Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/f2cd5e-fd1c-4b47-aa65-5e861165884c/1/vJjaCfCkWkCPW38brm2R4zM9VzI.mft
File: vJjaCfCkWkCPW38brm2R4zM9VzI.mft (raw, json)
Hash identifier: 0fa7yi2T4Nsr3s9K8xUnNX363nE+SplBbyXHA4N/At0=
Subject key identifier: 39:97:C8:42:EF:49:52:90:81:6B:29:C9:68:57:EF:25:41:60:46:FE
Authority key identifier: BC:98:DA:09:F0:A4:5A:40:8F:5B:7F:1B:AE:6D:91:E3:33:3D:57:32
Certificate issuer: /CN=bc98da09f0a45a408f5b7f1bae6d91e3333d5732
Certificate serial: 018F855BBB1CE48C748D296A5DC13BD8A5CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vJjaCfCkWkCPW38brm2R4zM9VzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/f2cd5e-fd1c-4b47-aa65-5e861165884c/1/vJjaCfCkWkCPW38brm2R4zM9VzI.mft
Manifest number: 1175
Signing time: Fri 17 May 2024 07:02:12 +0000
Manifest this update: Fri 17 May 2024 07:02:12 +0000
Manifest next update: Sat 18 May 2024 07:02:12 +0000
Files and hashes: 1: mzwYJyswo8l1JsA6hfRfIoCBafA.roa (hash: Gfotfil+ck185Eo+qC6OPzrlOf4CHvljp/doqgLnc0M=)
2: vJjaCfCkWkCPW38brm2R4zM9VzI.crl (hash: Ym2UOxRQW7dPV+OS6JB21qPKa5ZYuFhbyZV1mpcMkoU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/f2cd5e-fd1c-4b47-aa65-5e861165884c/1/vJjaCfCkWkCPW38brm2R4zM9VzI.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/f2cd5e-fd1c-4b47-aa65-5e861165884c/1/vJjaCfCkWkCPW38brm2R4zM9VzI.mft
rsync://rpki.ripe.net/repository/DEFAULT/vJjaCfCkWkCPW38brm2R4zM9VzI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:85:5b:bb:1c:e4:8c:74:8d:29:6a:5d:c1:3b:d8:a5:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc98da09f0a45a408f5b7f1bae6d91e3333d5732
Validity
Not Before: May 17 07:02:12 2024 GMT
Not After : May 18 07:02:12 2024 GMT
Subject: CN=3997c842ef495290816b29c96857ef25416046fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c6:ab:fc:fc:9c:9e:b5:00:6d:2f:2f:4c:ca:
00:8e:1b:41:c8:08:1c:3d:f0:bd:4b:75:99:f7:9c:
66:1a:84:9a:10:20:cd:63:3d:93:b0:1e:0f:11:32:
ce:58:c4:34:f0:50:77:db:3e:2a:4c:fd:4a:e2:15:
07:3d:dc:7d:c5:df:a9:2e:7c:12:42:bf:38:bb:6a:
90:24:d2:85:5d:d9:e6:64:f2:55:3e:01:9f:41:b7:
8d:ed:75:e6:50:47:a3:1c:21:e3:7a:c2:8c:db:21:
b9:4f:20:a2:2a:10:58:04:c4:07:94:b6:84:d3:ea:
2f:a6:89:29:eb:3b:fa:59:9d:af:6d:81:7c:a2:c1:
a4:90:ec:d3:64:f3:bb:cf:ad:d2:8e:5a:9b:c8:39:
a7:ba:ac:26:f6:d7:4c:86:ce:c7:17:9f:97:59:bf:
c1:5d:dc:90:42:7a:6d:5d:c3:23:46:6b:b8:70:67:
aa:c2:8e:e6:10:f5:a5:c3:f1:26:8a:e2:fb:58:7d:
a0:60:05:b8:a0:29:c7:f1:69:17:15:6d:4c:a1:83:
eb:a5:7c:8a:3b:19:e1:07:d2:3d:6a:80:11:f5:ae:
39:84:5c:e1:b6:e4:bd:9c:3b:a2:94:57:42:85:a8:
28:17:ac:de:6d:3b:e9:b3:10:70:18:3d:27:9c:e6:
c6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:97:C8:42:EF:49:52:90:81:6B:29:C9:68:57:EF:25:41:60:46:FE
X509v3 Authority Key Identifier:
keyid:BC:98:DA:09:F0:A4:5A:40:8F:5B:7F:1B:AE:6D:91:E3:33:3D:57:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vJjaCfCkWkCPW38brm2R4zM9VzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/f2cd5e-fd1c-4b47-aa65-5e861165884c/1/vJjaCfCkWkCPW38brm2R4zM9VzI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/f2cd5e-fd1c-4b47-aa65-5e861165884c/1/vJjaCfCkWkCPW38brm2R4zM9VzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:7e:90:77:13:53:3e:00:f7:c6:b9:e2:af:e9:b3:b8:e7:d2:
e3:6d:52:6d:be:98:5f:ec:3a:dd:09:6d:70:f6:5c:2b:a9:11:
ee:06:d2:88:1e:0e:71:e5:fb:dd:42:e0:7e:aa:5b:ff:4e:41:
40:00:68:f1:52:6a:99:0a:f7:8c:48:df:25:8e:25:a9:56:6a:
af:0d:4a:97:48:06:d7:05:5b:e6:f8:89:41:da:ca:71:17:89:
67:31:fc:05:6a:6d:8c:d7:24:94:2b:e7:39:93:41:dd:0e:4f:
8b:ae:3a:16:67:58:b1:10:d4:19:4c:b5:b8:82:fa:b0:90:14:
bd:cb:b2:04:33:77:71:d9:89:01:8c:a4:79:a8:ce:71:27:92:
1a:e4:dd:ec:93:0a:e6:17:0f:67:4c:9c:58:0d:36:ed:d8:0b:
33:e5:1d:26:11:97:20:df:89:aa:4e:2b:cd:19:5a:57:d9:dd:
cc:28:21:4d:10:10:9a:9f:3f:b6:f7:7e:2d:9f:8b:5d:04:f8:
53:86:60:67:20:94:4a:21:98:84:88:e7:21:7d:fd:7e:21:d6:
2d:2b:51:04:90:7a:42:9c:67:d2:05:14:04:c0:ad:c7:ad:95:
04:f7:b6:6d:b5:da:de:52:c7:e0:31:b3:2e:2a:3d:b2:a8:87:
c6:f3:9d:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 08:43:12 2024 by rpki-client on console-fra.rpki-client.org