Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
File: ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft (raw, json)
Hash identifier: ZdhZ0xRcj+bwJ4imujus3Nhnf6YLqvrPcAAYRTkLr7c=
Subject key identifier: 33:BC:C6:68:B9:7F:EB:B8:AF:C5:A6:5E:16:12:AB:07:E2:40:86:25
Authority key identifier: 64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
Certificate issuer: /CN=64a7a6cd583814d393bee2635b545574cc75620c
Certificate serial: 018F889261EE0C79FFFAC411016B705A6305
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
Manifest number: 0DAA
Signing time: Fri 17 May 2024 22:00:45 +0000
Manifest this update: Fri 17 May 2024 22:00:45 +0000
Manifest next update: Sat 18 May 2024 22:00:45 +0000
Files and hashes: 1: ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl (hash: xMjTw39WwtxUY86X8zhGe9bN477rzUA0J0ghCfzXJAk=)
2: fLG_VRBzMQLTf34BRY3yyNPt-sk.roa (hash: ebFwX4IRV2dyazXg6KxQfH5MIHZ4PDpgNvM1ornAoc4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:92:61:ee:0c:79:ff:fa:c4:11:01:6b:70:5a:63:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a7a6cd583814d393bee2635b545574cc75620c
Validity
Not Before: May 17 22:00:45 2024 GMT
Not After : May 18 22:00:45 2024 GMT
Subject: CN=33bcc668b97febb8afc5a65e1612ab07e2408625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:7a:17:d1:a0:2b:fb:3a:b0:45:e1:53:46:17:
54:e8:74:38:f7:fb:fb:0b:b5:3a:e3:b5:27:f0:b3:
c1:e4:ac:bd:fe:a4:f8:ae:8d:cf:71:0e:51:aa:11:
2a:08:05:a6:e0:99:27:38:b5:53:a8:8a:a9:11:01:
b6:ab:6d:c9:53:10:c4:d5:f2:d9:36:5b:85:19:f0:
65:84:34:05:2f:f4:99:4c:df:dd:f4:d5:a6:1a:63:
7e:01:58:e6:2a:71:69:8a:b8:e9:ef:ed:a5:7a:52:
87:7d:1d:08:4d:57:b3:36:ec:9f:27:fc:fc:e6:9d:
af:d7:41:97:24:2b:03:75:54:7a:63:5c:3d:fb:56:
94:dd:eb:99:8f:ad:a7:ba:85:b2:a3:b3:80:c5:5f:
50:cd:5c:97:92:3d:2c:8f:2b:bf:8a:2f:83:b0:7c:
2a:1a:e2:c1:ca:7f:4a:77:36:a3:a4:68:04:40:bd:
70:18:bc:4d:dd:72:f0:83:c7:ff:e4:45:3c:8d:19:
ba:b4:bc:25:cd:17:14:1b:5e:27:3f:a4:72:f2:e6:
76:11:cc:68:ba:49:59:94:0a:11:1f:42:15:68:65:
be:d3:0f:4d:3a:6b:d7:64:c9:6e:45:04:8d:50:1e:
bd:8d:46:00:2d:b4:78:4d:83:6d:59:84:b1:00:f2:
8e:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:BC:C6:68:B9:7F:EB:B8:AF:C5:A6:5E:16:12:AB:07:E2:40:86:25
X509v3 Authority Key Identifier:
keyid:64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:52:e6:68:b8:2c:18:cd:c0:83:3f:40:4d:72:a5:2e:42:b5:
72:f3:7b:ee:2a:bc:a9:9b:10:a5:85:e8:bb:c0:53:9d:1b:af:
