Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
File: 0jtkd-HIT1KQfNYMY-qD715Kx4I.mft (raw, json)
Hash identifier: zwk6Ms7Cw7MqWX2UcEb+sDLKTA6++IW8UVmQ4QkNZ7E=
Subject key identifier: 9C:1E:76:ED:03:78:E0:44:26:EC:B9:85:22:D4:4D:4E:02:F6:81:BD
Authority key identifier: D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82
Certificate issuer: /CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782
Certificate serial: 018F4FB6120B1767878D80FBB5F08D26EBE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
Manifest number: 04A7
Signing time: Mon 06 May 2024 21:01:23 +0000
Manifest this update: Mon 06 May 2024 21:01:23 +0000
Manifest next update: Tue 07 May 2024 21:01:23 +0000
Files and hashes: 1: 0jtkd-HIT1KQfNYMY-qD715Kx4I.crl (hash: WwVybhVnueSq94wPfgWazTLjvtElhqQIfbg5oN2yGE8=)
2: Ulvl40-jwIkAlBIvkCaF-OyibbE.roa (hash: IJ/wnlhUpehRsgnOjRyD3Fof5LjyHzD92RCdoIKJSr0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4f:b6:12:0b:17:67:87:8d:80:fb:b5:f0:8d:26:eb:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782
Validity
Not Before: May 6 21:01:23 2024 GMT
Not After : May 7 21:01:23 2024 GMT
Subject: CN=9c1e76ed0378e04426ecb98522d44d4e02f681bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:96:a9:ee:20:78:24:01:bd:21:a4:4e:e8:50:
66:f1:6d:85:9d:6a:4c:ba:55:e1:45:12:0d:c4:47:
15:78:73:e0:9f:bd:65:c2:ba:df:db:7a:b3:da:97:
2d:bd:8c:d2:20:17:14:ed:8c:2c:9f:bd:25:f3:3c:
8a:6f:c7:80:ba:e1:2a:25:5f:ad:0d:d0:a7:45:0d:
e7:2f:c0:2c:b3:c3:89:4e:36:5a:75:1e:7a:8f:2c:
a3:6a:ed:6a:07:80:86:ab:74:4a:6b:44:af:03:d8:
2d:0c:e9:74:a0:ea:c7:04:60:a0:43:c2:55:33:ac:
25:0c:3a:4b:1b:73:0d:40:ab:86:72:db:0a:09:89:
58:f0:33:75:5f:97:00:74:62:c1:dc:a9:ec:ba:84:
da:91:eb:48:8a:8f:0b:a1:34:11:dc:c1:c9:b0:6e:
a5:e8:d3:fe:b2:19:60:cb:bd:b4:fd:0b:d6:60:e4:
34:cc:98:b7:10:65:c6:e9:03:60:79:69:79:92:68:
8b:00:aa:b1:d7:60:27:ed:31:b9:15:81:30:3c:6d:
31:47:2e:f2:94:96:e6:9a:c9:6d:27:31:69:02:2e:
8d:b7:71:1f:09:42:6f:d8:b3:76:8e:08:f3:c9:33:
9d:14:6b:06:5e:c3:a7:93:86:16:ff:a4:15:b1:44:
d2:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:1E:76:ED:03:78:E0:44:26:EC:B9:85:22:D4:4D:4E:02:F6:81:BD
X509v3 Authority Key Identifier:
keyid:D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:cd:3a:cc:ac:47:a5:f0:93:53:16:91:6c:03:6b:8f:e1:30:
e8:b1:ed:1a:1b:7b:c8:6f:8d:db:88:4d:08:c8:13:c2:ad:5e:
25:52:ed:59:52:a3:35:1d:6a:83:06:08:89:18:e1:1d:84:c0:
bd:16:3a:29:9d:53:92:ed:f9:ce:55:27:5b:2b:ae:76:ca:8d:
fc:4b:ae:a0:db:06:02:1f:63:c4:11:42:d1:80:e7:5f:ec:3b:
f7:2c:7e:bd:ed:53:d9:45:a7:61:16:3d:f0:87:4d:39:f3:f9:
54:ee:e9:49:6b:bf:a3:e5:58:18:98:e4:3a:1f:6c:08:53:5f:
85:f8:cb:be:9a:7e:8e:35:e9:1b:36:49:50:01:c9:30:af:7a:
0e:77:69:64:6a:3a:22:8c:ab:7f:29:c9:eb:7f:5a:fc:94:a9:
fe:57:31:7c:44:99:bc:a6:e4:e8:d1:2e:67:a5:23:ed:20:ee:
dc:b2:23:6b:b0:24:f6:9d:4f:7d:b0:d4:d4:46:f3:11:a5:f4:
08:40:2a:40:42:64:ab:5d:de:89:19:ab:d0:e1:2c:7e:c0:af:
ed:65:2c:b2:f8:06:ca:13:e1:e0:18:ca:06:3a:fa:95:94:ac:
ae:5a:e8:13:82:50:04:e9:21:dd:c1:f3:df:aa:5c:b2:a4:2c:
d5:c0:e6:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 23:23:29 2024 by rpki-client on console-fra.rpki-client.org