Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
File: 2HGZiqFAq3wf8kDqsMkjWRPJboo.mft (raw, json)
Hash identifier: AS/6mn1OOXE6OsSXjYS5pX5tXPUvPBfHRFlQdxbTXaY=
Subject key identifier: DD:C4:01:AE:E1:45:3E:E1:82:3A:07:E8:42:BF:CB:A1:28:D4:AE:EF
Authority key identifier: D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
Certificate issuer: /CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Certificate serial: 018F3C9D71F588FD5CFEB24270812F468EEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
Manifest number: 0E5E
Signing time: Fri 03 May 2024 04:01:42 +0000
Manifest this update: Fri 03 May 2024 04:01:42 +0000
Manifest next update: Sat 04 May 2024 04:01:42 +0000
Files and hashes: 1: 2HGZiqFAq3wf8kDqsMkjWRPJboo.crl (hash: KeehU6Ipen3sHNWVBveYUys28qR0tdClIzKCRokmgm0=)
2: _rp28goItNJGmjuds2rD-e5l-Zg.roa (hash: SrnivK1ZYYkPGtxa00Iw5pjXJBAg9cR9qrezpxkNf4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3c:9d:71:f5:88:fd:5c:fe:b2:42:70:81:2f:46:8e:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Validity
Not Before: May 3 04:01:42 2024 GMT
Not After : May 4 04:01:42 2024 GMT
Subject: CN=ddc401aee1453ee1823a07e842bfcba128d4aeef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:82:74:22:e6:7f:8e:55:5d:b9:db:45:7d:f8:
e2:8e:10:04:fa:dc:62:ae:d7:8e:3c:cb:20:fe:4a:
ca:82:89:46:54:e0:51:83:c7:d4:55:19:6b:67:c4:
76:b5:28:91:73:6b:d8:8c:6f:e3:49:ba:f6:0c:0f:
5d:d0:72:7f:85:df:6b:0b:53:fa:4a:6d:9c:ad:0d:
43:b4:da:b1:67:c4:45:91:a7:a9:17:1a:9d:31:10:
56:1e:c4:17:53:af:7c:c9:e3:ee:ef:fa:92:d5:c2:
33:5b:85:9d:dd:a5:73:2b:06:a1:7b:e5:81:0f:03:
6a:29:ad:84:5a:82:23:93:c7:3c:38:1e:cb:96:5e:
f0:0f:4d:e4:42:4a:c5:1b:b5:7e:98:ba:19:84:9a:
28:d9:4f:dd:e0:59:3d:a3:f7:94:65:05:0c:01:5c:
a4:e0:f3:c9:b7:76:37:03:18:9a:c0:fa:a2:b4:2c:
ac:ab:fb:c7:76:7a:18:61:41:2d:56:60:be:93:d0:
32:62:b3:17:6a:ae:16:9f:ec:2a:ee:97:e1:06:18:
0d:42:a0:2e:82:a9:65:bf:28:0c:20:d8:49:8b:bc:
af:65:a6:b1:8f:05:88:10:1d:b5:6c:4e:e7:d9:bd:
b6:4c:3a:45:b9:7e:21:18:9b:ae:fe:bf:e8:49:7e:
c2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:C4:01:AE:E1:45:3E:E1:82:3A:07:E8:42:BF:CB:A1:28:D4:AE:EF
X509v3 Authority Key Identifier:
keyid:D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:f4:72:03:f7:76:c8:18:c5:13:a6:e4:04:91:b4:d2:ce:f8:
cd:82:59:da:28:6c:69:17:87:13:65:e6:df:f9:1d:68:19:57:
75:49:a6:8a:2e:4b:83:15:fa:7f:5d:a8:48:8b:45:ae:71:15:
