Manifest
$ rpki-client -vvf rpki.co/repo/John/0/54D437D91283DD46E66C6D998B68CFE98587AEA1.mft
File: 54D437D91283DD46E66C6D998B68CFE98587AEA1.mft (raw, json)
Hash identifier: I7jZG4ZnbpDJ90gPj5qr7E9EfF/NLXsMvuAXYZt0fNc=
Subject key identifier: FC:A2:A7:CA:64:28:7C:C3:27:91:A9:22:7F:E2:C7:BD:C5:B6:93:AD
Authority key identifier: 54:D4:37:D9:12:83:DD:46:E6:6C:6D:99:8B:68:CF:E9:85:87:AE:A1
Certificate issuer: /CN=54d437d91283dd46e66c6d998b68cfe98587aea1
Certificate serial: 172F6F4DB8F6C67938AEFC7639B393569CAA148A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VNQ32RKD3UbmbG2Zi2jP6YWHrqE.cer
Subject info access: rsync://rpki.co/repo/John/0/54D437D91283DD46E66C6D998B68CFE98587AEA1.mft
Manifest number: 0208
Signing time: Mon 15 Apr 2024 21:56:55 +0000
Manifest this update: Mon 15 Apr 2024 21:51:55 +0000
Manifest next update: Tue 16 Apr 2024 22:13:55 +0000
Files and hashes: 1: AS200879.asa (hash: ON5j2SuEO8h1s8+zjNe1NX1C1K5eU37tI+bEHt2kZHc=)
2: 54D437D91283DD46E66C6D998B68CFE98587AEA1.crl (hash: u/eaRb8VTDg0mnGMNRbv1gWobNtEK7I6FnwRyfpFjus=)
Validation: OK
Signature path: rsync://rpki.co/repo/John/0/54D437D91283DD46E66C6D998B68CFE98587AEA1.crl
rsync://rpki.co/repo/John/0/54D437D91283DD46E66C6D998B68CFE98587AEA1.mft
rsync://rpki.ripe.net/repository/DEFAULT/VNQ32RKD3UbmbG2Zi2jP6YWHrqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 16 Apr 2024 14:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:2f:6f:4d:b8:f6:c6:79:38:ae:fc:76:39:b3:93:56:9c:aa:14:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54d437d91283dd46e66c6d998b68cfe98587aea1
Validity
Not Before: Apr 15 21:51:55 2024 GMT
Not After : Apr 16 22:13:55 2024 GMT
Subject: CN=FCA2A7CA64287CC32791A9227FE2C7BDC5B693AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d0:f2:f5:c0:51:20:3e:44:e6:e1:09:c0:e8:
9b:90:66:17:a8:c9:c1:a3:dc:d8:2c:94:f6:19:70:
96:19:d2:9c:e4:b3:04:63:4c:3d:3b:28:91:9b:20:
35:b4:ba:29:f4:79:bf:3f:c8:2d:8b:5d:68:45:5e:
03:19:6c:d8:4e:1c:b5:a8:76:ae:52:5f:6c:f9:79:
c6:8c:0d:a2:23:16:38:38:e9:58:24:2d:df:70:a6:
34:bd:ff:cb:c8:32:f2:72:60:fa:c7:71:ca:45:17:
a6:e0:b0:80:fb:40:b6:d4:b5:3f:b7:68:ab:f6:76:
f0:24:d0:51:c5:6b:37:10:f2:fc:b1:4b:3b:81:69:
3c:d0:fb:ff:c6:7f:8d:b8:53:60:50:f7:34:98:c8:
47:30:98:2a:9d:2e:28:b1:6f:55:4d:69:70:2a:df:
4d:8c:4c:5e:88:18:46:26:9c:dd:01:fa:be:f1:78:
7c:f0:0b:4c:19:05:2e:f4:d5:44:46:a5:73:ab:1c:
f5:3c:d5:1f:5a:1e:ba:cd:0b:40:98:c3:80:b6:56:
62:14:08:1e:94:45:a8:42:0d:87:3d:3d:6b:11:6a:
20:09:91:ed:f7:95:e1:89:fb:92:fc:ce:7e:36:ed:
d7:98:45:01:6b:5c:01:b6:2b:27:c3:24:09:bd:23:
d7:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:A2:A7:CA:64:28:7C:C3:27:91:A9:22:7F:E2:C7:BD:C5:B6:93:AD
X509v3 Authority Key Identifier:
keyid:54:D4:37:D9:12:83:DD:46:E6:6C:6D:99:8B:68:CF:E9:85:87:AE:A1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/John/0/54D437D91283DD46E66C6D998B68CFE98587AEA1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VNQ32RKD3UbmbG2Zi2jP6YWHrqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/John/0/54D437D91283DD46E66C6D998B68CFE98587AEA1.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:5c:06:b9:f5:f7:bf:51:e4:f6:c3:b1:8e:aa:05:c2:ec:cf:
40:fd:0e:49:9d:f6:fe:7d:44:1f:84:7c:9b:bf:c1:75:49:7d:
2b:f8:52:c8:53:39:cb:ec:ad:fd:d4:cf:aa:16:64:54:67:a0:
c9:55:cb:49:3c:74:8c:09:05:96:a7:35:b9:dc:6a:5a:dc:86:
ea:12:f4:c2:0a:86:e7:0f:c1:e0:ad:2b:01:17:bd:cf:cd:83:
ce:95:e8:4e:a1:de:39:29:09:a1:76:10:a3:d5:b5:6b:10:dd:
81:16:6d:9f:4e:f9:bc:05:a8:5e:11:c7:eb:2e:8e:09:e6:cb:
db:dd:83:ed:6b:20:aa:ba:79:21:ac:b4:4b:58:18:6a:66:d3:
5e:cc:a5:3f:24:76:d7:93:0c:4a:d5:ba:df:7d:c4:72:6a:de:
71:e3:8a:42:09:0a:6c:11:12:c4:63:17:71:05:fd:d1:49:24:
0b:0a:ad:73:ad:0e:a2:13:3d:24:59:4a:8e:2c:1c:e2:38:17:
fe:3b:8d:c7:35:06:26:5b:c9:ea:05:d4:d1:c6:88:e5:fb:ee:
68:72:f0:25:8e:11:4e:37:ad:cc:90:32:17:4a:1a:02:cf:fe:
91:3d:d7:32:55:bb:b2:96:83:be:f2:23:19:bc:81:82:5c:3f:
36:cc:37:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 23:37:41 2024 by rpki-client on console-ams.rpki-client.org