Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
File: pal1I5_dRDt9PYLjkqnkrjkhjvY.mft (raw, json)
Hash identifier: r+N3IbliNAAhOWOAvOabZn434aCtjL8W+PbU0Ihxspk=
Subject key identifier: 86:E5:54:EA:04:79:C0:3B:F8:C8:8B:45:8D:C5:C9:71:F4:38:AE:22
Authority key identifier: A5:A9:75:23:9F:DD:44:3B:7D:3D:82:E3:92:A9:E4:AE:39:21:8E:F6
Certificate issuer: /CN=a5a975239fdd443b7d3d82e392a9e4ae39218ef6
Certificate serial: 018FB5A4CB6F7AC122833627644C9A68BA0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
Manifest number: 04ED
Signing time: Sun 26 May 2024 16:03:46 +0000
Manifest this update: Sun 26 May 2024 16:03:46 +0000
Manifest next update: Mon 27 May 2024 16:03:46 +0000
Files and hashes: 1: hAc7ak5kWsKT6JxTG3hpojUMtWE.roa (hash: WaA12oUNzh3ugWP/6qxVSFwuC/6IlOZZcUnme1rBMGU=)
2: pal1I5_dRDt9PYLjkqnkrjkhjvY.crl (hash: ZU00ySehJyJOo5LVrPOBYyqjyZzbD4dZmqi1aCAJtDs=)
3: zglQdQdERZsjXYbJD_uh2jlLSbY.roa (hash: PXOe/KaBadbYY2e7Ta7WlTKgdALk40sgFLPFSDD5rAQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 May 2024 16:03:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b5:a4:cb:6f:7a:c1:22:83:36:27:64:4c:9a:68:ba:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a975239fdd443b7d3d82e392a9e4ae39218ef6
Validity
Not Before: May 26 16:03:46 2024 GMT
Not After : May 27 16:03:46 2024 GMT
Subject: CN=86e554ea0479c03bf8c88b458dc5c971f438ae22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:79:d3:61:f2:94:1c:15:f8:3c:cb:5a:40:0a:
49:57:dd:c9:de:e8:7f:71:0d:ea:17:2d:57:2b:a4:
36:b9:be:39:44:af:74:65:4f:b6:69:51:56:5f:53:
40:12:b6:56:a7:d2:4f:c4:81:da:eb:94:4f:82:71:
cb:bf:b7:ee:f2:67:6c:68:d3:e3:1a:58:8c:74:7a:
af:83:78:67:67:32:27:02:1c:46:0c:7c:7c:8f:5b:
e8:ef:c3:eb:5b:da:4a:8c:2d:3d:9b:88:8e:9f:33:
51:e0:0c:bb:03:02:3e:92:69:34:21:a1:9c:d5:7c:
41:de:33:eb:b8:16:37:2c:c8:39:24:4a:f0:15:e1:
92:22:9a:d6:a7:81:f7:bc:1b:8e:92:f1:4b:28:9f:
5e:33:e9:fb:f3:c2:03:ae:7b:9f:f8:dd:69:1b:63:
75:7b:67:76:e0:4d:0f:91:b6:e3:08:e1:a1:b3:85:
01:62:92:74:0e:72:85:72:0a:fa:d5:a7:51:bd:8f:
fb:bd:3e:b8:64:0a:e0:04:83:57:93:62:e2:ed:82:
99:dc:1f:d9:b6:73:bb:3f:23:a2:2a:53:24:09:85:
76:6b:0b:6c:e7:21:7a:4a:9d:41:0f:c7:79:37:d1:
e0:3f:7c:1d:50:2b:3b:66:b0:30:11:b5:ad:a6:fd:
76:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:E5:54:EA:04:79:C0:3B:F8:C8:8B:45:8D:C5:C9:71:F4:38:AE:22
X509v3 Authority Key Identifier:
keyid:A5:A9:75:23:9F:DD:44:3B:7D:3D:82:E3:92:A9:E4:AE:39:21:8E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:f0:fe:78:a2:3b:9c:db:17:b6:72:5a:5c:73:66:b2:1e:fb:
3e:2f:21:60:bc:cd:ad:80:b4:9b:cb:0d:13:c8:d0:b0:7a:f2:
6b:8f:8d:e8:89:e7:18:f9:a4:7e:82:c5:4b:a5:b9:a4:b1:24:
08:2b:9f:8a:bc:93:c7:f5:27:2c:61:37:1e:eb:fd:a9:62:74:
7a:95:72:ee:93:31:32:9e:2f:e6:11:ae:3a:07:e0:ef:c5:dd:
f9:59:db:64:2d:48:c1:fc:e5:da:83:49:a6:f9:b5:f7:ad:5e:
97:13:1d:a0:a2:d5:99:1c:d3:89:52:e6:4a:50:3a:50:3f:22:
a0:55:ba:76:12:9d:cb:d1:0d:34:cb:f8:44:02:d6:04:c3:97:
f3:e2:55:b1:54:b6:f3:f3:ac:2a:2c:eb:8b:f8:16:42:f6:bb:
80:67:37:4b:3d:da:10:d7:77:06:8b:a4:df:f0:87:88:dc:1b:
8a:b5:c9:ea:19:05:b9:2a:da:73:ec:f8:5e:de:29:61:c0:3d:
dd:6f:20:0b:cb:57:0b:d5:f8:be:cf:ff:e3:17:c2:78:ea:03:
0f:ba:80:85:e3:48:ba:48:a7:19:3c:eb:8b:e4:45:d7:f2:72:
41:20:40:c7:44:6e:91:40:4c:f1:76:51:26:86:21:7c:99:a2:
ea:a0:1c:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 20:02:09 2024 by rpki-client on console-ams.rpki-client.org