Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
File: CtBt0nvZOjgNpMddGovwdoKP1ko.mft (raw, json)
Hash identifier: Deo1ll8Cmnoz0UlSzUHkA8pKbgvTADgGKCkxXPF1sR4=
Subject key identifier: 32:22:9A:B7:F9:D8:BD:0B:A9:00:22:82:76:7A:EC:18:3D:19:4E:AC
Authority key identifier: 0A:D0:6D:D2:7B:D9:3A:38:0D:A4:C7:5D:1A:8B:F0:76:82:8F:D6:4A
Certificate issuer: /CN=0ad06dd27bd93a380da4c75d1a8bf076828fd64a
Certificate serial: 018F2C863FD8C9CA339475C4C29D93461341
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
Manifest number: 0441
Signing time: Tue 30 Apr 2024 01:02:26 +0000
Manifest this update: Tue 30 Apr 2024 01:02:26 +0000
Manifest next update: Wed 01 May 2024 01:02:26 +0000
Files and hashes: 1: CtBt0nvZOjgNpMddGovwdoKP1ko.crl (hash: Jv9ZU+lEUDOwo0sJi+BMAttWfY13KhBfUj6PFowBk5A=)
2: a15lA5D1OLi34X1OMtCk0WVlPLk.roa (hash: UIn8uAzaSigNOyDqUMWlXhx3m4Rpkc8kOYoLnoeBanw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 May 2024 01:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:2c:86:3f:d8:c9:ca:33:94:75:c4:c2:9d:93:46:13:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ad06dd27bd93a380da4c75d1a8bf076828fd64a
Validity
Not Before: Apr 30 01:02:26 2024 GMT
Not After : May 1 01:02:26 2024 GMT
Subject: CN=32229ab7f9d8bd0ba9002282767aec183d194eac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:bb:98:ef:42:6f:af:24:ba:49:65:6e:72:01:
cd:79:38:6c:8d:49:5c:1c:d8:e6:0b:d9:3e:e8:b8:
21:cc:58:70:83:cd:18:f5:a0:99:e7:f2:b4:37:f9:
72:fe:a9:29:75:23:64:34:c2:8b:57:d3:a3:95:8d:
07:6e:ed:bf:49:4c:ad:7a:1b:8d:42:fd:14:5e:f4:
ec:a3:8f:bb:29:9c:96:ae:9a:9e:17:8e:a2:a5:d9:
e6:f3:39:1e:50:d3:98:8f:eb:52:5f:0c:00:40:b2:
2e:76:84:cf:57:c9:d8:4b:79:94:93:77:a6:08:dd:
13:c2:35:19:58:e0:72:84:61:eb:1e:3b:10:6a:7c:
a1:4c:26:18:3d:f4:4f:a9:c7:50:60:f9:77:e5:54:
01:08:70:f1:47:10:6d:94:15:4a:26:18:e0:45:4e:
6f:f1:84:c2:98:4b:e5:38:9d:d9:b2:e7:6b:41:ca:
0d:52:e1:46:fe:51:46:f8:f5:c9:42:07:69:82:1c:
8e:54:c0:6c:8b:b9:53:4b:d4:25:da:e3:c6:f6:26:
99:73:9e:7a:c2:e2:78:79:23:38:ba:4e:d8:a4:b4:
d5:24:ad:54:81:3c:9b:40:b7:08:80:c8:a9:bf:00:
e6:bf:0b:e5:5f:79:85:43:d4:73:a1:a1:b2:2c:1d:
2b:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:22:9A:B7:F9:D8:BD:0B:A9:00:22:82:76:7A:EC:18:3D:19:4E:AC
X509v3 Authority Key Identifier:
keyid:0A:D0:6D:D2:7B:D9:3A:38:0D:A4:C7:5D:1A:8B:F0:76:82:8F:D6:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:0b:37:ff:e9:54:5e:17:d4:c6:27:57:c8:c1:5e:b5:89:66:
0d:10:f5:c4:ce:16:80:74:0a:7e:a2:f5:a5:f4:7d:0a:66:c7:
e9:2b:83:39:e6:e6:f0:34:94:10:4a:53:d5:51:1e:3e:34:32:
78:f2:77:d8:8b:80:d3:2d:19:3f:12:96:54:0e:1f:77:92:3a:
31:0f:37:d3:36:f3:9b:a3:86:2c:97:0c:ae:4b:05:d7:6b:ae:
35:39:d9:c6:a7:79:fd:6d:75:e8:09:c5:00:91:c0:37:da:0a:
a6:ed:88:9a:62:55:f8:de:61:55:36:6d:2f:47:e5:87:c4:57:
98:bf:58:7d:a0:f9:2e:e6:66:56:d8:d4:f8:56:ae:4f:2f:a7:
62:9c:03:c4:41:05:5b:ba:a9:48:f5:b0:7c:48:07:58:72:f5:
03:5d:d5:dd:02:e4:7c:e3:4c:17:21:e4:bb:33:e9:1a:fd:ea:
13:93:4d:82:f5:e2:fa:f6:32:d1:71:5d:34:d9:55:e8:0c:9c:
b7:f5:73:9a:19:c3:90:27:31:14:85:8f:91:69:c8:a3:cd:5a:
1f:a3:0a:2b:1b:a8:39:ee:e5:c4:67:4b:98:f9:70:fa:84:af:
fb:e2:47:fa:bc:a4:c7:5c:c2:76:f1:f2:11:c8:2f:5b:59:50:
da:d6:31:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 10:23:08 2024 by rpki-client on console-fra.rpki-client.org