Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
File: zTu8GVzaflgkWmHLMLlv5XL9eBE.mft (raw, json)
Hash identifier: GxNiLxErPK46YxRmWpoYjbdSITgo4g63ltJEHMw2Ku8=
Subject key identifier: 29:93:2A:4A:77:B5:FD:4A:DD:88:71:64:3F:FC:41:F1:C8:88:75:7E
Authority key identifier: CD:3B:BC:19:5C:DA:7E:58:24:5A:61:CB:30:B9:6F:E5:72:FD:78:11
Certificate issuer: /CN=cd3bbc195cda7e58245a61cb30b96fe572fd7811
Certificate serial: 01901BFD716FB43FE46FD715839CF1A722A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
Manifest number: 0B17
Signing time: Sat 15 Jun 2024 13:01:52 +0000
Manifest this update: Sat 15 Jun 2024 13:01:52 +0000
Manifest next update: Sun 16 Jun 2024 13:01:52 +0000
Files and hashes: 1: Kmlt2OnDfyr-xvUq2wtLaJFFd2Q.roa (hash: WbhRtVuWF6be/CtAbJTFROvLmiN5iCcmflupCqioaKQ=)
2: zTu8GVzaflgkWmHLMLlv5XL9eBE.crl (hash: cvE38Ke7dmNsuVCrcgC9vk0/PeByeyXHILnX1t6KfH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 05:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1b:fd:71:6f:b4:3f:e4:6f:d7:15:83:9c:f1:a7:22:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3bbc195cda7e58245a61cb30b96fe572fd7811
Validity
Not Before: Jun 15 13:01:52 2024 GMT
Not After : Jun 16 13:01:52 2024 GMT
Subject: CN=29932a4a77b5fd4add8871643ffc41f1c888757e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9d:04:32:88:33:c5:33:d2:e6:09:24:8d:83:
6b:ce:ed:81:d9:38:a3:3a:ba:11:24:4d:64:36:1e:
5c:27:14:d0:f8:2d:e0:e8:46:ac:4a:a1:25:da:93:
d6:38:8f:81:7a:da:c5:a9:47:60:23:6e:21:86:20:
57:ae:77:5c:7a:3a:d8:9b:47:c8:ff:94:f5:42:b6:
56:8f:6e:ad:50:30:f2:37:1f:c4:dc:09:0f:68:f3:
90:f7:e3:65:db:f9:0f:60:4f:17:31:45:4a:e3:4f:
9c:a1:ca:f4:3c:60:c7:7b:b5:c5:5b:83:36:7a:ac:
25:a2:6e:d4:40:55:ed:42:bc:a0:6e:b8:0b:d9:f5:
64:fc:fc:5d:29:bc:7b:bd:2e:72:a3:61:1c:49:89:
c5:f7:cf:e0:b2:50:b7:a9:b7:93:74:e6:12:30:d6:
c7:48:23:a7:f2:2d:ab:d1:79:b0:97:3c:c2:29:b5:
9e:ab:dd:84:f2:4a:19:b8:19:80:bc:de:b0:5c:c9:
db:18:c3:63:f2:dc:55:95:26:0b:80:f7:ec:21:9f:
99:b9:b5:e4:ca:7c:a2:a2:db:ba:33:44:96:64:e0:
df:83:4f:19:20:b5:0d:11:11:18:55:75:4f:fe:39:
b8:53:78:eb:70:e3:36:76:c1:52:46:59:13:b4:e1:
c4:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:93:2A:4A:77:B5:FD:4A:DD:88:71:64:3F:FC:41:F1:C8:88:75:7E
X509v3 Authority Key Identifier:
keyid:CD:3B:BC:19:5C:DA:7E:58:24:5A:61:CB:30:B9:6F:E5:72:FD:78:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:f6:f9:4e:c8:e0:9b:b5:1c:b6:76:4b:bf:1e:1a:40:8e:3e:
c4:5c:70:44:37:44:83:2b:15:7c:54:2a:cf:9e:a1:c5:d5:d4:
eb:93:05:15:d8:9c:79:e0:5f:5e:d6:52:6e:f6:fa:c0:e9:a0:
dc:d0:98:d5:93:25:0d:bb:59:3c:3a:c6:6c:1c:2b:8e:5e:45:
e9:d8:cd:24:2e:98:81:5d:02:3f:c9:5f:8c:25:cc:5c:e6:76:
27:b1:41:33:fd:43:52:c7:21:c1:a7:9b:d6:96:cf:40:97:ff:
9c:46:cb:f5:8c:09:e9:8f:1e:dd:68:bc:ea:69:2c:f4:d4:97:
e6:aa:c0:a4:c1:e1:f7:e1:ff:a0:68:85:69:f4:35:cf:e8:d2:
7e:f2:14:be:a9:f3:2e:6d:bd:44:ee:86:71:42:bd:55:c1:04:
b5:af:92:0d:42:0b:f1:4d:46:35:7f:f8:65:95:97:e7:47:a0:
11:88:9d:8c:3b:13:aa:c3:3b:b0:e9:01:4a:ec:39:84:ad:e2:
82:89:bc:4b:f3:2d:36:08:a0:c4:d4:21:67:ab:6c:ec:2d:e9:
1f:f8:2b:b0:c0:46:d1:9d:ad:93:8f:05:8a:fc:d6:70:68:40:
93:46:9a:4c:d5:45:e7:f5:be:93:95:ac:68:aa:7a:52:f9:08:
61:c2:04:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 14:34:20 2024 by rpki-client on console-fra.rpki-client.org