Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.mft
File: MPkNJSCtYZrDBgs5-9LCBOKaKhQ.mft (raw, json)
Hash identifier: MTglqWcCOxrWl4gr3Y3iruOrYVun5JsfSl6Xp4p5Qk0=
Subject key identifier: CC:62:F3:0E:45:5E:20:3B:B1:9F:F2:66:9E:7F:1E:B5:8D:7B:62:54
Authority key identifier: 30:F9:0D:25:20:AD:61:9A:C3:06:0B:39:FB:D2:C2:04:E2:9A:2A:14
Certificate issuer: /CN=30f90d2520ad619ac3060b39fbd2c204e29a2a14
Certificate serial: 018F97973B6CC8643E7AB72C1291B7997647
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.mft
Manifest number: 1180
Signing time: Mon 20 May 2024 20:00:21 +0000
Manifest this update: Mon 20 May 2024 20:00:21 +0000
Manifest next update: Tue 21 May 2024 20:00:21 +0000
Files and hashes: 1: AJCUA3AyBL-DBJuMirtlKLpBu1o.roa (hash: HEZXxGyj4RvHznPF5CmuRPhvWPJeLZ5mLAJQNpndrr0=)
2: MPkNJSCtYZrDBgs5-9LCBOKaKhQ.crl (hash: pJqiU6cIGUPZoTaErL+Cyqh0QbDgpF8N7fDmEv0MSO8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:97:97:3b:6c:c8:64:3e:7a:b7:2c:12:91:b7:99:76:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30f90d2520ad619ac3060b39fbd2c204e29a2a14
Validity
Not Before: May 20 20:00:21 2024 GMT
Not After : May 21 20:00:21 2024 GMT
Subject: CN=cc62f30e455e203bb19ff2669e7f1eb58d7b6254
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6d:84:fc:52:43:b7:48:4d:de:29:c0:5c:ee:
a0:50:51:2f:4c:ed:0a:86:b0:06:cb:fb:95:09:87:
f1:ad:db:9d:7f:a7:94:cc:d6:ca:03:74:ed:f9:0c:
15:a2:44:2a:2b:a1:5e:dc:74:41:3f:30:7b:6f:10:
36:4f:2f:11:fb:14:70:d2:20:ea:7f:dc:b9:92:5d:
b4:20:36:4b:98:2e:0e:e3:1e:e8:5a:23:87:98:ac:
6e:77:c2:2e:c8:9c:7f:8f:fa:59:fc:71:ca:d6:82:
04:24:83:75:98:8a:f0:23:e7:86:49:f0:9a:f4:73:
fe:13:3d:0a:ac:a6:25:b7:eb:21:59:80:5a:34:a1:
5e:6e:af:d7:83:76:6e:37:8d:b3:c7:66:6c:e7:44:
05:fe:28:e7:d5:15:02:de:d1:69:6e:81:0f:da:a9:
10:cb:72:71:fe:5f:23:0c:aa:6a:ae:cb:1f:b1:64:
ac:05:cd:c2:7d:a5:67:41:de:66:4a:c7:f2:ff:87:
6a:8a:04:6b:54:26:51:25:29:a7:b6:1f:5e:23:64:
25:4c:cf:47:49:62:2b:d6:3a:fa:a4:30:e4:78:0b:
79:cb:04:11:af:cc:93:68:cf:20:df:26:56:9f:e6:
d3:81:97:d9:8a:1a:38:74:06:e2:04:17:f6:d5:cd:
1a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:62:F3:0E:45:5E:20:3B:B1:9F:F2:66:9E:7F:1E:B5:8D:7B:62:54
X509v3 Authority Key Identifier:
keyid:30:F9:0D:25:20:AD:61:9A:C3:06:0B:39:FB:D2:C2:04:E2:9A:2A:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:0c:52:b2:66:18:32:64:ce:16:f8:a0:91:ef:73:f8:15:10:
c4:11:50:98:6c:f6:48:82:85:e3:66:bf:1b:e0:c1:dd:be:98:
2f:7f:fd:68:0d:75:6b:17:d8:5d:c7:30:5e:6e:b3:30:d4:2e:
f4:18:50:e5:ab:ea:23:0d:1c:b7:3f:ad:9a:6f:b6:50:34:0e:
f4:4d:ae:70:9b:cc:a5:dc:a9:ab:d8:0a:ec:7f:96:b5:2e:3d:
8d:97:44:b1:50:d6:a3:00:36:08:cf:58:1d:7b:c4:25:98:42:
cc:7c:d6:85:7c:6e:4e:81:63:e5:0c:37:e4:5b:48:7b:13:fc:
24:06:73:28:76:3d:aa:77:c2:9f:6a:56:ff:a9:2a:17:98:c9:
da:04:d8:df:cd:f9:d0:82:a5:25:56:1e:c5:7f:17:cc:36:fc:
48:a6:e3:e9:03:7e:69:c8:4f:47:f5:be:ec:d0:8b:79:eb:d6:
79:f5:6d:26:0a:bb:a2:17:8e:02:0c:64:f7:48:e6:32:9d:36:
8b:1c:8f:0d:4d:92:8c:b7:d1:ed:cb:d9:8e:cd:22:7a:8f:14:
52:e0:9a:3a:4b:86:93:b2:67:0e:9d:e8:40:25:35:5e:b6:91:
32:b2:6b:f2:91:8e:9f:5f:42:cd:9a:8c:dc:8f:36:6e:ab:dd:
49:f9:6e:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 23:47:58 2024 by rpki-client on console-ams.rpki-client.org