Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
File: BcW97HMY-HHVPoZkgvQXM97wlCg.mft (raw, json)
Hash identifier: g/+zw7evmhJEir/Nk3k1U7BJL+KZ/XKbbDXNQhPTMjU=
Subject key identifier: 02:9A:B5:65:05:70:87:3B:03:5E:B4:0A:F5:47:2E:79:AC:82:A7:90
Authority key identifier: 05:C5:BD:EC:73:18:F8:71:D5:3E:86:64:82:F4:17:33:DE:F0:94:28
Certificate issuer: /CN=05c5bdec7318f871d53e866482f41733def09428
Certificate serial: 018F381B8A5A9FCAD95D80E8F5536C60C997
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
Manifest number: 08AF
Signing time: Thu 02 May 2024 07:01:19 +0000
Manifest this update: Thu 02 May 2024 07:01:19 +0000
Manifest next update: Fri 03 May 2024 07:01:19 +0000
Files and hashes: 1: BcW97HMY-HHVPoZkgvQXM97wlCg.crl (hash: /b8EfisV50oe3xDKFs72vq46ip0ZRw0PGvF+Y57O1EY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 07:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:38:1b:8a:5a:9f:ca:d9:5d:80:e8:f5:53:6c:60:c9:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05c5bdec7318f871d53e866482f41733def09428
Validity
Not Before: May 2 07:01:19 2024 GMT
Not After : May 3 07:01:19 2024 GMT
Subject: CN=029ab5650570873b035eb40af5472e79ac82a790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a8:29:1a:dd:40:5d:cd:75:b9:97:b3:25:48:
a1:f1:19:0b:66:c4:4d:22:93:1a:bd:1b:d8:c5:21:
92:01:83:29:46:dc:d4:c5:93:6e:ba:41:d2:a9:09:
8c:e7:6b:f7:0e:9e:3c:5c:10:ce:60:56:6c:8f:d1:
35:49:db:22:f4:ff:78:3c:db:d4:c5:97:a0:7c:15:
56:36:9b:32:0b:93:85:7b:16:24:77:e3:21:70:18:
29:5c:d2:6c:d0:e6:7a:0c:3a:2d:8e:77:af:4c:08:
83:e0:88:b0:d4:42:b9:58:f9:7e:c9:56:0c:6d:22:
72:a4:8a:a6:93:83:71:cd:92:4a:e5:a9:45:06:58:
a7:f3:d3:a1:e2:0f:83:d5:64:c2:2c:2e:f3:f8:f3:
f9:84:66:dc:32:91:20:35:72:f5:6c:22:b4:b9:2c:
47:03:fe:96:a7:8f:9d:44:89:b6:a0:d7:27:ad:f8:
74:2e:fa:f4:79:12:00:19:7d:02:e1:8e:14:67:e3:
f9:87:fa:45:69:fc:69:c0:28:d1:39:ea:1e:89:20:
6e:50:c9:a2:43:bf:46:1a:8c:39:a6:22:38:5e:cf:
0f:b7:8a:10:84:fe:ae:89:7a:5e:e2:19:23:75:c9:
27:b5:2b:13:84:84:3e:5c:d5:45:dc:ea:f4:fb:a4:
8d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:9A:B5:65:05:70:87:3B:03:5E:B4:0A:F5:47:2E:79:AC:82:A7:90
X509v3 Authority Key Identifier:
keyid:05:C5:BD:EC:73:18:F8:71:D5:3E:86:64:82:F4:17:33:DE:F0:94:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:29:84:9a:a6:ba:d0:0c:04:8e:a2:df:91:14:92:ab:b4:53:
71:67:b5:55:15:16:67:68:4f:6d:54:b2:82:92:87:a7:b7:e6:
