Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
File: 4koD-A9i2oZjUuGZCZfx1GzrL7A.mft (raw, json)
Hash identifier: 0A45az6Ku2Q71tNd2RIqb9dIcahQ8vpvhwExr78093A=
Subject key identifier: DF:D8:D7:0F:E1:6B:3E:BA:34:C1:15:3F:B8:6F:AB:86:42:F0:A9:33
Authority key identifier: E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0
Certificate issuer: /CN=e24a03f80f62da866352e1990997f1d46ceb2fb0
Certificate serial: 018F35889F79E4C11E533C29334827EE54BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
Manifest number: 0E0A
Signing time: Wed 01 May 2024 19:01:36 +0000
Manifest this update: Wed 01 May 2024 19:01:36 +0000
Manifest next update: Thu 02 May 2024 19:01:36 +0000
Files and hashes: 1: 4koD-A9i2oZjUuGZCZfx1GzrL7A.crl (hash: wDXaY8y11H0bxU6B3RJdBwQ14QPJTGnM9s9mu+00NoA=)
2: AloB4XUiynBv8BXrBr34mNJedxw.roa (hash: tkMQV75z0tkW/viAr5uxzonKNBDDi4TveEueFzVEGkk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 14:46:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:35:88:9f:79:e4:c1:1e:53:3c:29:33:48:27:ee:54:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e24a03f80f62da866352e1990997f1d46ceb2fb0
Validity
Not Before: May 1 19:01:36 2024 GMT
Not After : May 2 19:01:36 2024 GMT
Subject: CN=dfd8d70fe16b3eba34c1153fb86fab8642f0a933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:65:9a:b9:85:64:31:dd:ad:ae:b9:83:69:b7:
06:e5:62:0c:45:22:84:3d:1c:f9:4d:a9:87:89:de:
f2:82:07:9a:72:fd:cb:66:02:b3:c0:50:03:ad:8f:
13:d9:c4:00:0f:9d:b3:c9:d0:b6:2c:92:f6:59:e1:
c2:75:72:d7:8a:fb:ec:b9:b3:66:13:2d:ff:46:0e:
01:a9:4a:e4:e8:71:64:f2:a0:f6:e2:aa:46:be:fe:
12:15:74:a3:47:32:c6:4d:d6:01:26:f9:d3:02:5a:
dc:09:7d:64:1a:dd:41:1e:3a:9e:0f:e3:ce:5c:4f:
ae:81:49:fb:04:f1:d7:02:75:af:ae:fe:bc:85:71:
ff:8e:04:5e:8a:f5:15:50:99:04:a6:c7:26:63:d0:
dc:33:50:f5:54:6b:a9:5d:d5:24:95:57:bd:3b:0e:
10:71:69:d0:e8:4c:fd:08:a8:b5:91:54:67:7d:2b:
0e:b0:19:f2:59:99:ec:3b:79:84:87:45:7c:a8:54:
e0:74:8f:2e:82:ea:85:76:19:d4:6c:6b:76:02:6a:
2d:5f:78:96:40:1f:57:54:56:37:43:ca:32:35:42:
a5:09:39:ac:af:d7:e6:e8:54:47:4b:e2:04:f0:71:
7b:8c:1c:d8:34:d2:d4:dc:b9:36:0f:8b:ee:f5:89:
62:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:D8:D7:0F:E1:6B:3E:BA:34:C1:15:3F:B8:6F:AB:86:42:F0:A9:33
X509v3 Authority Key Identifier:
keyid:E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:e4:2e:88:cc:37:b7:fe:96:95:28:a2:46:8f:4d:4b:d3:82:
7c:a5:30:3a:80:a6:75:60:00:74:4c:c9:ba:c6:f9:7f:77:72:
3f:46:84:13:69:39:4b:56:89:40:fb:c4:7c:a3:a4:7a:01:dc:
50:aa:54:ea:0f:35:07:8b:93:e2:0e:12:d6:39:e6:d2:d3:a2:
48:f6:ee:59:23:5f:2f:68:2a:b4:af:eb:30:97:e1:96:bd:85:
70:a2:f5:d5:aa:70:42:ba:ec:3d:e5:7c:16:f6:90:21:99:18:
b6:36:a3:e1:45:8b:80:35:e0:27:a8:01:9e:53:e6:4a:ff:ea:
16:81:4d:8a:52:83:77:7b:c8:af:18:fe:7e:45:4a:36:43:76:
03:40:71:d6:b9:1a:9d:cc:ae:d3:c2:77:96:83:46:95:b4:2d:
ce:0e:ef:c8:c2:0b:8a:a4:54:30:ed:71:80:0e:b1:0c:29:a1:
27:97:eb:3d:4c:2b:40:14:30:f2:83:84:75:0a:5e:0e:52:56:
f7:03:9e:ed:60:8d:a5:73:d0:54:f4:e9:15:a0:5e:65:1a:0b:
c8:20:02:86:42:da:0f:83:3a:fa:8f:29:68:21:7d:92:df:6e:
17:c7:21:69:e2:e6:3e:4d:b9:dc:1f:c8:e3:7a:5f:e7:72:1c:
08:1d:4e:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 20:54:37 2024 by rpki-client on console-ams.rpki-client.org