Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.mft
File: U4sGLLVCbwDmU3Pu9OTNihwn9o4.mft (raw, json)
Hash identifier: 9Lh6z9oP/J4kKoWreLZBwBlLVE4fmRykWbosgtkf4Zs=
Subject key identifier: 64:71:1F:02:9B:5D:F1:AB:CB:22:C2:EC:05:D6:00:5C:D6:5A:DA:F2
Authority key identifier: 53:8B:06:2C:B5:42:6F:00:E6:53:73:EE:F4:E4:CD:8A:1C:27:F6:8E
Certificate issuer: /CN=538b062cb5426f00e65373eef4e4cd8a1c27f68e
Certificate serial: 019074D3603E5DF865F2A8BE3698AC209EA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U4sGLLVCbwDmU3Pu9OTNihwn9o4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.mft
Manifest number: 11F0
Signing time: Tue 02 Jul 2024 19:02:08 +0000
Manifest this update: Tue 02 Jul 2024 19:02:08 +0000
Manifest next update: Wed 03 Jul 2024 19:02:08 +0000
Files and hashes: 1: U4sGLLVCbwDmU3Pu9OTNihwn9o4.crl (hash: dhv0r6DUycWYxhYmwA7PtyNSt8hwGXn6HRW9j4qdtjs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.mft
rsync://rpki.ripe.net/repository/DEFAULT/U4sGLLVCbwDmU3Pu9OTNihwn9o4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jul 2024 14:20:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:74:d3:60:3e:5d:f8:65:f2:a8:be:36:98:ac:20:9e:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=538b062cb5426f00e65373eef4e4cd8a1c27f68e
Validity
Not Before: Jul 2 19:02:08 2024 GMT
Not After : Jul 3 19:02:08 2024 GMT
Subject: CN=64711f029b5df1abcb22c2ec05d6005cd65adaf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:e2:16:c9:32:0f:fa:6d:cc:b2:da:71:e4:fa:
59:4b:2e:e0:57:6b:ba:4b:38:db:8b:c9:b0:86:18:
a2:59:38:8e:0d:0f:a4:b5:6a:81:41:85:67:5b:a1:
2e:4c:db:81:7d:4c:0a:e4:ac:0b:3f:68:6b:ac:19:
77:5a:44:77:d6:fe:24:d7:9e:2b:22:cf:14:a8:03:
1d:54:ea:e9:7a:5d:ad:a6:c6:77:ef:32:7a:ce:cb:
ce:1c:01:1b:03:cb:49:98:fe:f4:2a:fb:77:58:af:
30:21:93:5c:cc:db:bc:de:e9:22:0e:47:fc:ed:ae:
7b:ef:8c:55:11:a8:79:7e:44:1e:68:c3:ae:ac:5b:
df:70:c9:7f:2d:a1:df:40:14:db:e1:1d:24:7d:b9:
22:29:e5:9f:07:a9:3b:e8:b6:7d:db:16:4f:e5:34:
f7:1d:45:93:da:1e:63:6e:47:ca:40:d2:9e:31:61:
75:1b:d5:65:f0:f4:5c:eb:34:6e:10:d6:06:59:51:
46:3c:a2:0f:05:b9:89:46:b6:46:7d:f1:59:3b:26:
15:2f:d3:93:55:96:8b:dc:7f:c9:b0:83:26:1d:7b:
1e:24:5d:d1:9d:06:d2:0d:c1:12:d2:8f:5f:9c:a4:
43:be:21:20:92:d6:06:ca:67:f0:0a:a1:52:2e:4c:
4d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:71:1F:02:9B:5D:F1:AB:CB:22:C2:EC:05:D6:00:5C:D6:5A:DA:F2
X509v3 Authority Key Identifier:
keyid:53:8B:06:2C:B5:42:6F:00:E6:53:73:EE:F4:E4:CD:8A:1C:27:F6:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U4sGLLVCbwDmU3Pu9OTNihwn9o4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:c8:c5:00:e6:c0:ba:0c:5c:d5:3d:66:a5:b7:be:77:f4:45:
