Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.mft
File: 3XX8jEXTYQEAiDcRnL-oSu4Z4po.mft (raw, json)
Hash identifier: Hh1vAQPBuWK5rgytU9mCVEOJlf96j5P7QcsAlNVKx+g=
Subject key identifier: FF:4C:8F:C8:36:86:AA:C2:AE:47:DD:50:B4:89:FD:8E:0D:D8:BC:FC
Authority key identifier: DD:75:FC:8C:45:D3:61:01:00:88:37:11:9C:BF:A8:4A:EE:19:E2:9A
Certificate issuer: /CN=dd75fc8c45d36101008837119cbfa84aee19e29a
Certificate serial: 01901DEBF8EFCD11CB2DD7A7DD8669052BCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XX8jEXTYQEAiDcRnL-oSu4Z4po.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.mft
Manifest number: 0158
Signing time: Sat 15 Jun 2024 22:02:02 +0000
Manifest this update: Sat 15 Jun 2024 22:02:02 +0000
Manifest next update: Sun 16 Jun 2024 22:02:02 +0000
Files and hashes: 1: 1ohC5SImO6uA6qXlh4fSsvjaoWw.roa (hash: Yb5e20vz0C/vVixtxyWPNd0Jz+e+uTnxB8RA6FMOT3o=)
2: 3XX8jEXTYQEAiDcRnL-oSu4Z4po.crl (hash: 3zPLm2KPFT2NB3j/ZaB986L0j8Ti/ohkIMAQFKmavus=)
3: cBKVs6q0cxYCdeIY5DzEzBhM_3s.roa (hash: DJBsYfnemPKjQutyRco9f0EsmcmnBCB/iyPUDzRITXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XX8jEXTYQEAiDcRnL-oSu4Z4po.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 22:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1d:eb:f8:ef:cd:11:cb:2d:d7:a7:dd:86:69:05:2b:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd75fc8c45d36101008837119cbfa84aee19e29a
Validity
Not Before: Jun 15 22:02:02 2024 GMT
Not After : Jun 16 22:02:02 2024 GMT
Subject: CN=ff4c8fc83686aac2ae47dd50b489fd8e0dd8bcfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e1:0f:8e:64:ee:9a:2a:97:b9:b6:b2:3d:fa:
0f:de:bb:b1:61:6b:48:0a:af:d0:27:f8:89:47:47:
06:c0:1c:8d:82:ec:5c:ae:42:0a:34:d2:75:4a:b7:
2f:77:b6:af:55:8b:17:52:c4:ac:65:56:a8:d8:f3:
2f:d8:a5:16:e0:a0:d4:49:3b:f7:db:2b:69:bb:6a:
d1:ec:d6:58:ee:49:06:34:35:72:6a:98:dc:58:28:
10:af:dc:1b:4b:aa:8c:3b:35:0b:9c:a0:b8:8a:fe:
08:03:af:43:de:2f:c8:00:f6:8a:54:de:7e:ca:3a:
23:d9:25:f6:b6:e2:03:d4:31:a9:3f:0a:fc:98:6e:
68:b0:cb:63:0b:57:53:a7:cc:7f:f9:90:ff:98:58:
a8:90:3c:b9:db:b1:b3:9c:a0:a2:f9:ed:b1:a2:49:
50:32:f7:6f:9e:bc:b0:7e:9c:e9:aa:91:9d:8a:69:
7e:48:6e:c3:1d:99:ab:c0:7b:62:f5:87:20:71:17:
34:2c:12:80:77:97:a3:a9:1e:ac:59:20:2f:d9:fc:
55:5b:66:c0:f5:0e:57:30:80:e6:42:0a:ef:49:97:
d2:54:b6:7c:1c:57:6f:27:85:e5:ba:b1:2c:9c:d2:
f8:56:f6:9d:6d:db:49:b6:36:5e:a2:a9:5d:eb:ed:
b7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:4C:8F:C8:36:86:AA:C2:AE:47:DD:50:B4:89:FD:8E:0D:D8:BC:FC
X509v3 Authority Key Identifier:
keyid:DD:75:FC:8C:45:D3:61:01:00:88:37:11:9C:BF:A8:4A:EE:19:E2:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XX8jEXTYQEAiDcRnL-oSu4Z4po.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:2c:7f:76:97:44:c8:2d:c9:1c:53:03:86:76:59:db:99:94:
0f:b4:0c:10:70:77:a9:7a:62:bc:ad:b8:95:d5:e7:9f:3a:d4:
35:81:ed:94:8e:0d:f1:9e:42:cf:b5:dc:88:63:15:62:6f:1a:
1f:5e:25:6b:56:02:5e:07:b5:35:f7:2b:ac:9d:3c:1e:db:36:
a0:d5:57:80:ea:aa:be:dc:e6:05:14:81:54:66:41:b1:d9:f8:
3c:31:7a:0a:45:5a:d3:74:96:ae:58:4a:62:32:fc:84:d8:0a:
fa:40:40:38:46:9b:e4:c2:ac:74:0f:e0:65:51:e3:fa:74:ac:
05:66:5c:ef:26:6e:ae:ff:a1:be:87:5f:7a:a0:46:f8:1e:e3:
29:e0:80:18:aa:b6:32:07:8a:ef:b7:23:f9:af:54:0b:03:8d:
cd:2e:54:62:e0:06:92:52:ca:9e:5b:8b:f7:ec:f5:2a:67:6f:
8e:d5:6e:75:15:f9:2c:0d:59:80:a0:be:33:31:56:c4:1a:76:
a2:40:35:96:21:28:44:8f:3c:03:d6:d4:31:7a:10:1a:3c:46:
7b:08:d7:6c:1d:7b:c3:45:f9:e8:64:9c:ed:6c:5b:4a:72:39:
e9:af:04:9a:ff:a6:e0:b2:7d:aa:1e:af:47:6f:12:f8:6c:45:
cb:c6:6b:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 04:50:49 2024 by rpki-client on console-ams.rpki-client.org