Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/dIZPUCPsYmPvnxb5AYf18oBh0RU.mft
File: dIZPUCPsYmPvnxb5AYf18oBh0RU.mft (raw, json)
Hash identifier: Uv1C3+kCdeSlTH2L/QJQmpGyNFuQ4xjQYvDKyIxe8mg=
Subject key identifier: 64:BB:8B:BE:9F:20:F4:2A:25:F3:06:4F:FD:14:17:1F:CC:3D:85:DB
Authority key identifier: 74:86:4F:50:23:EC:62:63:EF:9F:16:F9:01:87:F5:F2:80:61:D1:15
Certificate issuer: /CN=74864f5023ec6263ef9f16f90187f5f28061d115
Certificate serial: 01901A0E69EC3EA11056C82E39CC750B3082
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dIZPUCPsYmPvnxb5AYf18oBh0RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/dIZPUCPsYmPvnxb5AYf18oBh0RU.mft
Manifest number: 07B1
Signing time: Sat 15 Jun 2024 04:01:10 +0000
Manifest this update: Sat 15 Jun 2024 04:01:10 +0000
Manifest next update: Sun 16 Jun 2024 04:01:10 +0000
Files and hashes: 1: Ik52051-0l_GH_yW5GcmWIyqBYg.roa (hash: 3O7uT2oVdMHU2ylpY3T9Ldxr5vlJz1JCehYubE8zFxo=)
2: dIZPUCPsYmPvnxb5AYf18oBh0RU.crl (hash: mFke3ojeIEoO1s2+kN7zyEf8czLuuxU59gw2GaC+ez4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/dIZPUCPsYmPvnxb5AYf18oBh0RU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/dIZPUCPsYmPvnxb5AYf18oBh0RU.mft
rsync://rpki.ripe.net/repository/DEFAULT/dIZPUCPsYmPvnxb5AYf18oBh0RU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 04:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1a:0e:69:ec:3e:a1:10:56:c8:2e:39:cc:75:0b:30:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74864f5023ec6263ef9f16f90187f5f28061d115
Validity
Not Before: Jun 15 04:01:10 2024 GMT
Not After : Jun 16 04:01:10 2024 GMT
Subject: CN=64bb8bbe9f20f42a25f3064ffd14171fcc3d85db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:0d:cb:d1:e9:a1:53:d2:dd:90:85:4a:aa:a2:
51:ac:02:e9:42:db:df:ab:fd:35:be:1e:24:c6:f6:
33:9d:21:11:3c:43:15:60:5b:ea:28:bb:0d:c8:af:
13:a3:b0:37:aa:44:fa:12:43:58:6a:f0:d8:ad:19:
88:1d:66:eb:e7:17:0d:74:25:ee:2a:cc:e6:dc:b5:
58:ff:69:6f:0b:9b:40:37:30:1a:fa:6f:dd:32:40:
b3:c8:9b:42:a9:ba:22:d6:81:44:f3:58:53:40:0f:
12:a7:43:d0:ba:97:0b:d5:de:3e:33:5d:93:0c:de:
62:ba:02:34:3c:cc:7c:64:b7:c5:d2:11:36:5a:57:
16:18:6c:7e:8c:56:a2:30:ea:69:22:80:6d:82:31:
3e:12:73:78:20:69:8e:8c:d3:f3:56:40:31:11:1f:
2a:48:5c:46:a3:59:85:51:6c:80:8b:0c:1e:ec:1b:
0c:20:95:af:f8:e6:c9:d1:9a:81:ac:29:45:55:ee:
f7:5b:8e:25:09:12:73:36:01:f3:c4:7d:d1:27:d3:
d3:92:fa:19:e7:9e:cd:bc:bb:65:2b:7e:6d:a3:b6:
05:b5:00:ce:76:b7:e5:a1:cf:8f:99:2d:55:fd:95:
fd:0a:e5:32:37:09:1d:7a:74:0b:76:44:b4:3c:bc:
d2:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:BB:8B:BE:9F:20:F4:2A:25:F3:06:4F:FD:14:17:1F:CC:3D:85:DB
X509v3 Authority Key Identifier:
keyid:74:86:4F:50:23:EC:62:63:EF:9F:16:F9:01:87:F5:F2:80:61:D1:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dIZPUCPsYmPvnxb5AYf18oBh0RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/dIZPUCPsYmPvnxb5AYf18oBh0RU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/dIZPUCPsYmPvnxb5AYf18oBh0RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:8c:ef:91:a3:03:17:bd:6e:20:32:c3:06:97:d7:50:e0:4e:
63:14:51:7e:2b:66:cf:82:41:e3:ac:ef:f2:ad:ca:39:2c:af:
47:1f:25:e5:e2:ce:29:3d:f7:5e:9d:36:50:82:c7:64:53:7d:
3f:1d:b1:75:cc:2b:bc:2c:27:84:dc:f9:3a:57:b8:0e:9b:27:
b7:3b:b5:67:b7:48:1c:9d:0b:da:6a:c3:4f:ad:74:2b:18:ad:
3d:a8:c6:a0:62:b3:4d:de:de:90:80:9f:44:54:1c:16:79:e2:
bf:6e:2f:f5:91:9b:70:f6:51:b9:47:66:b0:cf:90:12:29:84:
d1:39:0b:24:28:2c:6e:c7:3e:ee:3a:ca:05:c6:2a:21:64:5e:
9b:85:0f:2b:0b:01:13:69:6e:dd:b5:f4:4b:ab:db:c0:4a:8c:
7e:9d:f3:7b:0c:26:15:9b:0a:e7:1c:a2:61:ac:b7:ff:fb:78:
c4:2a:91:bc:6a:7e:b6:b5:49:c1:99:09:0b:f8:c4:6b:94:12:
dd:65:69:47:eb:f8:07:2c:a7:ef:35:e3:a1:1d:ea:b0:6a:e1:
bd:e8:b4:c1:d1:62:f8:a5:46:15:dc:4a:fc:c3:1f:aa:1a:75:
cf:74:f4:75:a7:22:6f:68:6d:c8:67:f2:22:0e:07:13:06:12:
15:0c:29:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 13:44:06 2024 by rpki-client on console-ams.rpki-client.org