B1:E5:A1:77:A7:AF:39:C1:AB:7D:FD:1A:2A:64:AA:85
Authority key identifier: 9C:A9:0E:7D:AF:15:C1:7C:1B:9A:BC:57:21:57:BC:7D:91:7B:39:91
Certificate issuer: /CN=9ca90e7daf15c17c1b9abc572157bc7d917b3991
Certificate serial: 018F874A04C23F08D07B455BCAA867B9EA86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nKkOfa8VwXwbmrxXIVe8fZF7OZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft
Manifest number: 0CFE
Signing time: Fri 17 May 2024 16:02:05 +0000
Manifest this update: Fri 17 May 2024 16:02:05 +0000
Manifest next update: Sat 18 May 2024 16:02:05 +0000
Files and hashes: 1: kXWRAw3Mp4zMgJKgxtzBvZyBYuI.roa (hash: U2ztNK39Ls99OwmFhGPq71w/pP2CHcEPd6ZEyXOY+FY=)
2: nKkOfa8VwXwbmrxXIVe8fZF7OZE.crl (hash: UwiH8+qvkd9C4oL2cEzHD1cwCQFmSNJBq3+46vwU69k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nKkOfa8VwXwbmrxXIVe8fZF7OZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:04:c2:3f:08:d0:7b:45:5b:ca:a8:67:b9:ea:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ca90e7daf15c17c1b9abc572157bc7d917b3991
Validity
Not Before: May 17 16:02:05 2024 GMT
Not After : May 18 16:02:05 2024 GMT
Subject: CN=17de13a6b1e5a177a7af39c1ab7dfd1a2a64aa85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8d:fd:34:0c:c2:b0:b4:17:65:38:97:44:65:
fa:a4:ca:ce:65:aa:c0:ac:85:53:00:cc:6a:68:78:
16:83:65:4f:c5:b7:1c:e0:d8:71:cd:35:89:f0:62:
a4:66:41:05:ab:f0:ff:70:ee:11:88:7f:af:b2:ba:
8a:65:80:8f:b5:cb:64:63:93:81:fe:95:c3:4d:7a:
d1:13:36:f9:53:2a:1b:ec:45:c5:08:ed:dc:87:a2:
6f:25:0c:b9:12:1b:2c:37:c0:f4:7c:19:ab:a6:b3:
39:77:db:2d:c0:75:98:25:1c:b4:9e:dc:fe:60:7a:
75:ac:55:09:7e:21:3d:a1:97:2a:76:80:da:a2:e2:
f8:3c:9a:8f:42:3a:b9:85:0d:90:b2:c8:47:66:07:
6a:8e:43:e1:ef:4e:f6:54:ff:3e:00:d3:cb:a6:08:
e6:86:a2:de:98:5e:24:93:51:f1:a4:e4:a9:a7:ff:
0c:dd:91:9d:7b:53:1d:d4:02:78:45:12:06:3d:3e:
63:4e:54:40:b9:7b:96:b0:7f:13:7e:08:02:bb:d1:
4a:7d:d8:6a:64:dc:b4:c0:27:bb:a4:2d:bd:02:a0:
08:d6:3f:4a:b3:ca:5e:a8:82:f4:3a:3a:62:ce:b6:
d6:cd:0e:2e:c8:6e:48:fd:7d:e7:f6:be:5e:3a:03:
0b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:DE:13:A6:B1:E5:A1:77:A7:AF:39:C1:AB:7D:FD:1A:2A:64:AA:85
X509v3 Authority Key Identifier:
keyid:9C:A9:0E:7D:AF:15:C1:7C:1B:9A:BC:57:21:57:BC:7D:91:7B:39:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nKkOfa8VwXwbmrxXIVe8fZF7OZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:80:77:ec:89:8e:0d:09:db:11:2d:66:2e:66:13:82:6d:c2:
