Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.mft
File: xZttw7wi9sNqA5hVU0stQauxJCM.mft (raw, json)
Hash identifier: jU0DRcmRnUZ80kQzem3+kmV/7Wlkh4dea411IUNJxZY=
Subject key identifier: 86:29:42:72:7F:05:9C:C6:A5:B4:AA:EC:F8:B6:0D:8A:26:12:C3:8D
Authority key identifier: C5:9B:6D:C3:BC:22:F6:C3:6A:03:98:55:53:4B:2D:41:AB:B1:24:23
Certificate issuer: /CN=c59b6dc3bc22f6c36a039855534b2d41abb12423
Certificate serial: 018F874997C33A35D4365AE336A92C6D62EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZttw7wi9sNqA5hVU0stQauxJCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.mft
Manifest number: 1177
Signing time: Fri 17 May 2024 16:01:37 +0000
Manifest this update: Fri 17 May 2024 16:01:37 +0000
Manifest next update: Sat 18 May 2024 16:01:37 +0000
Files and hashes: 1: pVl-NOGGTVsG8N4xw1owaaFfdLU.roa (hash: /Pfhax8VyzY/QE5sn+muTQior77AG2mbOdP0QE7+e0Y=)
2: xZttw7wi9sNqA5hVU0stQauxJCM.crl (hash: dWOB3hYlOJKE4VIwlbxl50+gtIOq+afzwiXF2SMgVKQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.mft
rsync://rpki.ripe.net/repository/DEFAULT/xZttw7wi9sNqA5hVU0stQauxJCM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:97:c3:3a:35:d4:36:5a:e3:36:a9:2c:6d:62:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59b6dc3bc22f6c36a039855534b2d41abb12423
Validity
Not Before: May 17 16:01:37 2024 GMT
Not After : May 18 16:01:37 2024 GMT
Subject: CN=862942727f059cc6a5b4aaecf8b60d8a2612c38d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:32:ee:98:7e:07:76:c7:e0:b0:53:f4:6d:4d:
97:f8:8d:c6:f9:58:de:61:15:9d:be:64:09:d1:fc:
9f:15:f1:f9:d8:76:c5:c2:b0:2a:36:5f:a0:d0:b8:
8a:28:2d:4a:e3:87:7b:48:d0:a8:31:5a:83:c2:a6:
ff:df:a0:2c:b3:73:18:6c:8b:a7:9b:49:1b:ee:71:
7a:00:46:0c:ec:ca:86:f0:33:ff:ed:90:38:ef:da:
1e:80:2d:1e:2d:56:7a:af:61:ec:bc:23:44:95:33:
0f:b9:70:a0:2b:fb:9f:b0:da:04:df:e4:13:18:44:
3d:cc:86:9e:d4:38:ca:57:ff:11:00:49:78:0a:91:
c5:51:cf:c3:a4:bb:ec:b1:e8:2e:26:1c:e9:40:7a:
da:b3:a0:86:b7:57:dd:c2:be:cf:67:04:97:4c:e0:
ab:c6:d5:c0:dc:3a:79:3d:2d:47:ad:8b:dd:e9:e1:
de:5d:f3:b6:62:e7:0b:69:af:53:ea:de:a6:02:89:
fa:e4:e5:aa:89:88:26:18:64:c3:78:7e:7c:8f:5c:
06:13:73:1d:e0:7e:de:c7:39:81:59:30:47:c7:e0:
86:b1:6e:c2:a4:35:92:7b:55:38:2a:f8:b8:26:8e:
78:9d:2f:86:b6:d8:02:c3:4d:87:b3:60:55:c9:2b:
e1:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:29:42:72:7F:05:9C:C6:A5:B4:AA:EC:F8:B6:0D:8A:26:12:C3:8D
X509v3 Authority Key Identifier:
keyid:C5:9B:6D:C3:BC:22:F6:C3:6A:03:98:55:53:4B:2D:41:AB:B1:24:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZttw7wi9sNqA5hVU0stQauxJCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:99:c4:9f:f2:1e:49:71:e4:1c:17:36:f2:8c:d3:18:71:2d:
74:20:90:0f:ea:f9:39:29:79:2a:40:27:91:77:02:15:6d:2a:
a1:de:fe:6f:fd:b1:97:91:7f:96:04:5e:ac:9e:50:3b:e9:a1:
84:bd:d0:0e:21:17:f4:70:14:8b:44:10:ae:1e:06:0a:fc:4e:
75:11:ec:3b:75:ba:24:3a:d9:b4:1b:74:b6:38:56:44:e5:4c:
5d:68:40:e1:d6:4b:1c:4c:ca:9d:ce:d8:99:48:af:a0:4f:78:
df:03:12:39:a8:4d:40:4a:90:d0:f5:03:24:94:0b:59:ec:a0:
0e:23:7c:47:c0:c7:aa:79:fc:c2:3a:38:d8:5b:20:18:53:1b:
f9:fb:0d:80:95:40:f5:ac:78:ad:73:4a:cf:15:b5:b6:53:fb:
15:02:c6:fb:27:a6:3d:45:bf:50:26:fd:a8:44:d5:61:f6:10:
38:85:f8:92:9a:98:16:36:42:63:fd:d1:3f:42:d9:97:00:ac:
94:7f:4b:ce:5f:0f:f7:ac:4a:ff:0a:01:19:ab:81:84:3e:51:
a7:2a:0d:0c:25:a8:b7:4d:e0:e1:aa:53:a4:83:84:28:2f:da:
f1:07:50:a5:a2:56:bb:2b:8a:8d:e7:1e:27:0f:66:c9:ab:88:
7f:86:36:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 01:46:03 2024 by rpki-client on console-fra.rpki-client.org