44:da:90:15:eb:96:de:53:d9:5a:a8:c8:ae:f8:ae:cc:c3:7a:
84:e2:98:52:e8:8e:ab:65:4c:2d:e7:c2:35:29:61:23:a8:1c:
2b:6a:43:8c:98:e3:23:59:04:81:60:b6:fa:aa:e1:2e:e8:b9:
58:d5:57:d8:e6:32:22:51:2f:24:fc:04:1a:fb:1d:08:a4:5f:
d0:4c:e1:fc:ad:94:d0:9d:ce:5f:d3:7e:e3:8e:dc:10:7b:2c:
d5:8b:21:d1:19:1e:87:52:d0:ba:a4:eb:5e:4c:29:57:f8:3a:
bb:0a:38:e9:07:9c:a6:2c:b8:6c:fb:83:16:16:7b:96:38:41:
53:b3:64:4e:fb:96:bd:ee:6c:96:83:47:1c:6b:71:42:c6:cd:
6b:14:66:43:65:78:87:0a:18:ac:05:39:16:8a:3d:a1:c6:f1:
5f:6d:00:74:62:00:f7:2a:b7:d7:06:29:c6:f2:6c:75:c4:15:
a5:a4:b2:18:b9:9a:5d:b4:0b:fe:d0:fb:39:40:1e:44:33:ce:
ad:f1:92:a4:08:2d:25:6d:67:2f:01:fa:16:16:3c:37:d8:67:
db:59:66:a5:af:13:df:44:31:ad:46:29:6b:7b:49:70:df:56:
29:3a:88:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZB002A+Xfhl8qi+NpisIJ6hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzOGIwNjJjYjU0MjZmMDBlNjUzNzNlZWY0ZTRjZDhhMWMy
N2Y2OGUwHhcNMjQwNzAyMTkwMjA4WhcNMjQwNzAzMTkwMjA4WjAzMTEwLwYDVQQD
Eyg2NDcxMWYwMjliNWRmMWFiY2IyMmMyZWMwNWQ2MDA1Y2Q2NWFkYWYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6OIWyTIP+m3Mstpx5PpZSy7gV2u6
Szjbi8mwhhiiWTiODQ+ktWqBQYVnW6EuTNuBfUwK5KwLP2hrrBl3WkR31v4k154r
Is8UqAMdVOrpel2tpsZ37zJ6zsvOHAEbA8tJmP70Kvt3WK8wIZNczNu83ukiDkf8
7a5774xVEah5fkQeaMOurFvfcMl/LaHfQBTb4R0kfbkiKeWfB6k76LZ92xZP5TT3
HUWT2h5jbkfKQNKeMWF1G9Vl8PRc6zRuENYGWVFGPKIPBbmJRrZGffFZOyYVL9OT
VZaL3H/JsIMmHXseJF3RnQbSDcES0o9fnKRDviEgktYGymfwCqFSLkxNpQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGRxHwKbXfGryyLC7AXWAFzWWtryMB8GA1UdIwQY
MBaAFFOLBiy1Qm8A5lNz7vTkzYocJ/aOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTRzR0xMVkNid0RtVTNQdTlPVE5paHduOW80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi8xZDQ1N2ItNDBiZC00NDhmLWE5MTUt
MjBjOGFiOTI2OTZmLzEvVTRzR0xMVkNid0RtVTNQdTlPVE5paHduOW80Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi8xZDQ1N2ItNDBiZC00NDhmLWE5MTUtMjBjOGFiOTI2OTZm
LzEvVTRzR0xMVkNid0RtVTNQdTlPVE5paHduOW80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAcjFAObA
ugxc1T1mpbe+d/RFRNqQFeuW3lPZWqjIrviuzMN6hOKYUuiOq2VMLefCNSlhI6gc
K2pDjJjjI1kEgWC2+qrhLui5WNVX2OYyIlEvJPwEGvsdCKRf0Ezh/K2U0J3OX9N+
447cEHss1Ysh0Rkeh1LQuqTrXkwpV/g6uwo46Qecpiy4bPuDFhZ7ljhBU7NkTvuW
ve5sloNHHGtxQsbNaxRmQ2V4hwoYrAU5Foo9ocbxX20AdGIA9yq31wYpxvJsdcQV
paSyGLmaXbQL/tD7OUAeRDPOrfGSpAgtJW1nLwH6FhY8N9hn21lmpa8T30QxrUYp
a3tJcN9WKTqItA==
-----END CERTIFICATE-----
Generated at Tue Jul 2 21:46:39 2024 by rpki-client on console-ams.rpki-client.org