Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
File: pal1I5_dRDt9PYLjkqnkrjkhjvY.mft (raw, json)
Hash identifier: nOglN9aI6usOK6NTAejN7uIAYtTp0iSFTVbMNTyPPGw=
Subject key identifier: 06:82:C4:D7:2F:FB:3E:6B:F8:4E:71:26:C2:B8:38:BF:03:23:9A:28
Authority key identifier: A5:A9:75:23:9F:DD:44:3B:7D:3D:82:E3:92:A9:E4:AE:39:21:8E:F6
Certificate issuer: /CN=a5a975239fdd443b7d3d82e392a9e4ae39218ef6
Certificate serial: 018F836C91A96DD4652A7940B160235977A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
Manifest number: 04D3
Signing time: Thu 16 May 2024 22:01:21 +0000
Manifest this update: Thu 16 May 2024 22:01:21 +0000
Manifest next update: Fri 17 May 2024 22:01:21 +0000
Files and hashes: 1: hAc7ak5kWsKT6JxTG3hpojUMtWE.roa (hash: WaA12oUNzh3ugWP/6qxVSFwuC/6IlOZZcUnme1rBMGU=)
2: pal1I5_dRDt9PYLjkqnkrjkhjvY.crl (hash: dwfthA4OyRE3vM5ZgoapxbSrhEXGRHgrgErTFmTP0H4=)
3: zglQdQdERZsjXYbJD_uh2jlLSbY.roa (hash: PXOe/KaBadbYY2e7Ta7WlTKgdALk40sgFLPFSDD5rAQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 22:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:83:6c:91:a9:6d:d4:65:2a:79:40:b1:60:23:59:77:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a975239fdd443b7d3d82e392a9e4ae39218ef6
Validity
Not Before: May 16 22:01:21 2024 GMT
Not After : May 17 22:01:21 2024 GMT
Subject: CN=0682c4d72ffb3e6bf84e7126c2b838bf03239a28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:18:6e:f4:a5:60:4f:0f:74:bc:4a:0b:aa:32:
8a:1e:75:9f:74:28:bf:96:5b:91:47:65:39:29:ff:
c8:fb:1e:24:e5:d5:4b:f0:2d:60:2f:98:73:34:1a:
2b:76:68:ed:c4:b1:7e:93:ab:af:25:59:97:0f:b6:
6c:a1:81:4f:7a:3f:e2:d3:32:54:59:32:ad:a9:a5:
b6:ef:a9:27:a2:ba:a9:6c:38:9e:80:69:2e:8a:8d:
a6:bd:25:09:a7:cb:4c:ed:7a:75:dd:59:1c:6b:1c:
aa:d7:07:55:62:b3:9f:20:2a:da:7a:be:70:e0:87:
84:b1:9d:4f:9d:fa:cd:6f:12:e0:97:ac:d7:92:b7:
75:92:4e:66:56:52:10:7d:50:98:f0:47:a7:f9:a6:
91:e8:4b:42:87:65:04:ee:8e:e9:30:68:b4:64:2c:
a9:61:3a:0b:9a:81:42:b6:7e:5d:e2:d4:d6:99:0a:
da:cd:aa:63:ca:be:70:b7:77:dc:4d:9e:9d:0e:dd:
53:68:88:3a:fe:1d:c5:ee:93:fc:95:8d:86:d1:80:
91:78:a8:64:d6:a3:cd:d2:3f:2e:dd:22:47:d3:94:
0d:84:81:9d:d4:fa:d3:b0:89:f8:07:2f:94:70:9d:
72:68:2d:8b:1d:8b:85:e8:7b:30:3c:84:df:c0:ee:
7a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:82:C4:D7:2F:FB:3E:6B:F8:4E:71:26:C2:B8:38:BF:03:23:9A:28
X509v3 Authority Key Identifier:
keyid:A5:A9:75:23:9F:DD:44:3B:7D:3D:82:E3:92:A9:E4:AE:39:21:8E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:22:6e:f1:4a:20:f6:6a:8b:a1:a6:52:ad:5d:d3:98:34:96:
1d:43:c7:9b:22:93:b1:33:99:79:3b:0a:7f:20:48:c4:e3:94:
61:c6:a9:05:82:42:83:77:e1:62:7d:fb:b2:4e:25:44:af:35:
fc:7c:3c:be:22:cf:f9:e2:f3:ee:5e:6b:45:73:1d:f1:30:4a:
9b:6e:34:1c:16:19:58:45:45:26:5f:16:7c:ff:76:6e:0c:af:
0d:51:ef:bf:cb:bf:fc:51:ac:c9:e1:62:4a:b3:4b:87:bc:2c:
7b:39:b9:52:a4:12:c8:d8:83:fc:83:70:e2:e4:68:aa:72:37:
19:b8:40:7b:d9:fd:48:03:61:24:72:52:86:4b:bc:49:2c:5b:
f5:83:e6:8e:76:e2:94:5f:84:b9:26:54:a4:04:f5:6f:a5:3c:
c8:1a:e5:ab:3f:b1:86:58:c1:c9:09:c2:c7:94:d9:ef:ea:4a:
33:c5:ea:14:a9:3f:1f:ec:78:5e:8c:fa:e5:7d:bf:40:38:65:
28:a5:00:1b:6f:dd:66:dd:3c:89:6a:bb:0a:1e:6c:d2:aa:30:
d5:7e:73:68:d9:e8:ce:61:79:74:a3:ad:a9:c3:55:69:6a:65:
0c:49:b8:77:ab:3f:0a:69:81:1e:56:7c:c3:03:f3:c5:89:83:
ee:24:66:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 06:50:09 2024 by rpki-client on console-ams.rpki-client.org