Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft
File: rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft (raw, json)
Hash identifier: VVxp4f4V8nIJ90/O2q7ZiLEkoMPrsA5xduWuWpVqJnk=
Subject key identifier: AD:15:71:C3:C2:3E:38:1F:0D:33:AC:24:43:8B:76:C6:23:9B:D8:76
Authority key identifier: AC:08:81:5E:8C:65:03:60:1F:25:4C:AB:37:1B:EC:47:1B:D7:EA:A6
Certificate issuer: /CN=ac08815e8c6503601f254cab371bec471bd7eaa6
Certificate serial: 018F8749C088E44E42126262A4B2F0CCA642
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rAiBXoxlA2AfJUyrNxvsRxvX6qY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft
Manifest number: 0586
Signing time: Fri 17 May 2024 16:01:48 +0000
Manifest this update: Fri 17 May 2024 16:01:48 +0000
Manifest next update: Sat 18 May 2024 16:01:48 +0000
Files and hashes: 1: iHgd1zezjt9_MfnMXWr7BDtlSCc.roa (hash: aZ7uOrpvdOe/tmS1CIT4VYfXiHP5SesjVsiFy3Lucok=)
2: rAiBXoxlA2AfJUyrNxvsRxvX6qY.crl (hash: xQD5wLAalh8VgWvPCdtoFX4HnXPwr6duyyZmnD8zKw0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rAiBXoxlA2AfJUyrNxvsRxvX6qY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:c0:88:e4:4e:42:12:62:62:a4:b2:f0:cc:a6:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac08815e8c6503601f254cab371bec471bd7eaa6
Validity
Not Before: May 17 16:01:48 2024 GMT
Not After : May 18 16:01:48 2024 GMT
Subject: CN=ad1571c3c23e381f0d33ac24438b76c6239bd876
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9f:28:a4:fe:bf:62:e4:fe:2a:82:6f:1f:28:
57:dd:7b:fd:2c:a4:5c:7e:6d:23:b6:59:23:b9:2f:
82:aa:a9:3e:eb:c2:25:68:f1:ee:a4:2e:27:4f:7e:
22:e0:cb:c7:d6:ab:03:35:36:5a:1c:61:08:a8:96:
07:e6:46:e8:e7:9a:a9:82:9c:9e:43:13:ba:00:8b:
04:89:44:46:e2:0e:75:5c:a1:0a:c2:6c:b4:e5:3a:
22:3f:db:fd:92:bd:e4:44:59:a4:ec:36:92:81:27:
f0:3a:d8:b9:bd:8d:99:21:5e:d4:c7:63:ef:fa:80:
14:4b:c2:a4:1b:df:0a:c9:e1:52:15:64:2a:9e:80:
8a:b0:54:38:19:8d:3a:82:52:5d:68:cd:39:a4:aa:
0c:63:2e:75:19:73:33:5f:62:e7:c4:f4:2a:7b:b6:
fa:2e:35:6e:8f:9d:e2:01:f6:91:b7:45:3a:a7:cf:
40:b5:ca:35:38:a0:74:ea:4c:58:29:f7:fc:2a:a2:
c7:ce:cf:2a:fa:94:0a:9a:a2:f7:cd:54:d8:b7:4c:
81:ec:a8:bb:01:d2:aa:d4:9d:42:37:ed:3c:e8:ba:
ff:d8:e4:19:3b:4b:7d:24:a9:ba:3f:cc:03:8b:3f:
84:c9:25:eb:08:42:9c:77:92:7f:78:82:6a:d4:59:
9b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:15:71:C3:C2:3E:38:1F:0D:33:AC:24:43:8B:76:C6:23:9B:D8:76
X509v3 Authority Key Identifier:
keyid:AC:08:81:5E:8C:65:03:60:1F:25:4C:AB:37:1B:EC:47:1B:D7:EA:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rAiBXoxlA2AfJUyrNxvsRxvX6qY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d6:db:4d:8b:23:ff:c9:92:54:54:78:7c:de:b4:6b:d0:63:75:
85:9e:f2:a9:ec:d8:a5:5c:63:ff:db:64:70:3e:4c:40:7b:97:
2f:b5:dc:b6:86:61:05:85:f8:98:40:90:45:22:85:b5:a9:87:
58:20:39:44:2b:ee:b6:54:5d:33:b1:e7:de:5d:58:e2:8c:d3:
bd:28:f6:d7:51:94:77:e7:4f:e7:f1:49:06:92:10:e6:01:a2:
1b:aa:54:59:fb:7e:72:93:bd:28:46:77:6c:61:a4:5f:dc:a7:
1b:35:8e:b6:7e:7e:55:e9:1d:20:f0:57:4f:11:d7:74:62:99:
95:3a:6a:be:dc:95:ba:69:fb:49:10:95:cd:a2:07:20:67:a2:
7e:35:77:28:1a:ee:39:24:39:37:f7:38:d9:95:41:b6:73:31:
77:fc:48:ed:7a:81:64:79:83:b6:e4:c0:bb:1d:80:4d:8e:7f:
4a:4b:6f:74:0d:db:49:90:cc:b0:dc:55:ad:1c:76:19:5f:10:
f2:75:90:6d:57:77:7d:41:10:67:4a:34:0f:e8:7e:3f:c1:24:
af:22:6f:ca:c4:88:67:ec:1b:1c:24:aa:51:a0:db:42:c9:ae:
e2:5f:e9:0b:6f:4e:b9:ab:f9:62:2b:3c:a2:eb:68:57:95:75:
84:20:31:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 01:49:23 2024 by rpki-client on console-fra.rpki-client.org