74:ad:dd:d0:31:5e:5b:a3:c1:fe:96:80:cd:c6:73:ab:6e:99:
a0:cb:75:fb:4c:fa:d6:a3:52:75:4c:a2:c2:12:18:39:61:c7:
0a:d7:2c:82:ea:df:21:13:c9:63:ae:3a:12:5e:00:5a:7b:00:
99:53:3c:d2:bb:bd:5a:ff:46:cf:ce:6a:17:ab:dc:df:99:b0:
c0:cc:b6:c4:e2:27:1f:31:99:ec:75:ea:4f:29:64:75:6d:69:
81:69:79:ce:73:f0:ab:b3:f5:ef:ed:ca:d9:9d:73:fd:19:c1:
db:36:42:49:a6:1d:3b:d8:2b:7a:f9:c1:4e:e3:20:05:e0:29:
56:50:b8:9e:bb:e7:5b:27:a3:1c:e9:76:aa:2e:3e:6a:b2:25:
5f:9c:f3:7c:91:89:66:c2:de:ac:24:77:b1:97:0d:22:2a:5d:
31:99:bd:4d:1d:c3:2d:ad:c5:f0:dd:71:12:fe:16:e6:56:7e:
a1:62:9c:ec:cb:4e:e3:59:b6:0e:2f:c1:ce:bd:56:12:4c:65:
ad:10:fa:a2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY88nXH1iP1c/rJCcIEvRo7uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4NzE5OThhYTE0MGFiN2MxZmYyNDBlYWIwYzkyMzU5MTNj
OTZlOGEwHhcNMjQwNTAzMDQwMTQyWhcNMjQwNTA0MDQwMTQyWjAzMTEwLwYDVQQD
EyhkZGM0MDFhZWUxNDUzZWUxODIzYTA3ZTg0MmJmY2JhMTI4ZDRhZWVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxIJ0IuZ/jlVdudtFffjijhAE+txi
rteOPMsg/krKgolGVOBRg8fUVRlrZ8R2tSiRc2vYjG/jSbr2DA9d0HJ/hd9rC1P6
Sm2crQ1DtNqxZ8RFkaepFxqdMRBWHsQXU698yePu7/qS1cIzW4Wd3aVzKwahe+WB
DwNqKa2EWoIjk8c8OB7Lll7wD03kQkrFG7V+mLoZhJoo2U/d4Fk9o/eUZQUMAVyk
4PPJt3Y3AxiawPqitCysq/vHdnoYYUEtVmC+k9AyYrMXaq4Wn+wq7pfhBhgNQqAu
gqllvygMINhJi7yvZaaxjwWIEB21bE7n2b22TDpFuX4hGJuu/r/oSX7CQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN3EAa7hRT7hgjoH6EK/y6Eo1K7vMB8GA1UdIwQY
MBaAFNhxmYqhQKt8H/JA6rDJI1kTyW6KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkhHWmlxRkFxM3dmOGtEcXNNa2pXUlBKYm9vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi8zM2FhMjQtMzVlYS00YWRjLThjMDUt
NWEzNGU1MmIwYjEwLzEvMkhHWmlxRkFxM3dmOGtEcXNNa2pXUlBKYm9vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi8zM2FhMjQtMzVlYS00YWRjLThjMDUtNWEzNGU1MmIwYjEw
LzEvMkhHWmlxRkFxM3dmOGtEcXNNa2pXUlBKYm9vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoPRyA/d2
yBjFE6bkBJG00s74zYJZ2ihsaReHE2Xm3/kdaBlXdUmmii5LgxX6f12oSItFrnEV
dK3d0DFeW6PB/paAzcZzq26ZoMt1+0z61qNSdUyiwhIYOWHHCtcsgurfIRPJY646
El4AWnsAmVM80ru9Wv9Gz85qF6vc35mwwMy2xOInHzGZ7HXqTylkdW1pgWl5znPw
q7P17+3K2Z1z/RnB2zZCSaYdO9grevnBTuMgBeApVlC4nrvnWyejHOl2qi4+arIl
X5zzfJGJZsLerCR3sZcNIipdMZm9TR3DLa3F8N1xEv4W5lZ+oWKc7MtO41m2Di/B
zr1WEkxlrRD6og==
-----END CERTIFICATE-----
Generated at Fri May 3 11:55:07 2024 by rpki-client on console-ams.rpki-client.org