Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.mft
File: Y8NEVcDU5Pw7ovHEbwi0dcj22YA.mft (raw, json)
Hash identifier: 9IB29x0wxTD3FJu3RK+2RB3sE+7kOHYiHUHmoP476OU=
Subject key identifier: 2B:58:B5:0A:1B:BD:8F:A2:37:81:8D:C8:AE:2F:0A:5E:E1:3A:4C:7C
Authority key identifier: 63:C3:44:55:C0:D4:E4:FC:3B:A2:F1:C4:6F:08:B4:75:C8:F6:D9:80
Certificate issuer: /CN=63c34455c0d4e4fc3ba2f1c46f08b475c8f6d980
Certificate serial: 018FA1400D08A81F45F04DABDBEAF18BC2AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.mft
Manifest number: 0809
Signing time: Wed 22 May 2024 17:01:20 +0000
Manifest this update: Wed 22 May 2024 17:01:20 +0000
Manifest next update: Thu 23 May 2024 17:01:20 +0000
Files and hashes: 1: LZHfRehIvNu9JV8q6DX593oPAKk.roa (hash: cY/tp9s2yOxd4GQXdDZjI3iid59nT/ln+y1nhWo2hzQ=)
2: Y8NEVcDU5Pw7ovHEbwi0dcj22YA.crl (hash: HA9OI4e8StcR80Ol7HuW12HJ6tG0+WYCB7Y6QeFwCTw=)
3: oE6VgKM6gEPtNzrDZoSVjXWrKWU.roa (hash: vcPfvnauYsYgwUVoZEf+z774d/rEE63nX0bYruykmT0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 May 2024 14:15:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a1:40:0d:08:a8:1f:45:f0:4d:ab:db:ea:f1:8b:c2:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63c34455c0d4e4fc3ba2f1c46f08b475c8f6d980
Validity
Not Before: May 22 17:01:20 2024 GMT
Not After : May 23 17:01:20 2024 GMT
Subject: CN=2b58b50a1bbd8fa237818dc8ae2f0a5ee13a4c7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:24:a5:92:6c:8c:2c:41:21:21:d4:18:2d:52:
23:d6:77:11:6c:b0:3e:da:08:87:3e:54:04:dd:97:
dd:13:0d:54:ca:9c:66:aa:45:53:26:3a:14:81:22:
e6:55:76:5b:b4:c8:17:eb:65:ef:6e:ae:48:0d:0c:
5c:bf:01:d3:c2:79:33:14:05:18:2a:7a:0a:e3:a1:
cd:f5:bf:d5:98:41:18:49:76:86:29:fd:c6:53:b9:
c9:b8:ce:91:ea:95:dd:04:26:4b:f2:80:72:b6:03:
47:94:05:39:e6:2d:58:b1:0a:89:7c:7a:57:f8:06:
79:b0:f4:3f:16:1d:16:8f:bc:eb:7d:0e:d4:f7:1b:
c4:f9:7c:5b:82:9b:65:7a:47:6c:d7:94:be:61:57:
f8:c5:28:60:88:68:b2:f1:be:02:41:a2:0d:9e:bb:
94:71:cc:4a:f9:b1:2c:85:64:4f:38:e9:e7:ed:81:
e5:ea:0c:7e:53:ba:f1:c8:0b:10:24:3c:b6:f8:27:
e2:15:95:fe:72:83:24:66:ff:fc:b9:00:7d:51:e6:
fd:9f:83:e0:0d:39:9e:09:09:05:ce:cb:29:0d:49:
3f:f0:b7:be:82:f9:bd:30:f9:70:01:33:3e:0b:68:
f9:4c:a9:32:92:ac:df:b7:e1:35:e9:3c:76:a4:17:
35:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:58:B5:0A:1B:BD:8F:A2:37:81:8D:C8:AE:2F:0A:5E:E1:3A:4C:7C
X509v3 Authority Key Identifier:
keyid:63:C3:44:55:C0:D4:E4:FC:3B:A2:F1:C4:6F:08:B4:75:C8:F6:D9:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:c5:fc:60:24:10:22:4f:2b:f9:da:41:6d:1a:f6:8b:c4:8a:
d2:45:b9:82:7f:02:f8:ff:b5:21:4c:d7:76:69:af:d0:5d:b4:
87:26:ea:69:26:ca:ea:17:d1:59:18:2f:a9:d7:f6:07:4f:19:
c6:3f:db:f8:31:f2:06:2a:73:f6:ff:e6:e2:17:53:e1:94:d7:
45:26:4a:37:07:db:92:6a:49:68:b5:3a:3a:0f:cd:55:5d:d0:
ea:63:82:9b:22:07:9b:53:3f:b8:9c:84:b7:43:be:6f:8f:93:
3d:a9:81:09:ee:64:52:af:c3:59:32:f8:0c:fa:80:5b:ce:9b:
37:6a:9e:49:b3:75:6d:ee:93:58:03:6a:27:4e:6b:a4:6e:f3:
bf:ee:90:7f:15:8a:e4:c3:57:93:4c:0a:92:cb:5a:a4:a0:96:
b7:2b:12:70:ba:b8:76:2f:37:f3:2f:99:5b:4b:76:93:19:ac:
d5:5d:ff:73:56:20:ae:0f:6e:17:39:c6:c8:b9:0b:f4:28:80:
c7:81:9d:49:00:9c:c8:31:05:bf:3a:5c:50:b5:da:88:94:76:
73:98:3a:79:12:80:b1:73:2d:4b:ad:37:69:cd:9f:d6:b9:76:
e1:42:84:4d:55:00:8b:a4:bb:91:ab:cd:c4:bc:83:c6:48:95:
1c:39:7e:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 22 21:35:19 2024 by rpki-client on console-fra.rpki-client.org