Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.mft
File: 1GRmfDSn27AvBTC85ILRGtQkh70.mft (raw, json)
Hash identifier: du/tkLWuQEqAeKAF5T+02cBd7EXfaHgjX+h1Exnkv/I=
Subject key identifier: 25:D4:69:8D:9C:EE:2C:F2:86:11:DB:54:B9:D6:AA:4D:A7:B6:7C:2C
Authority key identifier: D4:64:66:7C:34:A7:DB:B0:2F:05:30:BC:E4:82:D1:1A:D4:24:87:BD
Certificate issuer: /CN=d464667c34a7dbb02f0530bce482d11ad42487bd
Certificate serial: 018F4F48D1FE834B357EF7E81C86EC7987B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GRmfDSn27AvBTC85ILRGtQkh70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.mft
Manifest number: 0445
Signing time: Mon 06 May 2024 19:02:03 +0000
Manifest this update: Mon 06 May 2024 19:02:03 +0000
Manifest next update: Tue 07 May 2024 19:02:03 +0000
Files and hashes: 1: 1GRmfDSn27AvBTC85ILRGtQkh70.crl (hash: xzrnJ92aWbC1wy+iHHlhRVizkyWkjsD0E3fzlYq1/YE=)
2: XaLl8g7MOwSP0WY8qbR7rXaFu8w.roa (hash: XLX/f/GXExgzx40FKm6qmH9U/mv4+bHLTyGKgib9nDA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GRmfDSn27AvBTC85ILRGtQkh70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4f:48:d1:fe:83:4b:35:7e:f7:e8:1c:86:ec:79:87:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d464667c34a7dbb02f0530bce482d11ad42487bd
Validity
Not Before: May 6 19:02:03 2024 GMT
Not After : May 7 19:02:03 2024 GMT
Subject: CN=25d4698d9cee2cf28611db54b9d6aa4da7b67c2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:7e:fb:23:75:a3:f6:6d:55:37:ed:92:6a:2a:
19:35:58:b1:ef:71:47:ba:c9:cd:0d:f7:1f:19:e0:
51:69:7b:15:f6:6a:1a:55:79:35:16:ab:83:4b:3d:
2f:36:78:0e:ab:35:02:ab:53:0a:fb:03:d4:a3:6c:
e3:17:d1:9f:88:b4:92:04:a3:7e:b8:7d:a9:e9:1e:
1d:90:f0:c1:0b:22:d4:9d:3a:ee:10:a7:de:09:cf:
ff:b9:dc:b3:e0:23:ec:ef:b1:2d:31:bd:2f:e6:c6:
d9:5d:d8:ee:4b:de:0e:57:c7:fc:c8:b3:9f:07:c7:
b0:5c:54:1e:6f:d9:15:ba:f8:12:7b:58:04:7e:25:
c7:c1:03:73:b3:92:1a:b9:f1:e2:24:45:22:93:36:
e3:ca:89:4a:d5:39:9d:63:bf:63:be:4d:0e:2f:56:
21:08:87:41:1f:c4:65:43:fd:8c:43:47:25:dd:fa:
bc:3e:3c:90:46:0d:ee:a3:be:46:9e:07:b4:0e:8f:
93:a8:a8:cc:af:02:35:48:30:47:d4:ff:8c:cb:76:
b8:04:6a:15:a0:7a:be:99:bb:ac:84:55:da:84:89:
05:02:d3:68:d6:7e:c1:d2:77:47:fc:6f:78:c2:2d:
3e:bc:ac:58:2b:4d:89:a8:1a:73:db:a7:02:4d:19:
e3:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D4:69:8D:9C:EE:2C:F2:86:11:DB:54:B9:D6:AA:4D:A7:B6:7C:2C
X509v3 Authority Key Identifier:
keyid:D4:64:66:7C:34:A7:DB:B0:2F:05:30:BC:E4:82:D1:1A:D4:24:87:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GRmfDSn27AvBTC85ILRGtQkh70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:0c:ff:66:5f:12:e1:51:47:85:1d:76:03:5e:a1:a9:90:cd:
74:7f:39:10:24:c4:9e:03:9a:97:04:96:4d:a8:38:9b:63:c1:
93:c2:68:37:39:65:5d:6a:bb:67:5c:69:2a:4c:3e:b0:7e:8b:
0e:45:8d:79:f4:53:4d:70:2a:35:0d:59:20:ea:23:a1:4a:29:
4a:0d:d5:26:f9:e5:67:26:c0:ff:f5:99:d2:4d:72:73:8f:04:
6a:bb:7b:ac:0d:ef:2b:6a:85:ca:7b:c9:e8:85:2d:65:28:5e:
8c:e2:23:9e:0d:d8:8b:45:a9:0b:91:a3:cc:39:f3:3c:9c:88:
d1:da:00:49:e0:f7:d2:03:87:52:7e:18:ae:a2:58:3f:45:08:
c2:27:59:54:c2:f9:6f:e8:dc:ea:3d:ac:f1:ec:57:84:1c:e2:
20:bf:cb:7c:76:a1:d3:ca:af:51:c7:15:ed:b8:58:7b:3f:8a:
76:66:75:17:c7:31:b5:04:ac:09:74:1c:2f:f7:d2:c0:5e:04:
ec:43:4d:22:48:92:56:3a:b2:4b:3b:af:fd:8b:c9:54:b8:55:
df:bb:98:3e:5d:01:27:3a:4b:48:6c:e5:d2:6d:80:ec:b8:98:
da:6e:df:58:0c:16:f1:c6:28:1a:a7:b2:dc:71:2d:ff:cb:f8:
17:0a:7d:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 20:34:25 2024 by rpki-client on console-ams.rpki-client.org