1e:89:b0:b1:c9:ed:61:8d:93:0d:c4:b1:1f:9e:42:81:d0:25:
3e:f4:9e:0b:2b:8a:8c:70:d8:ad:62:f8:e6:81:de:f6:8b:3e:
e5:90:b6:4f:6f:32:c5:a6:cd:e8:f6:b0:7d:b3:c3:f8:76:5f:
94:57:dc:57:26:31:9d:b9:19:15:3d:23:c7:7f:24:93:e9:f7:
cc:26:09:b7:ba:68:c0:87:3e:6b:2d:ef:fc:09:b8:a4:34:46:
fe:8c:5e:0a:c3:0c:b5:84:de:10:b9:20:8d:81:52:e2:fb:4a:
8b:05:b8:ea:b7:11:5f:8e:3a:c5:d6:40:6f:69:f1:04:cc:e4:
a6:30:f5:88:d3:4f:7e:cf:5c:36:39:68:0c:e4:11:49:dc:d3:
ab:a0:8c:40:5d:f8:bc:be:c6:d1:23:2f:68:e7:a3:b2:80:ca:
5c:b0:94:be:79:2b:fc:81:8d:ff:2d:c0:bb:bc:f0:e0:51:1a:
6c:ef:e7:dd:6c:3a:02:9d:c8:7c:28:a2:ae:a0:ce:40:1d:5d:
b5:15:48:81:d2:71:ed:e3:57:56:47:9a:38:bc:33:36:8d:3a:
34:d8:d5:f9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY84G4pan8rZXYDo9VNsYMmXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1YzViZGVjNzMxOGY4NzFkNTNlODY2NDgyZjQxNzMzZGVm
MDk0MjgwHhcNMjQwNTAyMDcwMTE5WhcNMjQwNTAzMDcwMTE5WjAzMTEwLwYDVQQD
EygwMjlhYjU2NTA1NzA4NzNiMDM1ZWI0MGFmNTQ3MmU3OWFjODJhNzkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApqgpGt1AXc11uZezJUih8RkLZsRN
IpMavRvYxSGSAYMpRtzUxZNuukHSqQmM52v3Dp48XBDOYFZsj9E1Sdsi9P94PNvU
xZegfBVWNpsyC5OFexYkd+MhcBgpXNJs0OZ6DDotjnevTAiD4Iiw1EK5WPl+yVYM
bSJypIqmk4NxzZJK5alFBlin89Oh4g+D1WTCLC7z+PP5hGbcMpEgNXL1bCK0uSxH
A/6Wp4+dRIm2oNcnrfh0Lvr0eRIAGX0C4Y4UZ+P5h/pFafxpwCjROeoeiSBuUMmi
Q79GGow5piI4Xs8Pt4oQhP6uiXpe4hkjdckntSsThIQ+XNVF3Or0+6SNAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAKatWUFcIc7A160CvVHLnmsgqeQMB8GA1UdIwQY
MBaAFAXFvexzGPhx1T6GZIL0FzPe8JQoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmNXOTdITVktSEhWUG9aa2d2UVhNOTd3bENnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS8zZWJkMGMtMjk5MS00NTgzLWJmZWMt
NzEyMmZlYWZjOGM3LzEvQmNXOTdITVktSEhWUG9aa2d2UVhNOTd3bENnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS8zZWJkMGMtMjk5MS00NTgzLWJmZWMtNzEyMmZlYWZjOGM3
LzEvQmNXOTdITVktSEhWUG9aa2d2UVhNOTd3bENnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFCmEmqa6
0AwEjqLfkRSSq7RTcWe1VRUWZ2hPbVSygpKHp7fmHomwscntYY2TDcSxH55CgdAl
PvSeCyuKjHDYrWL45oHe9os+5ZC2T28yxabN6PawfbPD+HZflFfcVyYxnbkZFT0j
x38kk+n3zCYJt7powIc+ay3v/Am4pDRG/oxeCsMMtYTeELkgjYFS4vtKiwW46rcR
X446xdZAb2nxBMzkpjD1iNNPfs9cNjloDOQRSdzTq6CMQF34vL7G0SMvaOejsoDK
XLCUvnkr/IGN/y3Au7zw4FEabO/n3Ww6Ap3IfCiirqDOQB1dtRVIgdJx7eNXVkea
OLwzNo06NNjV+Q==
-----END CERTIFICATE-----
Generated at Thu May 2 13:30:34 2024 by rpki-client on console-fra.rpki-client.org