Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft
File: ygHfSTk2pi4uyamAWo-ja4M1vVA.mft (raw, json)
Hash identifier: Pw3s52rl710pJf5MnXPSQuAkVUWS1rGIEjM/LAqb7vQ=
Subject key identifier: 2F:71:1C:4E:D6:64:73:07:3D:29:E8:2F:17:04:43:06:B2:51:61:01
Authority key identifier: CA:01:DF:49:39:36:A6:2E:2E:C9:A9:80:5A:8F:A3:6B:83:35:BD:50
Certificate issuer: /CN=ca01df493936a62e2ec9a9805a8fa36b8335bd50
Certificate serial: 018F93BAB1F3E8C427860215015A454B2998
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygHfSTk2pi4uyamAWo-ja4M1vVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft
Manifest number: 030B
Signing time: Mon 20 May 2024 02:00:36 +0000
Manifest this update: Mon 20 May 2024 02:00:36 +0000
Manifest next update: Tue 21 May 2024 02:00:36 +0000
Files and hashes: 1: 6CHmKPYGP7NiFfjTxXFQ-ELHtvQ.roa (hash: pGfU7RivjFEpfJm5sv7H6GBde3v+RF9ajHqpa0ZlH/Q=)
2: ygHfSTk2pi4uyamAWo-ja4M1vVA.crl (hash: A27hZfT2Ow12GRJQQusW7gz3+3AvoaRit4XO/j4cy68=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ygHfSTk2pi4uyamAWo-ja4M1vVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:93:ba:b1:f3:e8:c4:27:86:02:15:01:5a:45:4b:29:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca01df493936a62e2ec9a9805a8fa36b8335bd50
Validity
Not Before: May 20 02:00:36 2024 GMT
Not After : May 21 02:00:36 2024 GMT
Subject: CN=2f711c4ed66473073d29e82f17044306b2516101
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:73:a0:74:0a:8f:0b:95:56:4f:fa:f0:a2:a2:
71:6a:7c:eb:6d:57:c6:cf:fb:05:5e:fd:ce:63:64:
7f:e0:6b:0d:16:38:2f:df:81:c6:31:50:41:dd:c3:
93:7b:7d:c0:93:66:8b:05:82:40:fa:e9:f0:c6:66:
11:3a:9d:d1:aa:59:b9:cc:d5:4a:06:c7:55:7e:e9:
41:76:0f:6b:76:78:1b:0f:b4:9b:77:09:0e:cd:d2:
d4:59:96:cd:ac:7f:1c:4d:cc:51:03:b7:78:7a:dc:
6d:06:db:6a:88:18:1d:d3:1e:55:8e:08:92:45:15:
d7:96:61:d3:56:2f:f4:21:50:64:2f:b3:65:4e:ff:
39:6c:f5:37:94:a8:6a:8d:a0:2c:50:12:6b:21:79:
a1:57:0a:ab:9a:14:f8:51:d4:3c:5d:13:49:50:48:
fa:93:35:22:aa:ed:8c:8d:f7:5e:54:9c:9c:e0:f7:
8d:da:df:1d:2f:fe:ab:83:47:8a:ec:08:b0:0c:e6:
77:09:c6:bc:c7:f1:17:2f:29:e2:bc:cd:85:e0:2e:
50:7b:9a:4b:1b:83:26:a3:60:27:41:01:12:ea:6b:
6d:34:c6:27:ef:33:f6:8a:09:61:5f:56:ec:78:5c:
57:fe:28:43:34:18:6d:eb:cb:75:5a:98:b8:80:8d:
51:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:71:1C:4E:D6:64:73:07:3D:29:E8:2F:17:04:43:06:B2:51:61:01
X509v3 Authority Key Identifier:
keyid:CA:01:DF:49:39:36:A6:2E:2E:C9:A9:80:5A:8F:A3:6B:83:35:BD:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygHfSTk2pi4uyamAWo-ja4M1vVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:ba:50:31:74:27:7b:b1:34:e4:c5:9a:bb:33:56:a1:4f:63:
