Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
File: d0HROhWph91gAZwCZdLs7EhAlEo.mft (raw, json)
Hash identifier: qzd2WDaceDRALFMV1FwuKL4H70b3fR6Fxf7LmznSiO0=
Subject key identifier: 63:C0:8D:F6:9D:65:72:5C:FA:4E:8C:31:29:FE:73:AC:99:52:81:27
Authority key identifier: 77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
Certificate issuer: /CN=7741d13a15a987dd60019c0265d2ecec4840944a
Certificate serial: 018F8E5D36EEBCAC292CBA6840D58383426D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
Manifest number: 028B
Signing time: Sun 19 May 2024 01:00:24 +0000
Manifest this update: Sun 19 May 2024 01:00:24 +0000
Manifest next update: Mon 20 May 2024 01:00:24 +0000
Files and hashes: 1: NPsrua8WabVeIKadxXLl_tBOaAw.roa (hash: dZty7PU56/v9+ngGlSOcFjwbt08JE1IPkHQqWqjdElQ=)
2: d0HROhWph91gAZwCZdLs7EhAlEo.crl (hash: qWVz+RwBRs2d11wGSHdYwPhEDR9LhPBE6aKX9Y/fg0k=)
3: mczUJyN4FZ-VsRzPpQEzABT-B_o.roa (hash: r6n6SAcnfW+wsFs79szMDVlvn9RhLcf/meMRER+Dj2Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 20:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:8e:5d:36:ee:bc:ac:29:2c:ba:68:40:d5:83:83:42:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7741d13a15a987dd60019c0265d2ecec4840944a
Validity
Not Before: May 19 01:00:24 2024 GMT
Not After : May 20 01:00:24 2024 GMT
Subject: CN=63c08df69d65725cfa4e8c3129fe73ac99528127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:75:4f:a1:5f:c7:1e:b4:57:81:f6:3b:55:46:
ac:14:54:c4:54:e7:d8:c5:da:c4:a5:81:2f:69:45:
2b:c9:d1:91:e8:5c:22:6b:a7:75:62:8f:cf:76:1c:
a6:e1:0f:f2:c7:a6:62:a2:a7:de:26:04:64:c0:88:
d8:11:f6:75:47:3f:e2:42:21:07:c7:85:6f:0a:85:
86:b1:4d:d0:82:38:cf:4f:c1:af:bc:25:99:f8:db:
84:1d:97:d2:87:8d:fb:e6:52:38:84:90:af:d0:f4:
08:e4:06:ff:6c:62:63:06:c5:2b:b6:42:5e:ca:f8:
f5:82:f0:65:57:77:16:b2:7c:02:59:50:87:ab:a2:
99:9f:3a:6f:9f:58:d0:15:ac:18:e1:a8:67:37:00:
ca:31:1c:0e:80:91:c9:0d:52:88:2e:92:8e:8d:88:
46:5c:f7:4a:bc:16:1e:82:7f:08:1d:cb:76:3f:bc:
57:d0:c9:82:21:e6:be:dd:d3:b4:ef:e7:9f:cb:20:
bf:ee:07:cd:bf:ed:fa:eb:d7:e2:c0:01:f5:b4:88:
14:04:5c:2c:2b:f8:61:ec:32:62:28:05:e6:61:5a:
65:e8:7c:4c:8f:0f:df:16:80:c2:ec:45:32:47:c6:
06:5d:90:a3:3f:8f:b5:8a:78:c8:e9:fa:95:83:5d:
09:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:C0:8D:F6:9D:65:72:5C:FA:4E:8C:31:29:FE:73:AC:99:52:81:27
X509v3 Authority Key Identifier:
keyid:77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:66:07:93:0e:91:56:01:df:f1:22:1f:22:8e:0f:a1:40:29:
24:d4:d1:2d:7c:17:2e:5f:9a:4a:cc:2e:a9:5b:34:3c:69:b1:
a2:f5:d3:87:1d:aa:e7:5a:38:80:a2:60:37:72:15:93:c9:17:
47:f6:53:18:9a:f1:3f:ae:c0:b6:42:1a:94:a2:12:16:87:ca:
5c:8e:2b:24:a9:39:3d:93:ab:27:ee:f0:67:a2:59:47:d7:1d:
9e:67:38:39:5e:de:43:6c:23:80:5e:82:56:57:18:af:82:60:
68:7b:4e:ee:3b:80:21:2a:93:22:be:b5:c1:cd:8f:7c:4e:29:
bf:89:f1:cf:58:1a:91:cd:c1:82:22:f4:2e:bb:51:4b:1e:03:
8a:93:36:7d:a5:2f:62:59:bd:28:29:b1:8d:6e:5e:81:52:62:
a5:6a:ef:f2:84:9b:61:c8:94:53:81:77:49:47:9c:fc:02:e7:
7e:2e:6a:96:6e:00:91:48:d8:26:7a:0c:ef:36:95:29:7c:be:
e4:20:df:62:98:cf:c0:4e:2c:dd:a8:fa:5e:09:e9:9e:4c:4f:
22:e3:9a:4a:e8:92:f0:a1:cb:eb:23:1c:be:3d:52:94:75:cd:
c7:e1:0d:bd:6d:9e:4e:a3:ba:87:96:9f:f4:eb:0f:61:15:12:
fc:fa:d8:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 02:00:26 2024 by rpki-client on console-fra.rpki-client.org