Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
File: aNLCXQU0pAJ8aVViqM5PABzVOW8.mft (raw, json)
Hash identifier: fJyomx03PWrbLVCCRbhSJveeP3wdkfuHUCw4Ca3cIyY=
Subject key identifier: 3E:5D:A0:F9:F9:58:71:5D:EB:42:27:9B:BB:38:F0:45:2C:11:5A:5E
Authority key identifier: 68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F
Certificate issuer: /CN=68d2c25d0534a4027c695562a8ce4f001cd5396f
Certificate serial: 018F874A085E0AC2B365A4EFF0969A733447
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
Manifest number: 0DCB
Signing time: Fri 17 May 2024 16:02:06 +0000
Manifest this update: Fri 17 May 2024 16:02:06 +0000
Manifest next update: Sat 18 May 2024 16:02:06 +0000
Files and hashes: 1: XmWa13T8G0mThMbVX6OFsKizMKg.roa (hash: t4bXwdh0arSDYp8wEDy4OePbCm3GapwJgRC153s9vl4=)
2: aNLCXQU0pAJ8aVViqM5PABzVOW8.crl (hash: 4HzPq6zET/WLiX7pcYxnapY0/xTVjoqfgUZaztqvhmI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:08:5e:0a:c2:b3:65:a4:ef:f0:96:9a:73:34:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d2c25d0534a4027c695562a8ce4f001cd5396f
Validity
Not Before: May 17 16:02:06 2024 GMT
Not After : May 18 16:02:06 2024 GMT
Subject: CN=3e5da0f9f958715deb42279bbb38f0452c115a5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f2:90:c1:14:9e:2b:bf:63:47:97:13:37:9c:
b2:44:74:01:06:8e:3c:16:ac:2a:86:e7:95:2c:cb:
04:83:45:a4:da:cc:fe:ca:da:cf:9b:5e:62:f7:d4:
6c:8c:bc:00:20:05:00:9e:75:41:0b:df:cb:4c:69:
53:c0:43:7f:97:5c:80:3b:c7:f6:a4:ce:9e:04:79:
0b:a3:ed:b0:8a:71:f1:1c:87:c3:03:3e:d6:4f:a4:
d1:ca:52:72:c0:1e:96:2b:dc:a1:e7:1c:25:c6:43:
05:f8:72:af:27:33:4c:c9:f1:80:28:c9:e3:36:e8:
8b:1a:05:dc:f5:83:f1:d0:77:33:b1:00:ba:cb:8e:
7d:50:da:e1:0c:61:a7:29:64:ce:df:22:34:36:ee:
92:69:d6:c1:d0:4e:2d:0a:71:41:ea:05:ac:a1:6e:
5b:33:76:2f:61:2f:54:5e:28:9c:c8:fd:b4:88:45:
0a:94:db:a9:c3:a0:c3:3e:c5:62:5b:b2:02:7d:dd:
8e:14:f0:d4:ef:ed:05:cf:e6:35:75:a6:58:72:3a:
b2:d2:cf:bb:06:94:8f:5e:10:ae:af:31:e1:f1:b6:
9e:64:e4:15:33:ef:6a:05:1d:34:48:13:a0:e6:91:
d7:18:1f:c1:e5:2a:9e:59:e8:3e:6b:86:1a:18:79:
66:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:5D:A0:F9:F9:58:71:5D:EB:42:27:9B:BB:38:F0:45:2C:11:5A:5E
X509v3 Authority Key Identifier:
keyid:68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:50:a2:5a:fb:43:c4:cf:c4:89:07:15:24:65:e8:ed:fa:a3:
9e:c2:1f:91:e8:9d:bc:0d:1b:d9:5d:b0:64:62:23:6f:37:35:
6b:f4:76:9a:ca:d9:fd:12:ee:1f:16:b1:13:84:42:4e:13:5c:
67:88:72:ee:1f:60:a7:6e:af:b6:8f:25:02:cd:7c:19:fa:43:
93:f6:f5:61:ea:06:c8:f9:8e:0d:22:85:ea:e0:72:4e:63:d4:
b5:c1:1a:40:14:f3:72:28:68:70:3d:fb:3d:9b:2d:d4:bf:1c:
52:05:43:97:47:84:3b:fc:8d:8b:18:66:f5:1b:19:ec:f7:56:
b0:19:53:21:bb:38:ae:7f:d2:29:17:1b:00:c6:f2:a5:1a:e4:
68:43:89:e5:b1:02:ec:59:bf:29:f5:77:68:58:86:99:13:81:
f3:08:8c:77:d1:d5:86:61:c7:73:93:55:17:f9:e9:08:53:4d:
27:76:c5:89:89:eb:e8:ac:a5:b8:96:b2:4e:93:e5:8f:4f:42:
6d:11:da:c5:24:bb:3e:17:e9:45:4b:38:87:d9:e8:f8:6b:db:
91:0b:4a:6b:f1:b9:91:e4:2d:66:fc:f1:36:0a:9a:ba:71:b4:
61:36:d9:1b:5f:47:f4:23:94:dd:6e:c0:e2:6b:ab:66:ba:e6:
80:10:4a:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 23:36:33 2024 by rpki-client on console-fra.rpki-client.org