93:05:04:67:03:88:3a:cc:e5:10:90:cf:ec:c3:e1:3d:06:90:
df:98:18:96:25:21:6c:62:1f:2d:32:03:9f:00:3e:33:3a:92:
23:4b:ac:bf:bc:08:5f:dd:a1:94:e5:90:09:2e:ac:5e:8f:13:
29:66:0f:7c:42:bc:49:2c:27:ed:bd:69:ff:42:e1:44:da:f6:
18:13:37:15:61:09:19:34:27:6e:30:5c:28:04:d8:9c:29:c6:
d8:64:9e:ab:84:b7:26:74:98:b7:f5:f3:06:b1:aa:19:83:dd:
2d:69:3f:9c:88:85:1e:64:3e:62:8e:b5:d3:bf:5f:0a:0b:10:
bf:8f:33:dc:da:c6:88:7e:7d:6b:2c:a0:fc:9a:b5:b1:31:f0:
f0:30:32:da:92:26:e6:a6:62:89:17:41:7a:e3:17:69:45:f6:
e3:cd:a8:01:af:8d:5f:86:00:81:62:7b:d2:42:24:86:d5:47:
9b:5f:10:cf:1f:55:a6:51:77:81:cc:9c:44:0d:90:03:2c:9b:
70:ae:b9:ad:1c:9b:c9:93:fb:6e:fc:14:6e:89:bd:6f:24:95:
5d:83:f7:5f:91:50:08:2c:ae:ce:b2:85:7f:57:f7:0f:32:4f:
b6:50:78:48
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+HSgTCPwjQe0VbyqhnueqGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljYTkwZTdkYWYxNWMxN2MxYjlhYmM1NzIxNTdiYzdkOTE3
YjM5OTEwHhcNMjQwNTE3MTYwMjA1WhcNMjQwNTE4MTYwMjA1WjAzMTEwLwYDVQQD
EygxN2RlMTNhNmIxZTVhMTc3YTdhZjM5YzFhYjdkZmQxYTJhNjRhYTg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1o39NAzCsLQXZTiXRGX6pMrOZarA
rIVTAMxqaHgWg2VPxbcc4NhxzTWJ8GKkZkEFq/D/cO4RiH+vsrqKZYCPtctkY5OB
/pXDTXrREzb5Uyob7EXFCO3ch6JvJQy5EhssN8D0fBmrprM5d9stwHWYJRy0ntz+
YHp1rFUJfiE9oZcqdoDaouL4PJqPQjq5hQ2QsshHZgdqjkPh7072VP8+ANPLpgjm
hqLemF4kk1HxpOSpp/8M3ZGde1Md1AJ4RRIGPT5jTlRAuXuWsH8TfggCu9FKfdhq
ZNy0wCe7pC29AqAI1j9Ks8peqIL0OjpizrbWzQ4uyG5I/X3n9r5eOgMLcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBfeE6ax5aF3p685wat9/RoqZKqFMB8GA1UdIwQY
MBaAFJypDn2vFcF8G5q8VyFXvH2RezmRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbktrT2ZhOFZ3WHdibXJ4WElWZThmWkY3T1pFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8yNWYzNzUtMTQwZi00NmU5LTk2N2Ut
NmU0NTlhNThlMWQ2LzEvbktrT2ZhOFZ3WHdibXJ4WElWZThmWkY3T1pFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy8yNWYzNzUtMTQwZi00NmU5LTk2N2UtNmU0NTlhNThlMWQ2
LzEvbktrT2ZhOFZ3WHdibXJ4WElWZThmWkY3T1pFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP4B37ImO
DQnbES1mLmYTgm3CkwUEZwOIOszlEJDP7MPhPQaQ35gYliUhbGIfLTIDnwA+MzqS
I0usv7wIX92hlOWQCS6sXo8TKWYPfEK8SSwn7b1p/0LhRNr2GBM3FWEJGTQnbjBc
KATYnCnG2GSeq4S3JnSYt/XzBrGqGYPdLWk/nIiFHmQ+Yo61079fCgsQv48z3NrG
iH59ayyg/Jq1sTHw8DAy2pIm5qZiiRdBeuMXaUX2482oAa+NX4YAgWJ70kIkhtVH
m18Qzx9VplF3gcycRA2QAyybcK65rRybyZP7bvwUbom9bySVXYP3X5FQCCyuzrKF
f1f3DzJPtlB4SA==
-----END CERTIFICATE-----
Generated at Fri May 17 18:56:29 2024 by rpki-client on console-ams.rpki-client.org