8d:15:24:f6:40:f7:45:e3:c2:c6:b9:2c:e3:d1:30:a1:a9:a8:
1d:b6:ca:fe:e3:70:42:ad:b9:46:cb:70:de:5b:7e:6f:af:09:
0b:c1:fc:1d:de:4c:b6:f0:0b:50:ea:f8:0e:6d:94:a6:17:ee:
19:3f:c0:81:fe:bb:e5:32:eb:4e:13:d3:16:db:a9:06:f2:19:
80:fa:83:a9:8c:c3:c5:4c:dc:8b:88:1b:7d:de:3b:0a:ba:ce:
70:65:c1:06:6e:96:f3:3f:98:2f:6d:e1:81:04:32:00:b3:02:
90:7c:da:67:86:82:b7:30:ef:73:17:97:60:4d:93:a5:92:56:
e4:d2:e8:a9:57:96:7f:d7:74:27:7e:1a:36:a7:f9:c6:3e:9a:
ad:c4:03:17:f5:7a:ad:b7:37:7a:46:12:10:2d:3e:cc:53:2e:
b1:19:dd:1c:97:54:03:35:81:a0:5a:17:ad:3e:aa:92:7b:d0:
14:f8:ef:30:ab:05:15:12:0b:eb:39:ce:8d:c5:b2:03:db:3e:
ea:6b:77:79:0c:9a:da:95:ae:1c:7c:d8:00:d3:e7:5f:96:4a:
ea:d9:a3:cd:42:a6:67:36:a8:e8:49:0e:f4:c7:6f:28:42:33:
fc:64:58:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+TurHz6MQnhgIVAVpFSymYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhMDFkZjQ5MzkzNmE2MmUyZWM5YTk4MDVhOGZhMzZiODMz
NWJkNTAwHhcNMjQwNTIwMDIwMDM2WhcNMjQwNTIxMDIwMDM2WjAzMTEwLwYDVQQD
EygyZjcxMWM0ZWQ2NjQ3MzA3M2QyOWU4MmYxNzA0NDMwNmIyNTE2MTAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2nOgdAqPC5VWT/rwoqJxanzrbVfG
z/sFXv3OY2R/4GsNFjgv34HGMVBB3cOTe33Ak2aLBYJA+unwxmYROp3Rqlm5zNVK
BsdVfulBdg9rdngbD7SbdwkOzdLUWZbNrH8cTcxRA7d4etxtBttqiBgd0x5VjgiS
RRXXlmHTVi/0IVBkL7NlTv85bPU3lKhqjaAsUBJrIXmhVwqrmhT4UdQ8XRNJUEj6
kzUiqu2MjfdeVJyc4PeN2t8dL/6rg0eK7AiwDOZ3Cca8x/EXLynivM2F4C5Qe5pL
G4Mmo2AnQQES6mttNMYn7zP2iglhX1bseFxX/ihDNBht68t1Wpi4gI1RDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC9xHE7WZHMHPSnoLxcEQwayUWEBMB8GA1UdIwQY
MBaAFMoB30k5NqYuLsmpgFqPo2uDNb1QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWdIZlNUazJwaTR1eWFtQVdvLWphNE0xdlZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC82NDllODEtY2NhMi00MDRjLTk4YTUt
OTYyNzU4YTNkNWVhLzEveWdIZlNUazJwaTR1eWFtQVdvLWphNE0xdlZBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC82NDllODEtY2NhMi00MDRjLTk4YTUtOTYyNzU4YTNkNWVh
LzEveWdIZlNUazJwaTR1eWFtQVdvLWphNE0xdlZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQLpQMXQn
e7E05MWauzNWoU9jjRUk9kD3RePCxrks49EwoamoHbbK/uNwQq25Rstw3lt+b68J
C8H8Hd5MtvALUOr4Dm2UphfuGT/Agf675TLrThPTFtupBvIZgPqDqYzDxUzci4gb
fd47CrrOcGXBBm6W8z+YL23hgQQyALMCkHzaZ4aCtzDvcxeXYE2TpZJW5NLoqVeW
f9d0J34aNqf5xj6arcQDF/V6rbc3ekYSEC0+zFMusRndHJdUAzWBoFoXrT6qknvQ
FPjvMKsFFRIL6znOjcWyA9s+6mt3eQya2pWuHHzYANPnX5ZK6tmjzUKmZzao6EkO
9MdvKEIz/GRY2A==
-----END CERTIFICATE-----
Generated at Mon May 20 05:58:38 2024 by rpki-client on console-ams.rpki-client.org