94:b5:15:8b:71:43:71:1d:d4:ef:60:34:bf:59:cc:51:9f:b2:
3c:ed:4d:d9:b6:0c:49:a3:60:d7:c7:07:32:fb:8e:ff:9e:1a:
89:71:9e:10:83:6d:71:dc:b6:0e:87:bc:7a:6b:c0:e5:28:4e:
58:8d:03:95:31:05:8c:00:b7:df:da:b8:73:07:84:bb:fc:cc:
2c:90:53:27:b9:16:4f:8d:cf:87:2d:29:44:3f:c8:0a:d8:98:
4f:f0:6a:03:0b:59:e5:92:96:c8:90:39:35:0b:31:39:e6:9a:
5e:2f:1c:97:69:22:d1:b2:e9:1a:f7:92:eb:02:2c:5f:be:33:
ba:10:10:c6:5e:35:42:a9:2a:8e:62:16:1c:ad:af:1c:82:79:
3b:52:98:41:14:6b:1a:49:4d:3b:62:b5:b7:fc:3b:f9:7a:b0:
35:b9:b5:7a:4e:32:27:c9:a4:34:16:97:4f:2f:b4:5f:b4:8e:
e2:cb:e2:ff:ba:97:4a:af:8d:93:83:b4:bd:52:68:34:59:f7:
f2:7c:76:03:81:cf:59:42:5b:6f:47:bc:fa:68:f0:6f:0f:09:
58:4b:b4:29
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+IkmHuDHn/+sQRAWtwWmMFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0YTdhNmNkNTgzODE0ZDM5M2JlZTI2MzViNTQ1NTc0Y2M3
NTYyMGMwHhcNMjQwNTE3MjIwMDQ1WhcNMjQwNTE4MjIwMDQ1WjAzMTEwLwYDVQQD
EygzM2JjYzY2OGI5N2ZlYmI4YWZjNWE2NWUxNjEyYWIwN2UyNDA4NjI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApnoX0aAr+zqwReFTRhdU6HQ49/v7
C7U647Un8LPB5Ky9/qT4ro3PcQ5RqhEqCAWm4JknOLVTqIqpEQG2q23JUxDE1fLZ
NluFGfBlhDQFL/SZTN/d9NWmGmN+AVjmKnFpirjp7+2lelKHfR0ITVezNuyfJ/z8
5p2v10GXJCsDdVR6Y1w9+1aU3euZj62nuoWyo7OAxV9QzVyXkj0sjyu/ii+DsHwq
GuLByn9KdzajpGgEQL1wGLxN3XLwg8f/5EU8jRm6tLwlzRcUG14nP6Ry8uZ2Ecxo
uklZlAoRH0IVaGW+0w9NOmvXZMluRQSNUB69jUYALbR4TYNtWYSxAPKOaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDO8xmi5f+u4r8WmXhYSqwfiQIYlMB8GA1UdIwQY
MBaAFGSnps1YOBTTk77iY1tUVXTMdWIMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWktlbXpWZzRGTk9UdnVKalcxUlZkTXgxWWd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi84ZDZmMWEtZDMzNC00MThmLWI3MjYt
NmY1ZDhhNzRhMGU0LzEvWktlbXpWZzRGTk9UdnVKalcxUlZkTXgxWWd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi84ZDZmMWEtZDMzNC00MThmLWI3MjYtNmY1ZDhhNzRhMGU0
LzEvWktlbXpWZzRGTk9UdnVKalcxUlZkTXgxWWd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtFLmaLgs
GM3Agz9ATXKlLkK1cvN77iq8qZsQpYXou8BTnRuvlLUVi3FDcR3U72A0v1nMUZ+y
PO1N2bYMSaNg18cHMvuO/54aiXGeEINtcdy2Doe8emvA5ShOWI0DlTEFjAC339q4
cweEu/zMLJBTJ7kWT43Phy0pRD/ICtiYT/BqAwtZ5ZKWyJA5NQsxOeaaXi8cl2ki
0bLpGveS6wIsX74zuhAQxl41QqkqjmIWHK2vHIJ5O1KYQRRrGklNO2K1t/w7+Xqw
Nbm1ek4yJ8mkNBaXTy+0X7SO4svi/7qXSq+Nk4O0vVJoNFn38nx2A4HPWUJbb0e8
+mjwbw8JWEu0KQ==
-----END CERTIFICATE-----
Generated at Fri May 17 22:59:16 2024 by rpki-client on console-fra.rpki-client.org