Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json)
Hash identifier: JOO5RYrYvMGdq8atNK+h/hZDahOdFeOp77CNVxmJMos=
Subject key identifier: F1:0E:02:03:E0:BA:15:28:38:98:6D:C6:8A:A0:DC:18:ED:B2:DC:50
Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Certificate serial: 018F96BD53B049B0F30E5292342CE728E237
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
Manifest number: 117F
Signing time: Mon 20 May 2024 16:02:21 +0000
Manifest this update: Mon 20 May 2024 16:02:21 +0000
Manifest next update: Tue 21 May 2024 16:02:21 +0000
Files and hashes: 1: ayTnCuIgW_KM8gBrtyPZ-WSV0H0.roa (hash: ynyYOCw6pfFAD6LdYSaDG+TP6cNfj6f3cai8ODPWb6k=)
2: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: 04Jlg47xjom6lKPrF6lD1bceiKzDbeS5N6jaxj/cSBc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 16:02:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:96:bd:53:b0:49:b0:f3:0e:52:92:34:2c:e7:28:e2:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Validity
Not Before: May 20 16:02:21 2024 GMT
Not After : May 21 16:02:21 2024 GMT
Subject: CN=f10e0203e0ba152838986dc68aa0dc18edb2dc50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:00:2e:5a:79:da:75:b5:fd:23:7c:ba:76:15:
29:74:cc:3f:96:b7:08:3f:e3:b7:de:92:8b:76:b4:
0d:29:48:7c:64:da:96:a8:13:3a:7b:6e:d5:46:74:
cf:39:3a:f5:a9:fb:72:ff:cc:74:5e:16:b6:5b:29:
2b:06:9c:e8:5a:93:29:fb:6e:8f:c8:76:65:5c:a6:
12:bb:96:74:d9:3e:78:6c:b1:4d:77:11:57:81:6c:
cf:95:07:e7:04:c3:c0:a2:29:93:6f:01:2c:ee:4c:
bd:79:80:0e:23:f4:40:2f:2a:7a:fb:87:e8:04:1c:
1b:3c:8d:45:62:d0:a6:62:8c:e7:06:21:c0:ba:5d:
e1:7d:bb:9f:6e:37:d1:a9:8c:b5:85:7a:2c:96:df:
33:f4:b5:f3:22:90:77:53:0f:f7:16:ce:0c:42:04:
c6:7a:03:ce:b2:03:db:3c:96:f4:37:24:b0:f6:a3:
00:8e:e7:92:12:a2:a1:e7:35:a4:3d:27:d1:f2:7c:
bf:34:e2:90:e1:3c:35:67:cd:e0:e7:0f:fc:82:c5:
34:90:fd:82:be:4e:41:2c:8d:cd:0f:09:96:d5:db:
44:81:f1:4d:8b:84:c5:e6:b7:65:84:e6:c6:d0:da:
b0:f8:9d:5f:e8:0b:9b:7e:70:b6:06:11:42:04:ee:
17:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:0E:02:03:E0:BA:15:28:38:98:6D:C6:8A:A0:DC:18:ED:B2:DC:50
X509v3 Authority Key Identifier:
keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:1a:43:c7:61:ff:6e:0a:ca:d8:04:fa:33:59:03:72:4e:26:
29:75:0b:5c:bd:1e:91:3b:a8:f0:3c:38:80:d6:f8:91:e8:8d:
06:d2:2c:ba:43:81:25:94:5c:5a:f0:75:d2:ad:07:f5:42:5a:
9f:87:b9:b1:3e:24:b0:4b:14:03:26:09:64:3e:d8:b1:67:5d:
21:9e:1a:7f:cc:87:f4:da:25:03:8e:ce:eb:b4:bc:82:6a:ba:
78:78:9e:b3:58:46:67:58:c3:6e:55:72:53:8e:99:42:22:a5:
37:89:69:2d:09:b6:38:1c:58:18:ed:65:d8:a0:bd:3e:f8:c7:
c0:0d:d4:47:1e:b4:c8:e3:20:d7:81:07:69:af:a0:48:05:80:
fc:6c:2e:91:17:1b:80:9c:64:3a:ea:33:45:48:d0:b4:99:5b:
30:ff:da:f2:74:4a:9b:d1:c4:75:d3:fe:c2:77:f6:e5:02:c9:
1e:66:ab:23:64:6b:1c:71:d9:42:4b:08:4d:4b:06:2c:10:21:
97:60:9f:a5:19:1e:9d:c1:2c:f4:34:00:ef:fc:8e:e1:36:c9:
3a:03:29:a1:99:03:e1:dc:d5:9f:f7:6d:0b:b2:53:8c:a9:3a:
ee:16:9f:23:63:64:70:0d:8a:ea:d3:37:d8:98:90:d1:e5:eb:
d1:e8:3d:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 23:47:47 2024 by rpki-client on console-ams.rpki-client.org