Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.mft
File: upfBVFbrYAQD7PuxbCDggWCUT48.mft (raw, json)
Hash identifier: kTbpQkl2AZM+/XRv81QIsMLYGbbhjqFGWrSr4xl2IMQ=
Subject key identifier: 3D:5F:BF:8E:31:A2:D6:AA:54:B1:52:B4:46:08:F6:97:92:A8:2D:62
Authority key identifier: BA:97:C1:54:56:EB:60:04:03:EC:FB:B1:6C:20:E0:81:60:94:4F:8F
Certificate issuer: /CN=ba97c15456eb600403ecfbb16c20e08160944f8f
Certificate serial: 018F874ADDFC479D9467C428EDCD67231F62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upfBVFbrYAQD7PuxbCDggWCUT48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.mft
Manifest number: 0E00
Signing time: Fri 17 May 2024 16:03:01 +0000
Manifest this update: Fri 17 May 2024 16:03:01 +0000
Manifest next update: Sat 18 May 2024 16:03:01 +0000
Files and hashes: 1: Hx3rgeH5wkHruJbrRF7L6RtsSU0.roa (hash: 3tN9NCae+HEMbbgseRLL95nqkRDMgQky9P5w9RSIrBA=)
2: upfBVFbrYAQD7PuxbCDggWCUT48.crl (hash: aTl1Cn41Pc2I2LoOl/6mLWKY+1NoYQiiBo0E5tVEKm4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.mft
rsync://rpki.ripe.net/repository/DEFAULT/upfBVFbrYAQD7PuxbCDggWCUT48.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:03:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:dd:fc:47:9d:94:67:c4:28:ed:cd:67:23:1f:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba97c15456eb600403ecfbb16c20e08160944f8f
Validity
Not Before: May 17 16:03:01 2024 GMT
Not After : May 18 16:03:01 2024 GMT
Subject: CN=3d5fbf8e31a2d6aa54b152b44608f69792a82d62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fe:51:4b:db:f3:22:d3:05:11:01:f5:42:8d:
e5:13:17:08:04:cb:6e:6d:bd:97:de:4f:38:76:78:
c4:c3:e7:54:4d:aa:e1:bd:85:74:84:a7:a6:dc:02:
69:de:f0:d2:be:89:8e:8b:64:8f:59:de:58:c4:b6:
39:64:11:c9:a0:1c:13:e9:aa:d7:cc:86:c3:91:e4:
bb:6f:e0:99:6d:4b:c7:36:0b:f0:b7:b5:4d:6a:d2:
06:7b:e1:2a:96:d3:cf:a9:fe:a1:c2:5d:5f:3a:e1:
72:fe:ec:da:55:a7:c8:6b:f0:92:47:82:b1:e5:34:
d2:ea:81:54:8e:81:28:78:b7:ef:80:63:31:d9:a4:
0e:b2:82:3a:ad:4d:17:69:1d:55:c4:8c:81:c6:7d:
3e:da:de:d9:44:cd:7a:a4:79:0f:fc:b8:74:49:5c:
c7:7d:e8:20:fe:39:a7:e6:ca:05:0a:50:a8:bc:3e:
d1:a2:2e:cd:30:52:5e:d9:81:3a:54:e3:bb:d4:e2:
89:cc:5e:a2:dc:9a:a0:8b:ca:c6:b3:8d:4f:f6:3b:
ce:96:0a:06:1d:7a:11:cb:dc:0c:b5:ab:f1:f9:f5:
12:43:cf:bc:25:bf:8c:4a:48:bc:c1:7f:16:f4:99:
b3:6f:09:bb:7c:38:a2:97:59:3e:af:9d:51:8c:6f:
a4:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:5F:BF:8E:31:A2:D6:AA:54:B1:52:B4:46:08:F6:97:92:A8:2D:62
X509v3 Authority Key Identifier:
keyid:BA:97:C1:54:56:EB:60:04:03:EC:FB:B1:6C:20:E0:81:60:94:4F:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upfBVFbrYAQD7PuxbCDggWCUT48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:e3:65:28:a7:4f:10:20:90:18:ba:89:63:e0:b0:b1:70:e1:
0b:6a:71:f9:eb:3d:53:c6:70:cf:ef:24:a4:35:4b:12:c0:f8:
1e:c3:13:82:70:1a:40:e8:6d:73:bd:24:19:5f:11:e1:6c:68:
3a:9a:15:28:27:ba:a3:4a:74:18:22:c9:ad:61:7a:8f:1f:20:
1e:70:8e:1d:e5:47:66:ab:ee:2a:81:74:b1:fc:91:2f:7f:8f:
36:e2:71:9f:e6:bd:12:87:c4:26:32:b6:00:f8:52:32:13:05:
71:56:7f:74:83:dd:ea:c7:e4:91:f1:6d:0b:ca:18:a2:7b:d5:
f1:4b:6b:76:0b:3f:76:1e:0f:15:8b:35:64:ec:a7:df:f4:11:
17:8d:a4:0b:58:66:67:d3:02:ea:1b:0c:8d:c1:86:3f:96:69:
71:22:b6:81:e6:a8:70:01:ab:09:ce:97:fb:73:6e:80:44:ba:
96:ba:b2:f8:bf:6b:85:7b:14:c1:82:0c:56:d1:88:2f:2e:8d:
2a:f9:c2:de:c1:e5:74:c4:11:e3:a2:3a:be:d0:8f:fc:13:04:
50:50:b3:aa:de:53:b6:72:9a:10:69:18:70:44:9c:d9:9e:91:
24:48:48:bd:00:51:6b:f3:ee:19:aa:f1:bf:0c:c2:06:d2:56:
23:aa:f6:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 17:56:33 2024 by rpki-client on console-ams.rpki-client.org