Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
File: VFhKIZ9vUGbYSO0quWTaiWbUCio.mft (raw, json)
Hash identifier: ZMwyknEXS3S+zof27KnaosxBM1VKxIHWoT3seqtpJ4c=
Subject key identifier: 12:37:B5:28:F8:7B:36:35:1F:89:6F:26:8A:35:D0:E6:27:16:8A:92
Authority key identifier: 54:58:4A:21:9F:6F:50:66:D8:48:ED:2A:B9:64:DA:89:66:D4:0A:2A
Certificate issuer: /CN=54584a219f6f5066d848ed2ab964da8966d40a2a
Certificate serial: 018F8749C00B053EFB2B968AD021096F9BAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
Manifest number: 117A
Signing time: Fri 17 May 2024 16:01:48 +0000
Manifest this update: Fri 17 May 2024 16:01:48 +0000
Manifest next update: Sat 18 May 2024 16:01:48 +0000
Files and hashes: 1: L6y6W2G8Id95CPYXLCHA7N3qZ7M.roa (hash: oLlW1B1zggZoA0t23S/PXyTTfcuxlwAm3gTivnz5i70=)
2: VFhKIZ9vUGbYSO0quWTaiWbUCio.crl (hash: 0YkYyKGmpcQV5kZGvyYn+jfr7A40Ln1TzucCbckwMUQ=)
3: bp4v3JPxpmc4jJzj0hWU3UbTZBs.roa (hash: oFNbrfYinGIF1BJ4GCfR9HRPGxWonSqHVuDhfDKE57g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:c0:0b:05:3e:fb:2b:96:8a:d0:21:09:6f:9b:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54584a219f6f5066d848ed2ab964da8966d40a2a
Validity
Not Before: May 17 16:01:48 2024 GMT
Not After : May 18 16:01:48 2024 GMT
Subject: CN=1237b528f87b36351f896f268a35d0e627168a92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:ac:f8:58:95:00:0c:e9:79:f6:c2:b1:52:25:
40:20:22:8e:96:35:db:c8:2f:9a:74:1f:e6:33:22:
99:64:a7:8f:05:0d:25:f7:5f:3f:a8:83:15:e3:6d:
84:b6:6f:f1:3a:0e:4e:75:e6:f1:8b:3f:19:ed:fb:
ab:f9:1e:0b:fe:e2:0b:42:b3:75:42:2f:5c:09:e7:
51:5d:b9:6e:1a:87:3d:ba:b3:f0:3a:73:fe:79:1f:
a3:7b:0d:d1:70:30:0c:cf:54:e4:90:7b:c8:4e:83:
b2:64:08:a2:81:61:b2:29:4d:5e:f1:c4:d5:d5:4d:
04:0a:f7:01:06:72:4a:44:50:ba:c2:7d:a8:d9:0f:
c8:c2:04:b7:b4:c1:4c:07:2e:3e:d8:2e:bf:e7:01:
4a:47:96:7b:61:a7:09:5e:4f:d9:e9:ed:d5:58:66:
31:5a:37:28:53:c3:6c:90:48:cd:df:16:ce:07:69:
d7:8d:32:fb:18:02:2f:e5:3a:1d:31:65:63:a4:6b:
cf:72:80:33:1f:5f:df:45:28:d3:f8:4c:08:81:b3:
66:f8:7e:97:20:c6:fd:ae:7e:95:df:fd:4d:d4:06:
ac:04:9a:be:ac:21:91:3e:13:a6:ac:c6:20:10:59:
fc:74:72:b3:56:8f:ca:40:54:7f:09:d7:fa:e0:db:
0f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:37:B5:28:F8:7B:36:35:1F:89:6F:26:8A:35:D0:E6:27:16:8A:92
X509v3 Authority Key Identifier:
keyid:54:58:4A:21:9F:6F:50:66:D8:48:ED:2A:B9:64:DA:89:66:D4:0A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:08:12:fc:0b:eb:e0:07:1d:99:e5:e6:f3:f8:a8:27:10:c1:
fa:63:3b:b9:83:3b:78:b1:0e:73:d9:4a:51:3f:50:3b:2a:81:
57:d4:07:1d:06:89:9a:80:42:fd:22:a1:a6:85:68:66:e0:f3:
da:39:3d:5a:d6:4a:cc:2b:04:59:b5:64:ae:6c:2a:ce:42:1b:
85:6b:09:f1:da:1f:e0:35:d9:b2:49:67:92:4d:8c:e2:29:45:
41:11:00:10:bc:22:ec:e8:c1:08:f5:38:d8:42:f7:d9:a5:15:
53:15:44:b5:4d:05:a5:0c:6e:de:33:b3:e3:42:9f:79:d0:44:
80:7b:1e:9d:93:3b:33:6b:72:53:45:da:da:7a:e0:c0:52:a6:
59:82:53:c5:16:4e:ae:c1:ef:32:1f:e6:3b:0a:8b:a2:cb:6b:
6c:f5:51:0f:65:77:7d:d0:13:dd:fa:99:d9:95:70:26:89:3e:
c1:e5:51:ee:4c:48:6d:ac:f5:97:64:dd:06:5b:db:94:a2:4a:
25:ca:2e:28:5f:be:37:e7:a0:55:ed:6f:ba:1f:9c:cf:a2:c2:
91:4a:35:60:78:c6:1f:b0:36:d3:53:45:36:0b:93:12:2f:68:
ad:da:8f:bf:a0:02:35:34:cc:54:5b:b0:e9:98:e8:2a:ec:89:
dd:89:5f:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:17:30 2024 by rpki-client on console-fra.rpki-client.org