Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
File: r3gchFM5kA9-ayAz5jiItTrleHU.mft (raw, json)
Hash identifier: xgnb1kECfrbOxKa5faLAQ7zT6NJevbWRY0ZV1scNEGk=
Subject key identifier: BA:5D:1C:1D:AD:8C:A3:A0:A7:09:03:D9:A0:8E:CB:99:E7:09:5C:50
Authority key identifier: AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
Certificate issuer: /CN=af781c845339900f7e6b2033e63888b53ae57875
Certificate serial: 01901DEC2A8DD437725451AB43B1F3E21079
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
Manifest number: 11C6
Signing time: Sat 15 Jun 2024 22:02:14 +0000
Manifest this update: Sat 15 Jun 2024 22:02:14 +0000
Manifest next update: Sun 16 Jun 2024 22:02:14 +0000
Files and hashes: 1: fCxLHopZzZjW8U_6tyizym_GkN8.roa (hash: U9HX8zKGogWWbw7N0D5ShMBsj3CFYoN129iA6RoU0ms=)
2: r3gchFM5kA9-ayAz5jiItTrleHU.crl (hash: ONWgGqI/QG5lq/BH3P15ccmz8mu27+LePdr7pUQ8ddY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 14:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1d:ec:2a:8d:d4:37:72:54:51:ab:43:b1:f3:e2:10:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af781c845339900f7e6b2033e63888b53ae57875
Validity
Not Before: Jun 15 22:02:14 2024 GMT
Not After : Jun 16 22:02:14 2024 GMT
Subject: CN=ba5d1c1dad8ca3a0a70903d9a08ecb99e7095c50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:00:bf:7e:9f:42:44:6f:58:f1:5a:aa:dc:f0:
cd:c3:f0:78:0f:e5:e3:a5:9e:19:4f:1c:d5:27:21:
38:e4:4c:2c:f2:ce:71:b0:70:ec:cb:b2:5e:54:4e:
e1:e4:af:05:66:4b:77:cc:87:83:21:b4:36:74:c3:
0d:82:85:c5:12:df:0b:f0:06:e7:b6:98:42:d2:7e:
fd:5d:95:c0:6a:22:62:7b:ca:63:54:48:ca:35:9e:
a8:ba:a9:7b:b8:48:16:da:ec:5e:24:3c:b6:25:0b:
f4:f4:05:6d:c3:07:47:a0:a3:f0:48:4b:1c:55:84:
3a:5c:65:4e:b2:33:4b:95:20:49:ae:13:70:dd:24:
06:f7:64:3d:c4:9f:c2:91:b3:c9:26:5a:3a:76:99:
71:c9:94:2d:8e:89:99:d7:86:e5:82:35:33:e9:33:
ac:17:b7:51:46:78:c5:a1:f3:42:2e:7c:9b:da:ec:
88:41:c3:45:5f:a4:79:d6:9d:62:ba:a4:32:c4:b6:
41:c7:ae:6e:4a:f2:70:40:81:5e:03:6e:3c:54:4b:
f6:19:e0:ef:9c:fc:18:13:f0:ea:9e:40:ad:20:ea:
76:5f:b7:4d:bd:f9:07:fa:06:8e:46:55:c6:de:33:
6b:51:11:f3:45:03:b3:51:9b:a3:75:dc:c1:6c:c3:
d5:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:5D:1C:1D:AD:8C:A3:A0:A7:09:03:D9:A0:8E:CB:99:E7:09:5C:50
X509v3 Authority Key Identifier:
keyid:AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:5c:91:18:6f:ba:f4:3f:3d:fe:ff:08:b8:54:36:59:15:f1:
22:ac:15:ba:69:6f:bc:c7:03:48:cb:78:0b:18:a3:b1:f4:b1:
5e:bf:5a:99:10:ec:fc:32:9d:f3:29:e2:29:ae:8a:6c:bd:70:
85:46:c4:89:e6:3a:0b:38:35:0a:9c:0a:77:64:da:60:74:f1:
51:6e:04:92:0a:11:0f:9b:ca:b0:6a:4f:52:bb:72:52:8a:4d:
2b:7f:04:54:e5:b3:a4:bf:02:04:e2:16:ed:bc:ae:06:81:83:
c0:ea:25:70:5c:6a:9d:5a:7a:c2:97:50:d4:8a:b9:36:32:8d:
ba:a1:a8:ae:b8:3f:da:53:b2:9e:b7:a6:e1:5a:90:a8:c6:60:
80:26:7a:a6:a2:c9:aa:88:16:f6:42:c5:22:91:54:ba:9d:96:
1c:df:99:0d:47:36:98:5e:61:8b:72:e2:36:28:11:90:9e:d5:
76:8e:c6:84:2d:31:f1:6e:2d:80:0b:2b:50:4c:80:1c:79:08:
cd:27:20:fe:23:d9:97:e8:b9:3d:4a:be:e8:ae:69:cd:87:fb:
ca:91:aa:63:d8:40:83:53:20:3f:88:77:38:7f:af:af:43:97:
fc:fb:5f:ef:bb:6e:07:2a:ea:63:bc:04:ca:b3:40:cc:eb:45:
5f:99:4f:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 23:37:38 2024 by rpki-client on console-ams.rpki-client.org