Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.mft
File: onxkG1MKfGuiNAIuMyckYjI2cQA.mft (raw, json)
Hash identifier: 3ZuZYJJZ+AmToIKI7n6EYd4iEDO0LFYRAhahA/wqxYE=
Subject key identifier: 5A:EF:DC:F3:C6:2D:90:C7:85:7E:74:01:46:40:15:8E:B2:02:E3:C2
Authority key identifier: A2:7C:64:1B:53:0A:7C:6B:A2:34:02:2E:33:27:24:62:32:36:71:00
Certificate issuer: /CN=a27c641b530a7c6ba234022e3327246232367100
Certificate serial: 018F8891F8DF3F42CF4BFA270EECB356C8A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/onxkG1MKfGuiNAIuMyckYjI2cQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.mft
Manifest number: 06BE
Signing time: Fri 17 May 2024 22:00:18 +0000
Manifest this update: Fri 17 May 2024 22:00:18 +0000
Manifest next update: Sat 18 May 2024 22:00:18 +0000
Files and hashes: 1: XmvF-7pJC7vJdUYAbCRfY56FNLY.roa (hash: R7BVQsROki3Iw+2ZZLalksgm3nUnB3IaGVg04wr9cbU=)
2: onxkG1MKfGuiNAIuMyckYjI2cQA.crl (hash: xWhLzQydZOM+lYoR/T+70XwdXjflkVAvTV6wnPnvGVI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/onxkG1MKfGuiNAIuMyckYjI2cQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:91:f8:df:3f:42:cf:4b:fa:27:0e:ec:b3:56:c8:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a27c641b530a7c6ba234022e3327246232367100
Validity
Not Before: May 17 22:00:18 2024 GMT
Not After : May 18 22:00:18 2024 GMT
Subject: CN=5aefdcf3c62d90c7857e74014640158eb202e3c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1e:1e:de:30:ff:26:6a:dd:c7:1d:10:24:a6:
a1:93:aa:3e:bd:2f:d8:12:2b:03:6b:2d:75:bd:19:
6c:82:88:c9:5d:82:e3:7d:7b:18:16:51:87:53:36:
4d:ce:99:91:a8:ca:a5:d5:fb:9c:ba:b1:3d:50:fd:
28:37:55:30:47:4e:e5:c8:75:73:72:93:cf:df:a9:
96:37:8d:3a:c8:c9:24:28:b9:0f:54:dd:2f:de:a3:
cf:c7:20:56:18:0d:08:e7:41:2b:5c:ab:74:86:b4:
b4:47:95:e2:78:a4:56:14:2c:47:41:7a:dc:f5:fe:
48:a3:69:7a:ff:78:b5:70:4c:06:f2:cb:74:3b:e7:
aa:b1:a0:6e:d1:78:8f:ee:b8:e2:e2:4e:d7:0d:7e:
ee:1d:05:c9:d2:15:47:c5:87:43:9f:29:07:8c:e4:
ca:af:58:08:71:ec:34:ba:39:1a:38:76:98:7d:3b:
87:a3:09:09:cf:cd:a4:5a:eb:cf:8e:aa:7e:45:57:
9b:0f:1a:13:61:ba:45:80:24:71:ad:6d:b0:dd:1b:
85:94:da:63:33:75:ef:ac:f3:18:24:be:2d:53:9a:
1b:eb:fd:1f:45:ba:b1:8a:40:07:c7:4b:98:b4:1c:
80:9b:a4:e6:69:bb:ee:7d:d8:79:e0:91:7e:6a:8b:
df:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:EF:DC:F3:C6:2D:90:C7:85:7E:74:01:46:40:15:8E:B2:02:E3:C2
X509v3 Authority Key Identifier:
keyid:A2:7C:64:1B:53:0A:7C:6B:A2:34:02:2E:33:27:24:62:32:36:71:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/onxkG1MKfGuiNAIuMyckYjI2cQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:05:3a:23:ed:6c:e0:d7:dd:d9:5b:33:6a:90:18:43:20:e2:
d5:ad:68:a8:20:5b:6c:4d:37:16:ca:6d:88:c3:d3:dc:55:01:
3c:df:f6:b9:af:7b:c6:7b:d0:c1:85:bf:73:2a:13:82:a4:3d:
30:ee:57:37:49:67:d0:9e:b7:2b:7a:d3:6e:cd:8e:05:73:c9:
25:e6:c0:e1:c8:26:66:cf:7a:3c:67:57:f4:7d:37:07:65:90:
91:2b:cd:e9:ac:06:77:58:85:a5:4f:65:43:c9:07:73:41:e9:
4a:b4:0c:ce:6f:ff:56:49:4b:77:c3:67:68:f2:8b:03:a2:aa:
22:68:28:00:f1:27:32:ba:5d:84:cc:c0:ee:ef:70:c5:06:17:
e1:5d:99:e4:ae:87:b8:0d:fb:e0:ea:32:a3:8e:d2:f0:93:89:
ec:ce:d2:d4:9c:64:00:48:bc:a9:66:4b:c1:ed:e7:f2:75:e4:
0a:e5:90:2f:99:75:6d:09:f8:e4:b9:45:6f:46:1b:9e:e1:45:
46:ce:c2:b7:ce:9a:9f:b7:f8:5d:89:c7:0e:3f:8d:88:0c:f4:
44:6c:8f:a6:92:54:ae:2f:8a:71:43:31:c8:4d:b6:7a:f2:90:
34:c1:40:bf:7a:e5:64:7a:61:d0:2d:8c:b6:e6:55:61:f0:57:
da:ee:03:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 23:39:16 2024 by rpki-client on console-fra.rpki-client.org