Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
File: cvpBoKemgQK1OrMXQtthJC91kIw.mft (raw, json)
Hash identifier: WCvZkmr1p0VRgpISzdcTBPSFPeZMSLlfm2MG4F8e33w=
Subject key identifier: 12:A0:25:7C:67:FD:E6:02:BB:FB:F6:94:DF:72:24:8B:02:38:70:12
Authority key identifier: 72:FA:41:A0:A7:A6:81:02:B5:3A:B3:17:42:DB:61:24:2F:75:90:8C
Certificate issuer: /CN=72fa41a0a7a68102b53ab31742db61242f75908c
Certificate serial: 018F89373382AE60B2B9BB8AD363C3CDDF3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
Manifest number: 0FC2
Signing time: Sat 18 May 2024 01:00:47 +0000
Manifest this update: Sat 18 May 2024 01:00:47 +0000
Manifest next update: Sun 19 May 2024 01:00:47 +0000
Files and hashes: 1: _9J8B85rfLQf89br2WOu4yPWFHI.roa (hash: pmBio6M6PmjY6HE0emFwiWb4/d8aZ7o7ngU4OMHUOh8=)
2: cvpBoKemgQK1OrMXQtthJC91kIw.crl (hash: xXvPb696Pz7O62eO3x3tJYTnhg1nZ8QI0iD993SnifU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:89:37:33:82:ae:60:b2:b9:bb:8a:d3:63:c3:cd:df:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72fa41a0a7a68102b53ab31742db61242f75908c
Validity
Not Before: May 18 01:00:47 2024 GMT
Not After : May 19 01:00:47 2024 GMT
Subject: CN=12a0257c67fde602bbfbf694df72248b02387012
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:12:92:76:f4:ca:42:79:82:fe:40:97:71:42:
6d:e4:2d:18:d9:13:b8:0b:35:d6:d2:ca:f7:d9:6e:
d8:40:c4:19:75:d6:25:06:57:66:60:33:e2:7d:20:
14:ad:2d:15:db:75:dd:95:ea:9c:ed:27:60:29:b1:
de:0f:78:ee:fe:f5:c6:51:ba:a0:93:99:a5:ff:cd:
6e:7a:c3:a8:02:7e:9a:c5:1a:4c:4d:1b:9e:ae:4d:
68:61:84:47:22:c0:bb:1e:cb:8a:28:7f:32:b9:16:
e8:45:31:86:7d:a8:22:e9:ca:ef:c1:ac:87:55:1b:
8e:e8:fc:ee:d0:50:57:24:34:fe:5d:9a:52:8f:1c:
06:96:f8:59:92:fe:e5:cc:cd:cc:d2:4a:66:eb:c9:
39:40:69:f8:fd:87:3e:fb:01:65:c8:6d:e8:14:2e:
e6:69:05:ce:74:aa:69:e9:98:66:be:4f:33:cb:37:
4e:14:19:88:78:a0:a8:18:a4:19:fd:ac:a2:64:b1:
be:d3:dd:f6:32:17:97:99:5f:e3:9b:a7:20:c9:7b:
c0:ce:78:3f:94:63:d1:af:3d:f2:e3:1e:c3:69:b9:
54:a7:bc:66:1b:03:4b:78:83:cf:5a:12:f6:58:a2:
00:ee:46:16:0d:49:0b:25:b2:08:20:38:d8:8d:6e:
0c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A0:25:7C:67:FD:E6:02:BB:FB:F6:94:DF:72:24:8B:02:38:70:12
X509v3 Authority Key Identifier:
keyid:72:FA:41:A0:A7:A6:81:02:B5:3A:B3:17:42:DB:61:24:2F:75:90:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:24:35:5a:6c:a6:50:e3:6a:4a:66:af:cd:74:ab:81:07:40:
6d:0e:b1:ab:b2:f7:71:30:04:a0:fe:51:7a:f8:95:e5:23:1f:
4d:74:07:47:6f:e2:09:b4:1a:f7:af:b4:bd:11:bf:da:42:e1:
c3:da:cd:3b:dc:e2:d4:59:d6:f8:a6:33:aa:30:dd:9a:a9:d2:
6b:45:52:7a:ea:e8:9a:fb:bf:24:4d:c5:5f:b5:16:72:77:7b:
92:f3:f3:ae:b2:8a:d6:ee:b6:7a:91:bb:b9:39:d3:da:1e:c2:
29:18:70:b5:ce:df:4c:4d:87:58:56:94:38:8b:f6:2c:15:20:
8a:07:38:69:06:16:cf:29:f3:5f:37:73:7b:c2:55:61:4f:52:
2b:f7:99:a5:b6:5d:66:af:d9:82:d6:bb:b9:09:41:7f:84:f7:
d5:97:d7:4f:be:f6:7a:d8:bf:a9:3f:4b:43:99:f4:1e:85:58:
7c:0d:80:6f:d8:91:9a:b3:f2:b8:e7:5c:98:61:fc:bd:7f:5d:
f2:de:fe:d6:3a:24:f8:03:a7:7c:71:7f:cc:61:f8:d9:78:f2:
7f:91:e8:3d:66:6d:a6:94:95:73:34:2d:02:38:01:83:2a:af:
5e:11:21:a7:d2:65:42:75:1f:22:14:35:76:03:98:ba:d4:5c:
9a:cd:bc:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 01:45:50 2024 by rpki-client on console-fra.rpki-client.org