Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
File: RDTtvhtBAbKKviMvK88qAUiXglo.mft (raw, json)
Hash identifier: M/nfK0Iw/BthM654/ar8SWq/reFFqXWEzamhQ8O5K3A=
Subject key identifier: 59:16:20:99:75:60:E2:80:CC:D6:E0:83:EB:28:D9:52:40:09:8C:77
Authority key identifier: 44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
Certificate issuer: /CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Certificate serial: 018F87499C866E9736574BDA5AC6D5D94D0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
Manifest number: 0B62
Signing time: Fri 17 May 2024 16:01:39 +0000
Manifest this update: Fri 17 May 2024 16:01:39 +0000
Manifest next update: Sat 18 May 2024 16:01:39 +0000
Files and hashes: 1: 0s_SGDLiYl8mmYBaCXFvEx0AJRQ.roa (hash: 1aZ/5PUBBuXXGSBauA9T3K7TZSwkUqM8Az+OPHHB2DA=)
2: RDTtvhtBAbKKviMvK88qAUiXglo.crl (hash: ZkzOqdOUdkCqtdzOmIjlIlBS0ilzNwEdkQ+fzRFZFBM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:9c:86:6e:97:36:57:4b:da:5a:c6:d5:d9:4d:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Validity
Not Before: May 17 16:01:39 2024 GMT
Not After : May 18 16:01:39 2024 GMT
Subject: CN=591620997560e280ccd6e083eb28d95240098c77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:51:cc:fb:a3:f0:2b:b3:b1:b1:7f:3a:b2:97:
6f:03:cf:11:56:36:b9:b7:60:fd:ed:8e:c2:33:a4:
71:a6:9d:86:e8:56:80:c0:75:67:eb:55:1d:40:98:
03:e2:42:97:f0:2a:3d:6e:91:05:76:73:89:d9:15:
96:1b:f9:54:d7:f7:6c:22:30:40:8b:73:b6:3a:ca:
f9:0c:c0:d9:71:8e:08:ef:e6:f9:00:93:ff:3f:ec:
4c:8b:98:b3:dd:3c:02:87:97:c6:e2:58:e1:b5:18:
65:9c:c3:7e:ee:ef:02:59:c6:07:31:0e:a3:25:a4:
45:ba:4e:6f:9a:5a:3a:17:b8:6e:09:16:35:c4:0b:
de:bd:e8:73:2a:85:c0:c2:55:62:68:f0:47:84:63:
55:3b:37:ac:d3:d9:91:51:cb:35:bd:dc:05:d3:af:
cc:ef:ff:4f:18:b3:51:78:98:95:ff:4c:9c:ca:5b:
a2:32:38:7d:44:49:f4:2f:8c:0a:79:fd:7e:c3:45:
b2:ed:8b:a1:12:33:36:ac:b6:e2:4c:86:c6:94:e8:
4c:34:01:77:79:32:0c:38:8c:82:96:02:b1:d1:28:
74:d9:50:01:64:52:df:41:3d:23:96:cf:ca:a2:b6:
d0:76:90:e3:9f:1f:87:d2:d1:b8:69:40:06:bc:88:
77:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:16:20:99:75:60:E2:80:CC:D6:E0:83:EB:28:D9:52:40:09:8C:77
X509v3 Authority Key Identifier:
keyid:44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:47:00:af:a7:98:12:87:3e:5a:32:0b:6e:6f:c9:1b:d2:87:
5e:cd:f2:3d:e4:22:f0:f6:a4:4c:a0:49:1d:4e:9b:2a:b2:48:
90:88:36:12:70:7f:74:24:db:af:c2:2f:21:d4:8f:78:53:0d:
25:87:7a:31:d4:a2:4e:1e:5c:12:d9:38:72:86:81:95:5a:00:
14:58:31:ea:6f:f6:13:33:af:c9:c3:71:2e:e7:21:7e:26:26:
b5:f7:c8:f3:3f:38:14:ed:06:70:05:65:1e:de:f6:fc:15:9d:
e6:0c:02:30:93:95:2a:a6:c3:67:24:ca:6c:df:af:c9:86:dd:
d9:45:ca:50:72:fa:ab:74:a7:0b:4e:9b:90:c5:ce:22:d8:78:
7e:3f:b4:ce:53:29:3f:33:35:93:f3:4e:9c:ac:9b:90:46:59:
ce:68:f0:74:8f:ca:8e:9c:ee:b8:66:30:66:97:66:2d:b0:de:
54:a8:30:99:a7:1b:5d:e8:3e:fa:ea:eb:8d:e8:5d:23:fa:70:
5d:cd:c7:02:50:e7:f0:8c:fb:45:0d:ad:e6:fa:b7:4f:50:0f:
41:a3:ae:a3:79:a7:30:26:05:e6:75:fb:42:02:15:d3:e9:c9:
b3:e3:f3:bd:70:bb:c7:07:2d:5a:d6:e3:43:c1:f9:ab:79:e3:
57:9d:8b:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 01:46:21 2024 by rpki-client on console-fra.rpki-client.org