Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
File: iDjoVrInLfF0ulpAqPx9XTAxyso.mft (raw, json)
Hash identifier: TufXcKWf75uzPllEhgnFDurY9aIci5PPvhNjOu09dFs=
Subject key identifier: 0B:52:F2:12:59:87:74:B2:60:55:61:9E:D9:B7:42:12:63:36:E4:18
Authority key identifier: 88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
Certificate issuer: /CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Certificate serial: 018F94CDE3B35A5403A7805732AA74C34A0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
Manifest number: 0AE7
Signing time: Mon 20 May 2024 07:01:12 +0000
Manifest this update: Mon 20 May 2024 07:01:12 +0000
Manifest next update: Tue 21 May 2024 07:01:12 +0000
Files and hashes: 1: K6GVOeh6cwymvbmMoEZGHUldvsY.roa (hash: X8VvZaOITYD9w9+Dh/bMwB7ttrrdpJ8yduuP1jV0tg4=)
2: iDjoVrInLfF0ulpAqPx9XTAxyso.crl (hash: cF6/P3YWCC/h+/+x45j4IaBjYmhYOBuBJAhnU5VPEHY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 07:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:94:cd:e3:b3:5a:54:03:a7:80:57:32:aa:74:c3:4a:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Validity
Not Before: May 20 07:01:12 2024 GMT
Not After : May 21 07:01:12 2024 GMT
Subject: CN=0b52f212598774b26055619ed9b742126336e418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0a:e5:1d:d2:ce:7e:89:d7:a7:50:6b:46:42:
f0:b3:40:51:00:40:eb:24:25:c4:cf:8f:55:f2:ae:
81:d0:fa:86:26:3c:f2:79:89:9a:c2:a2:39:0a:ba:
6a:95:c4:07:68:58:0e:ba:7e:05:b7:c2:0a:51:8a:
d8:ca:83:66:95:de:75:e5:c8:83:b5:10:76:18:08:
0c:e0:1f:62:e2:d5:83:d2:ff:75:11:ca:38:4a:70:
8d:15:ea:aa:cb:3b:d5:45:a5:7f:01:1e:e0:76:8a:
3f:23:73:29:e1:2f:90:f0:9a:5e:5b:16:11:f1:fc:
2a:a5:79:c9:f8:5e:63:18:2e:7e:75:c5:92:58:19:
92:d4:ab:c5:fa:86:31:70:98:52:f7:43:21:f3:19:
7c:c3:0e:f4:75:95:f0:f7:80:27:5a:3d:d9:c7:dc:
55:9d:99:e0:1f:11:87:27:09:35:67:7c:48:94:d6:
29:0e:89:de:f4:6b:79:e7:8e:e9:2a:63:d0:e9:8e:
29:a9:d9:9c:c2:00:f2:37:bb:dd:61:2c:d0:0c:3f:
9f:10:5a:08:04:d6:50:4a:c3:14:41:46:f6:78:1f:
50:c8:ae:8a:2a:c1:63:c1:55:97:d7:91:9b:e0:c9:
8b:ce:f7:9b:4b:fe:63:da:c9:27:52:c1:6a:b7:de:
b7:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:52:F2:12:59:87:74:B2:60:55:61:9E:D9:B7:42:12:63:36:E4:18
X509v3 Authority Key Identifier:
keyid:88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:76:f7:01:3f:47:48:42:29:d7:36:44:22:e6:62:02:da:59:
03:00:13:f2:44:d3:b5:9b:14:5b:04:e8:8b:8f:16:76:32:3d:
09:96:09:1a:0f:10:b8:7a:1d:f1:bf:52:c0:8c:ec:85:81:db:
6b:3e:e3:e6:3d:8e:5f:a6:f8:a8:44:d3:ff:52:81:74:e8:1e:
65:27:7c:7d:e1:ce:a5:10:9e:c3:ea:fa:fc:6e:8a:15:4b:85:
3f:e7:8d:cf:0b:7d:24:4b:14:fd:6e:40:1a:00:de:45:0f:06:
30:be:5d:61:71:8c:6a:b1:7f:2d:f4:6e:a6:ec:93:c6:e8:36:
36:fd:33:af:cc:ac:22:36:8c:c9:62:79:56:db:f2:c5:65:6d:
46:08:66:f4:90:d2:70:4c:41:25:14:c7:b8:23:e1:f7:04:8f:
a2:fe:c1:3f:b0:13:bf:a0:bb:28:3b:11:90:a3:2a:b2:62:3d:
0f:60:ea:11:b6:fb:35:82:ac:8f:60:e4:9d:07:1b:d6:b9:ef:
96:6a:07:33:7f:13:5b:88:68:78:40:d3:cf:64:33:27:b8:9f:
a0:14:1e:93:56:12:12:ad:6a:79:60:3d:13:39:98:c8:91:e9:
9b:04:29:a5:92:3a:58:72:ff:e4:f4:41:5d:6c:d2:b5:e9:0d:
e9:39:a0:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 09:52:34 2024 by rpki-client on console-ams.rpki-client.org