Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.mft
File: GhREUllzKqZzbCSCNEZZR_wjdNA.mft (raw, json)
Hash identifier: q4xlOWNT8l4w3asPOcJaVC9zVg4H9k2akvZwFw8JhB0=
Subject key identifier: AB:AA:0F:2C:6F:D0:2E:C7:6E:50:90:35:49:81:06:B1:CF:27:F2:01
Authority key identifier: 1A:14:44:52:59:73:2A:A6:73:6C:24:82:34:46:59:47:FC:23:74:D0
Certificate issuer: /CN=1a14445259732aa6736c248234465947fc2374d0
Certificate serial: 018F351A5D00C2EAFC0D3C04B989B17919ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GhREUllzKqZzbCSCNEZZR_wjdNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.mft
Manifest number: 07C1
Signing time: Wed 01 May 2024 17:01:11 +0000
Manifest this update: Wed 01 May 2024 17:01:11 +0000
Manifest next update: Thu 02 May 2024 17:01:11 +0000
Files and hashes: 1: 0OJ7Qu4Jyx7Xntnd4SaAQRweTto.roa (hash: RIuX6m6UM7A9gxQybj15PH31/iGL7sX6qIz79N2AggY=)
2: ByrrdG2GIG14EAdUL2tMo5-7tn8.roa (hash: LUlI1S38afn0kq38yINuAjzvFMkZgon59PwsU/8i8hc=)
3: GhREUllzKqZzbCSCNEZZR_wjdNA.crl (hash: YHtxQ8ugQTZxYNm4Ssy+qM+8Ro02t6Xk64O4+ROgZtA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/GhREUllzKqZzbCSCNEZZR_wjdNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 14:46:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:35:1a:5d:00:c2:ea:fc:0d:3c:04:b9:89:b1:79:19:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a14445259732aa6736c248234465947fc2374d0
Validity
Not Before: May 1 17:01:11 2024 GMT
Not After : May 2 17:01:11 2024 GMT
Subject: CN=abaa0f2c6fd02ec76e509035498106b1cf27f201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ff:32:aa:85:2c:ca:1d:b9:b6:11:28:0f:21:
65:b0:1c:30:57:f0:f0:33:14:47:5d:f6:2e:97:04:
57:03:86:e6:2f:f7:b6:9b:70:a9:2c:0d:03:b8:8c:
12:29:ef:91:c6:c8:19:4a:5b:65:ce:8a:44:81:f4:
a4:5a:b1:01:d5:7d:e6:42:bf:9f:56:53:68:b8:67:
e5:52:b5:4d:8c:67:b5:e5:e8:b8:1f:d3:9a:c3:af:
88:16:63:95:28:a5:d2:ca:23:e1:93:ee:7b:3d:1e:
4c:1a:24:01:dc:e6:57:5d:fc:d8:b4:a5:37:5a:b5:
47:91:54:58:ad:21:8e:ab:44:d8:3f:56:30:da:2a:
45:56:ed:a4:26:f0:19:fd:23:67:4c:5f:bc:e4:c5:
22:4e:3a:c9:f4:55:58:e5:39:97:0d:a5:73:de:9b:
51:3d:ed:8b:1a:bf:69:66:b8:53:dd:00:0c:5e:ed:
2e:67:47:a7:c2:50:73:dd:49:30:a2:bb:3e:05:f7:
16:df:f0:3c:90:83:69:01:a4:bc:d7:0e:7f:ee:d2:
38:ab:13:82:43:6d:4a:d3:e0:4f:c9:7e:bb:9b:e7:
ed:8c:dd:0d:d8:1a:28:f8:d2:08:11:a6:56:cd:30:
3e:b6:0b:39:5f:cc:8d:04:52:37:3d:3a:a3:9b:b7:
e0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:AA:0F:2C:6F:D0:2E:C7:6E:50:90:35:49:81:06:B1:CF:27:F2:01
X509v3 Authority Key Identifier:
keyid:1A:14:44:52:59:73:2A:A6:73:6C:24:82:34:46:59:47:FC:23:74:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GhREUllzKqZzbCSCNEZZR_wjdNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:b7:12:ba:e0:b0:50:ff:dd:52:42:66:4b:d8:e5:20:c7:5b:
2e:eb:69:11:46:64:5a:e7:ef:47:1d:c6:cb:7c:6d:ee:dd:c9:
4f:0b:38:02:81:e1:e3:19:fb:c3:27:ab:46:b7:b6:81:50:04:
c0:38:36:03:b3:71:90:3e:93:0d:a9:b6:e9:26:b4:77:0f:68:
d0:5e:b0:77:2c:1c:80:a5:2c:18:98:06:72:be:5a:3a:c9:cf:
98:bc:ca:67:b8:48:89:4a:dd:97:57:4b:d4:a4:95:8a:b0:ae:
02:10:c9:a6:b0:1c:42:b1:f4:3a:5a:9b:4f:e7:45:44:cf:64:
0c:0a:e4:2f:33:45:19:4b:c4:e8:e6:15:99:e1:5b:04:b6:0b:
8d:6f:37:4c:4d:ce:e6:19:20:70:69:75:f4:ad:30:94:0d:1b:
46:cd:15:64:b2:a5:85:b2:04:a3:3f:1e:91:dd:68:51:0b:25:
40:d8:b3:4e:69:f0:6d:1e:ec:48:2d:94:c2:cd:d7:56:fb:15:
63:f5:25:5a:68:66:77:0a:cf:31:ae:e6:0c:ef:90:52:54:6b:
fb:12:35:4b:7f:5a:83:d4:c4:bd:6e:c9:0c:cc:c2:09:cf:11:
39:56:3e:61:11:a2:ce:7e:6f:79:45:e2:0b:f1:3a:d4:1f:77:
ce:3d:25:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 18:30:59 2024 by rpki-client on console-ams.rpki-client.org