Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
File: tE-FORdNAL-ov95JBD9IXDpYdSU.mft (raw, json)
Hash identifier: FkPGLosEusN/9dwCyEJ7HvfjYuasY8s2lzsL8v/rRMM=
Subject key identifier: 97:02:C2:EF:01:23:8D:C2:6B:83:0E:B5:BC:A1:E1:97:B4:CB:D8:D8
Authority key identifier: B4:4F:85:39:17:4D:00:BF:A8:BF:DE:49:04:3F:48:5C:3A:58:75:25
Certificate issuer: /CN=b44f8539174d00bfa8bfde49043f485c3a587525
Certificate serial: 018F953AFA72D5776E6C86E5811D5A7495CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tE-FORdNAL-ov95JBD9IXDpYdSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
Manifest number: 117D
Signing time: Mon 20 May 2024 09:00:21 +0000
Manifest this update: Mon 20 May 2024 09:00:21 +0000
Manifest next update: Tue 21 May 2024 09:00:21 +0000
Files and hashes: 1: 8TqGI3ML_nY32IdG6_Ipq1Qhmyo.roa (hash: XSpfKNYRopCHs+MvWES0J/9LZmssoZ+76mIbLhSOMgg=)
2: tE-FORdNAL-ov95JBD9IXDpYdSU.crl (hash: YbrTBR02eK1NvoBawhwTsChbdD7jVSbyxywwzILJgUQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tE-FORdNAL-ov95JBD9IXDpYdSU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:95:3a:fa:72:d5:77:6e:6c:86:e5:81:1d:5a:74:95:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b44f8539174d00bfa8bfde49043f485c3a587525
Validity
Not Before: May 20 09:00:21 2024 GMT
Not After : May 21 09:00:21 2024 GMT
Subject: CN=9702c2ef01238dc26b830eb5bca1e197b4cbd8d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:10:20:85:0e:db:5c:fa:04:29:39:a5:a3:b0:
20:44:20:70:3f:22:d3:d3:ea:5d:16:1f:27:44:f3:
a7:fb:0c:8f:0c:f7:32:5c:b9:e5:5a:71:3d:7a:ce:
af:02:1a:6a:3d:29:ae:91:5b:86:e0:f0:aa:90:1a:
eb:fb:66:9e:42:55:44:0a:ad:90:1e:29:36:e1:a7:
c1:b6:0d:17:70:9e:9d:c6:8a:f7:03:95:e8:53:ef:
67:2d:38:eb:3a:4c:40:20:6f:c5:25:06:e5:9b:1e:
f6:d1:b2:6d:5a:8c:7b:7a:8e:94:04:89:3e:1b:2f:
aa:ff:3a:35:9b:e4:f5:e7:90:1e:55:89:8c:18:d0:
90:1c:51:3c:ff:37:57:1e:3a:1c:f7:cf:93:f8:67:
28:ce:06:89:0c:6e:87:02:34:d0:b6:d6:c5:24:98:
cf:51:6f:44:19:50:c0:e1:06:26:47:b6:08:87:ed:
b2:3e:24:25:eb:a6:b2:28:9d:31:1e:98:51:bb:d6:
a7:8b:2b:19:d1:34:a9:0d:9d:47:10:06:9b:9f:91:
16:51:52:4e:7d:de:09:65:51:2a:4c:53:ef:10:47:
90:e5:6b:73:e4:58:9d:a1:04:d4:0c:b2:0c:a9:d5:
91:d4:ed:b1:4b:ce:c8:0d:da:63:13:27:c5:23:d8:
fd:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:02:C2:EF:01:23:8D:C2:6B:83:0E:B5:BC:A1:E1:97:B4:CB:D8:D8
X509v3 Authority Key Identifier:
keyid:B4:4F:85:39:17:4D:00:BF:A8:BF:DE:49:04:3F:48:5C:3A:58:75:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tE-FORdNAL-ov95JBD9IXDpYdSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:8e:ac:16:ae:4e:0c:f7:d1:6b:e2:a9:68:b4:9b:86:c4:27:
