Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
File: Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft (raw, json)
Hash identifier: da1vnjFRFjyxJSRMqThP4l/qF0YBoUjhQKkbRf4ICSQ=
Subject key identifier: DA:38:1E:35:15:0E:5C:0D:43:CB:D8:1E:14:69:95:60:4D:AF:0B:44
Authority key identifier: 63:FA:71:5C:2F:4B:90:08:C8:F4:B6:06:54:F7:F3:C7:63:53:AE:67
Certificate issuer: /CN=63fa715c2f4b9008c8f4b60654f7f3c76353ae67
Certificate serial: 018F86DA62F7DC0D302C575523F7683DBBC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
Manifest number: 04AC
Signing time: Fri 17 May 2024 14:00:09 +0000
Manifest this update: Fri 17 May 2024 14:00:09 +0000
Manifest next update: Sat 18 May 2024 14:00:09 +0000
Files and hashes: 1: Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl (hash: weqlrRXvZCUdBf/D4CT0J2dkFHL8ETHl5DmkQuw3rHw=)
2: bOoREXtlYnAg7vW6xIiKS8u7daE.roa (hash: 7hzzHPRY2rsrpgV5JVxCI6fvofkxsaLgHVcg8lMTGps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 14:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:da:62:f7:dc:0d:30:2c:57:55:23:f7:68:3d:bb:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63fa715c2f4b9008c8f4b60654f7f3c76353ae67
Validity
Not Before: May 17 14:00:09 2024 GMT
Not After : May 18 14:00:09 2024 GMT
Subject: CN=da381e35150e5c0d43cbd81e146995604daf0b44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e1:60:f4:7a:6b:79:76:eb:95:8d:81:1d:8c:
e5:d0:75:73:8d:92:0e:b6:59:58:c8:e4:ac:ea:c6:
7b:b6:18:3b:a8:fd:bb:89:3d:cc:90:94:91:5a:37:
cb:3f:2b:5e:e3:47:c4:df:c8:4b:38:55:1d:86:24:
16:ff:ba:56:df:6c:92:77:0e:44:52:f7:e2:93:f0:
da:7f:14:94:da:fd:e0:be:3e:5b:05:ae:13:71:94:
1f:68:49:38:6e:b4:59:fa:c5:1b:01:1e:87:f8:e3:
17:1d:be:3d:70:dd:88:ee:4b:ee:62:64:49:1f:f1:
44:c0:10:56:1d:d1:69:a4:65:e9:30:b9:78:de:cb:
62:a5:8d:de:df:72:d2:97:c0:3a:a1:39:72:42:c4:
25:4a:5e:78:49:cc:fe:69:00:79:42:dd:50:9a:47:
26:5f:c9:26:4a:82:35:00:1b:59:4b:80:b2:12:48:
e6:11:c4:37:e5:78:d5:30:71:ea:7d:3c:32:92:22:
a1:8d:ce:cd:88:43:e8:59:3a:c8:76:96:b5:08:17:
2e:8d:99:fd:85:28:42:70:f3:2d:52:21:7e:0e:5b:
cc:9c:d9:ef:42:d7:1e:f0:bd:f1:82:a4:5f:65:de:
9e:a3:b1:1a:23:7b:26:98:98:03:f9:e2:c4:1c:98:
69:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:38:1E:35:15:0E:5C:0D:43:CB:D8:1E:14:69:95:60:4D:AF:0B:44
X509v3 Authority Key Identifier:
keyid:63:FA:71:5C:2F:4B:90:08:C8:F4:B6:06:54:F7:F3:C7:63:53:AE:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:c8:ca:80:ee:79:a9:68:22:fc:e0:45:a1:6c:fe:b9:0a:b9:
d2:45:6e:20:7a:3c:0b:ee:16:7f:bd:c5:d8:04:c1:fd:6a:b8:
9c:71:e6:7b:70:c1:19:ce:7a:c1:4d:3e:de:19:7a:3d:8b:01:
f1:e3:44:b7:e7:1a:11:cc:e3:05:7a:9f:00:1e:fa:7b:65:8b:
b8:b6:4b:93:d8:2e:3b:cd:f7:46:e5:e9:e5:78:8c:ae:a3:33:
42:cd:f6:44:08:6f:9a:4c:bb:f9:b2:50:02:3c:66:7f:88:ed:
1e:f7:c6:5e:f3:5b:d0:27:d1:36:f4:45:61:2a:34:2b:b5:32:
47:68:59:a9:da:a5:c6:bb:a8:48:30:6a:a5:ca:8c:7e:0b:fc:
05:a6:66:0d:e1:da:d1:3e:b1:83:bc:d0:11:c2:1e:05:6e:3d:
e0:9f:9e:d3:75:b2:67:e8:26:ca:89:cc:bd:79:d3:34:4c:f6:
7a:17:71:38:29:79:dc:87:25:db:09:b6:07:e5:80:83:a7:de:
04:51:ca:a1:e6:78:03:78:de:b9:29:9d:b2:8d:c6:68:a6:bf:
18:e9:4d:8a:f3:0f:e9:55:bf:68:46:c2:2f:c0:b2:0f:7f:93:
99:4c:c7:90:da:b1:ae:45:7d:62:ec:0f:e9:95:55:b4:31:b2:
e5:33:fc:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:18:03 2024 by rpki-client on console-fra.rpki-client.org