Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
File: kUXq2NPxKEQCtvdWFKhyV1A84bw.mft (raw, json)
Hash identifier: FigYoLz31FuZwT9siaIBRhsS793kULylcPNUxAPRsJI=
Subject key identifier: 42:86:AB:0D:A2:AF:FF:9F:94:74:A9:E9:47:FD:31:22:CA:0F:3D:5D
Authority key identifier: 91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
Certificate issuer: /CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Certificate serial: 018F98ABE35DCD8542D49386235E895D9F9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
Manifest number: 0F3A
Signing time: Tue 21 May 2024 01:02:32 +0000
Manifest this update: Tue 21 May 2024 01:02:32 +0000
Manifest next update: Wed 22 May 2024 01:02:32 +0000
Files and hashes: 1: 7gH_SvDbI1yZlOsPvBHhN34RP14.roa (hash: BOmuntwbCzHhITNJG7ctsk77wIJN9fs6Mo2YHXfbZAg=)
2: GSwT5zT5bvwMj_-xAxrfstapxdo.roa (hash: LEyEiAVzllrSp6NUFOD/aw2smssJ7idccBL7YhHn3zQ=)
3: fiB5WWwFcrhstL35ZsbpSygG5W0.roa (hash: BgonEgsdYULHysPGc65YHg7xgFd6b+LUbgis5baV8y4=)
4: kOvO8CR_FX7pVsgJaG4WEow0tck.roa (hash: x179Uh3yeutyEEuJ423CR/TaAO4vJutHT35xrdoMILs=)
5: kUXq2NPxKEQCtvdWFKhyV1A84bw.crl (hash: +uWSJAIf0IfbaOE6kwUPBIk69KHB+TVDM6uRsElx5ZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 01:02:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:98:ab:e3:5d:cd:85:42:d4:93:86:23:5e:89:5d:9f:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Validity
Not Before: May 21 01:02:32 2024 GMT
Not After : May 22 01:02:32 2024 GMT
Subject: CN=4286ab0da2afff9f9474a9e947fd3122ca0f3d5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:07:eb:b4:4a:d6:f2:5f:aa:81:3e:c7:6d:08:
18:93:1f:2d:a4:4e:43:65:33:b1:bc:c7:67:78:fd:
91:86:36:0f:e1:ad:c6:6e:bb:dc:83:09:18:a3:24:
9b:4a:fc:7c:ef:59:03:ed:ff:e4:be:53:9a:a4:a4:
14:d7:29:20:26:30:4d:14:32:4b:d5:55:1a:de:69:
d4:3c:f4:76:38:ab:1b:a0:a0:0f:78:7e:ee:75:75:
c4:2a:a7:7d:a4:0d:f8:d3:91:07:b3:94:14:62:44:
16:f1:38:02:6f:d1:07:66:fe:53:d9:f1:de:d6:46:
8c:c2:4c:18:f6:71:a4:da:f7:3c:c9:80:f3:8c:e0:
95:6c:17:4e:e1:ba:b4:86:51:bb:3d:69:3d:6e:23:
de:d3:c4:dd:0b:1a:01:c1:ca:a5:02:53:1c:5f:ce:
20:8a:b6:0e:a3:c1:9f:89:f7:d3:11:2c:2d:f9:62:
73:da:2b:b6:0d:60:6f:08:6f:fa:ee:42:54:85:41:
9c:00:2c:0e:8b:47:4c:79:96:1b:50:3f:10:e1:59:
ce:db:0b:7c:fe:6f:08:23:09:c2:73:22:53:ce:31:
b6:d2:7d:50:3d:e2:bb:a7:f1:d1:25:98:19:85:1e:
0b:49:b5:ca:84:77:fb:db:16:0b:99:d4:e4:aa:3a:
53:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:86:AB:0D:A2:AF:FF:9F:94:74:A9:E9:47:FD:31:22:CA:0F:3D:5D
X509v3 Authority Key Identifier:
keyid:91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:4a:fa:cf:b3:51:88:76:40:4b:df:2d:44:72:c4:b8:6e:87:
ed:03:e4:ff:49:fe:91:dd:83:b2:0b:48:7a:8d:e9:f9:b4:d3:
0b:63:48:21:aa:2b:2e:c3:66:a1:84:2d:c0:5a:45:fa:7e:c8:
ea:ab:94:75:18:34:bd:49:3a:cd:21:f1:b3:c0:c7:fa:16:60:
49:ac:40:cd:32:b8:b2:54:87:0f:54:da:a9:ec:81:af:63:ee:
9a:b2:2b:00:22:6b:b7:5d:b2:39:20:03:02:c5:cf:89:27:92:
23:55:3f:0a:28:f0:8d:ca:63:f8:4d:a4:80:fe:c7:fb:4e:e5:
ca:df:37:5e:3e:a0:54:05:e9:6e:2b:1c:9a:97:d9:f2:b0:d3:
63:22:dc:89:bb:4c:7f:62:20:31:8d:28:e1:d2:70:2f:db:74:
e6:09:e2:78:49:1a:4c:27:c3:db:c5:e4:7a:73:7a:07:3e:80:
cf:a3:85:76:53:39:95:17:eb:d8:c3:d7:d7:ce:e8:ef:48:04:
d2:27:db:39:6a:11:21:ac:5a:9b:d5:c1:2b:fa:1c:d1:c5:27:
9c:78:c1:e7:0f:38:b4:d4:24:33:63:bc:45:09:14:36:3e:72:
19:5c:a2:27:30:79:3b:d9:3f:c9:d8:49:ad:0a:4b:69:5c:1f:
8b:a6:7e:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 06:46:00 2024 by rpki-client on console-fra.rpki-client.org