Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
File: 5zfJpEKotKTJEvEbwrbTzxAK30I.mft (raw, json)
Hash identifier: bXZ6LBLae5QEywydkxdIFI2SABioHtAM49ZVoiFLHJY=
Subject key identifier: 4F:4D:17:23:A4:7F:DF:5D:16:25:23:5C:2F:3D:64:34:78:FA:68:C6
Authority key identifier: E7:37:C9:A4:42:A8:B4:A4:C9:12:F1:1B:C2:B6:D3:CF:10:0A:DF:42
Certificate issuer: /CN=e737c9a442a8b4a4c912f11bc2b6d3cf100adf42
Certificate serial: 018F3CD3EDE992DBCE80317D4A678227C8AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
Manifest number: 1152
Signing time: Fri 03 May 2024 05:01:12 +0000
Manifest this update: Fri 03 May 2024 05:01:12 +0000
Manifest next update: Sat 04 May 2024 05:01:12 +0000
Files and hashes: 1: 5zfJpEKotKTJEvEbwrbTzxAK30I.crl (hash: qMQ3GiyuZVrR+PkGNORR3Ujf2/0DybfJuKcnP8GPszM=)
2: TXUb5PWK97qFRHkPcHvuHpPFJz8.roa (hash: v597jB3M2AG4oK1k2ELqkOmOSoMqiFsCA63v2oQ6rEI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 05:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3c:d3:ed:e9:92:db:ce:80:31:7d:4a:67:82:27:c8:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e737c9a442a8b4a4c912f11bc2b6d3cf100adf42
Validity
Not Before: May 3 05:01:12 2024 GMT
Not After : May 4 05:01:12 2024 GMT
Subject: CN=4f4d1723a47fdf5d1625235c2f3d643478fa68c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1f:bc:b5:c2:7e:b7:f5:6d:03:dd:6d:ad:1b:
b3:dd:1f:dd:56:01:8a:e9:b2:f3:34:47:a8:6c:66:
fa:a2:6e:9b:eb:ba:9c:e5:e2:12:d6:c7:c9:e2:a1:
50:f1:2c:30:60:bf:36:ac:fa:a3:38:ac:62:14:fb:
23:3f:a6:0a:f4:09:78:a3:8e:76:d0:fc:e5:81:bf:
75:ac:33:58:fa:a4:83:99:6f:89:4c:b0:18:8f:21:
38:6e:7f:8a:14:43:ec:af:3c:a0:83:ec:fe:2d:78:
a4:6c:fa:d7:e3:70:ac:f7:b6:a8:1b:56:5f:2a:c9:
20:f3:0a:a0:21:67:90:db:ba:8e:a1:df:47:61:8b:
eb:34:e1:d2:4e:40:90:9c:89:4e:23:de:46:b3:1c:
da:0f:28:96:1b:89:c6:cb:83:b6:1c:02:e8:af:dc:
32:bd:04:d2:57:5b:1c:d1:80:f0:1e:8f:c7:ef:c2:
0c:0e:87:6f:79:e6:1e:d2:68:7c:6b:16:f0:4d:09:
cc:a1:be:8c:c8:b0:68:54:cd:3d:21:8c:af:9e:d5:
34:4a:ad:e5:e5:95:c2:01:70:0a:d2:48:8e:51:a2:
b1:9b:b3:e3:0a:bd:d2:5c:4f:ae:88:c2:91:af:f0:
85:43:fa:f9:1b:c9:9b:d7:33:1c:d8:d7:c9:d7:f3:
9f:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:4D:17:23:A4:7F:DF:5D:16:25:23:5C:2F:3D:64:34:78:FA:68:C6
X509v3 Authority Key Identifier:
keyid:E7:37:C9:A4:42:A8:B4:A4:C9:12:F1:1B:C2:B6:D3:CF:10:0A:DF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:4b:ec:ce:d1:f6:e1:cf:0f:b0:80:6f:b5:eb:06:da:c4:eb:
16:39:e5:66:d0:cd:4a:38:81:1b:56:dd:44:e9:ed:6e:df:92:
2f:c6:e1:30:8a:55:90:29:8d:59:fe:1f:9e:b7:de:f9:d3:2a:
00:36:ad:d4:ca:07:ca:e1:ae:f3:9a:4e:b6:fd:32:f9:4e:5c:
fc:b7:ef:b2:e0:3e:5d:62:4c:2d:c6:3d:27:9b:67:d7:91:0e:
bd:67:e0:0a:91:26:7d:32:b8:a7:49:b4:4c:02:f0:6b:f6:ac:
a8:9b:5f:52:0c:b9:bd:98:8b:a8:14:01:c9:b6:fc:d7:d4:91:
dc:15:ac:4b:6e:83:0b:9d:ac:de:5e:94:3c:fa:ba:1a:ec:bc:
e1:f2:ca:e7:db:5d:ca:6a:12:dc:3f:45:f7:ce:c5:7a:a9:73:
bd:7b:7e:3f:1c:bd:25:3b:a8:0f:a8:ab:90:35:ac:8d:a8:97:
11:67:a7:9a:14:22:f0:3f:6c:d1:5c:e9:73:47:d5:84:68:8e:
b9:d7:ee:59:2e:85:55:f3:fd:a2:4e:19:30:f1:45:ad:11:1e:
b2:48:f1:78:90:fa:de:72:0e:26:99:77:45:54:b4:d3:29:e9:
e5:5b:9d:8e:f5:7f:50:1f:7f:c8:d6:fb:b4:aa:94:a7:22:43:
96:89:c6:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 13:01:53 2024 by rpki-client on console-ams.rpki-client.org