7c:80:39:89:bc:cf:ad:09:00:58:a9:ba:be:bb:e9:af:7a:fe:
86:43:56:fc:de:ec:e1:ec:9f:f5:99:15:e0:21:ab:e8:2a:1e:
fa:5e:f5:42:94:5b:45:de:f3:f0:22:50:ca:26:33:a9:f3:2e:
7d:55:45:b2:11:78:a4:ce:fb:26:47:74:b8:89:c4:c7:8f:f4:
b4:f1:7a:9b:29:1f:2a:9a:97:78:a7:b0:bb:4b:55:16:fd:cd:
db:dd:6e:c2:6e:6f:b8:9f:a7:ad:66:ec:30:47:90:5c:af:e6:
2a:76:65:58:4f:02:f4:dc:f8:b8:84:15:cd:c8:f7:db:be:f8:
62:51:7d:36:23:2e:cb:76:be:b9:2a:ff:14:6a:c1:77:15:17:
dd:38:60:79:a1:9c:a0:aa:c4:60:03:eb:9a:19:60:00:3d:ae:
aa:b6:8c:c2:14:77:4f:9a:96:92:4c:48:90:7c:14:4b:b6:36:
f4:1d:98:0b:c0:4d:bb:f6:e2:67:60:15:51:d5:3d:5e:a3:af:
09:14:a9:a9:3c:e5:73:ff:52:e3:a2:19:94:c1:53:90:92:9a:
a4:ba:a8:0e:73:d5:8d:9b:80:09:19:39:aa:13:5e:d8:7e:c6:
6c:b1:9f:43
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+VOvpy1XdubIblgR1adJXLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0NGY4NTM5MTc0ZDAwYmZhOGJmZGU0OTA0M2Y0ODVjM2E1
ODc1MjUwHhcNMjQwNTIwMDkwMDIxWhcNMjQwNTIxMDkwMDIxWjAzMTEwLwYDVQQD
Eyg5NzAyYzJlZjAxMjM4ZGMyNmI4MzBlYjViY2ExZTE5N2I0Y2JkOGQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5BAghQ7bXPoEKTmlo7AgRCBwPyLT
0+pdFh8nRPOn+wyPDPcyXLnlWnE9es6vAhpqPSmukVuG4PCqkBrr+2aeQlVECq2Q
Hik24afBtg0XcJ6dxor3A5XoU+9nLTjrOkxAIG/FJQblmx720bJtWox7eo6UBIk+
Gy+q/zo1m+T155AeVYmMGNCQHFE8/zdXHjoc98+T+GcozgaJDG6HAjTQttbFJJjP
UW9EGVDA4QYmR7YIh+2yPiQl66ayKJ0xHphRu9aniysZ0TSpDZ1HEAabn5EWUVJO
fd4JZVEqTFPvEEeQ5Wtz5FidoQTUDLIMqdWR1O2xS87IDdpjEyfFI9j9lwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJcCwu8BI43Ca4MOtbyh4Ze0y9jYMB8GA1UdIwQY
MBaAFLRPhTkXTQC/qL/eSQQ/SFw6WHUlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEUtRk9SZE5BTC1vdjk1SkJEOUlYRHBZZFNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9mNzU1OTYtNzc5MC00MzJjLTg4Y2Qt
MzMzZTUzY2ZhMDIxLzEvdEUtRk9SZE5BTC1vdjk1SkJEOUlYRHBZZFNVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS9mNzU1OTYtNzc5MC00MzJjLTg4Y2QtMzMzZTUzY2ZhMDIx
LzEvdEUtRk9SZE5BTC1vdjk1SkJEOUlYRHBZZFNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXY6sFq5O
DPfRa+KpaLSbhsQnfIA5ibzPrQkAWKm6vrvpr3r+hkNW/N7s4eyf9ZkV4CGr6Coe
+l71QpRbRd7z8CJQyiYzqfMufVVFshF4pM77Jkd0uInEx4/0tPF6mykfKpqXeKew
u0tVFv3N291uwm5vuJ+nrWbsMEeQXK/mKnZlWE8C9Nz4uIQVzcj32774YlF9NiMu
y3a+uSr/FGrBdxUX3ThgeaGcoKrEYAPrmhlgAD2uqraMwhR3T5qWkkxIkHwUS7Y2
9B2YC8BNu/biZ2AVUdU9XqOvCRSpqTzlc/9S46IZlMFTkJKapLqoDnPVjZuACRk5
qhNe2H7GbLGfQw==
-----END CERTIFICATE-----
Generated at Mon May 20 10:59:27 2024 by rpki-client on console-ams.rpki-client.org