Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/5b7ef8-e71f-429e-aadf-6cb78e95ab44/1/CNOBziQjEGGBXzIEPGUiZq272GU.mft
File: CNOBziQjEGGBXzIEPGUiZq272GU.mft (raw, json)
Hash identifier: DSVC/xkgAexnZcHCdx4lAxgAksnHQwsL8xlCvnbpiO8=
Subject key identifier: 33:F9:3C:DE:79:87:F9:93:B1:AC:49:8D:7C:79:78:5A:47:FB:40:2C
Authority key identifier: 08:D3:81:CE:24:23:10:61:81:5F:32:04:3C:65:22:66:AD:BB:D8:65
Certificate issuer: /CN=08d381ce24231061815f32043c652266adbbd865
Certificate serial: 018F4B6D9D224515299B38B44E2303E7647F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNOBziQjEGGBXzIEPGUiZq272GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/5b7ef8-e71f-429e-aadf-6cb78e95ab44/1/CNOBziQjEGGBXzIEPGUiZq272GU.mft
Manifest number: 0F1D
Signing time: Mon 06 May 2024 01:03:45 +0000
Manifest this update: Mon 06 May 2024 01:03:45 +0000
Manifest next update: Tue 07 May 2024 01:03:45 +0000
Files and hashes: 1: CNOBziQjEGGBXzIEPGUiZq272GU.crl (hash: F4PodG3SCIZWOWQu+Cdb/HjIxacMEA2524LkCI9Wuiw=)
2: _mfQrwWXYdamqJBdPR15ZXqtwE4.roa (hash: Uc6V/Tvm8DDMvhF2i884nFNASZJ4x27sW/PoZKmNP9I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/5b7ef8-e71f-429e-aadf-6cb78e95ab44/1/CNOBziQjEGGBXzIEPGUiZq272GU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/5b7ef8-e71f-429e-aadf-6cb78e95ab44/1/CNOBziQjEGGBXzIEPGUiZq272GU.mft
rsync://rpki.ripe.net/repository/DEFAULT/CNOBziQjEGGBXzIEPGUiZq272GU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 01:03:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4b:6d:9d:22:45:15:29:9b:38:b4:4e:23:03:e7:64:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08d381ce24231061815f32043c652266adbbd865
Validity
Not Before: May 6 01:03:45 2024 GMT
Not After : May 7 01:03:45 2024 GMT
Subject: CN=33f93cde7987f993b1ac498d7c79785a47fb402c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f9:40:68:fb:88:4b:8e:0c:10:9f:32:1d:c1:
85:c6:00:a5:0a:30:fb:6c:86:cf:4a:40:c6:36:eb:
59:61:30:47:31:79:4e:22:25:e5:fd:46:14:6a:37:
92:ae:8e:13:b4:f4:74:9d:6f:b1:fc:f7:ec:7d:47:
59:28:b0:a2:52:0f:12:29:d4:bc:45:c3:97:33:2d:
b1:c3:66:4d:9d:c4:2f:dc:83:8b:d8:6e:04:d1:4f:
d1:5f:7d:3b:db:ac:b7:b9:43:fb:6a:10:ea:b0:51:
60:6d:d9:17:24:4f:3c:ae:a5:89:8f:8f:8e:8e:6c:
78:e9:31:6b:bb:4f:6d:f4:fa:65:8f:2e:d9:fd:01:
d5:9a:e9:c3:71:a6:04:69:18:17:fc:61:42:8d:ad:
ab:ef:8c:a3:cb:43:e2:a6:9b:1a:09:b8:a6:ea:b4:
c0:04:6c:20:f1:7a:64:a7:91:ee:b6:2d:1b:34:b5:
34:67:d0:69:04:4b:2a:9b:13:ce:2b:67:46:e5:ac:
90:fd:4a:ba:15:16:e1:a6:25:a0:b0:a0:01:83:3a:
62:10:9d:ad:31:33:ba:de:c7:26:c4:13:ff:3d:3a:
d9:1a:2b:be:a9:5a:b9:bd:bb:6e:9d:e0:e2:8c:11:
a5:72:d6:9a:7f:df:d5:b0:13:be:b7:37:3c:32:a8:
70:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:F9:3C:DE:79:87:F9:93:B1:AC:49:8D:7C:79:78:5A:47:FB:40:2C
X509v3 Authority Key Identifier:
keyid:08:D3:81:CE:24:23:10:61:81:5F:32:04:3C:65:22:66:AD:BB:D8:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNOBziQjEGGBXzIEPGUiZq272GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/5b7ef8-e71f-429e-aadf-6cb78e95ab44/1/CNOBziQjEGGBXzIEPGUiZq272GU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/5b7ef8-e71f-429e-aadf-6cb78e95ab44/1/CNOBziQjEGGBXzIEPGUiZq272GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:e7:c0:0a:e9:f1:2c:ac:f7:27:f2:19:75:e5:2a:69:f8:ff:
ed:ed:24:76:3e:cd:ed:16:dd:b6:50:34:af:3c:b7:4d:aa:98:
9a:56:f0:2d:76:65:67:30:3f:9a:a4:4a:69:3a:84:34:f0:13:
69:47:10:20:38:4d:16:b6:a8:0e:cd:75:02:41:b5:43:e0:fb:
1c:aa:99:c7:80:03:f7:a3:86:71:29:74:95:55:6a:26:5b:8a:
d4:fb:9d:98:a0:87:8c:d1:df:90:a6:52:9e:65:e6:d9:38:0e:
01:75:2f:a5:90:56:f2:20:ce:df:13:8e:60:d2:2f:bc:9f:aa:
34:81:66:e1:21:b0:8d:3e:52:a3:4c:d4:df:11:69:4b:9f:30:
7b:36:c1:10:4f:f9:7e:2c:c5:c6:7b:d7:92:cc:20:ca:e9:4d:
78:8a:1c:6d:ea:dc:2f:15:2b:fa:15:9c:99:58:6d:64:e9:d7:
79:e9:bb:f0:d7:04:69:98:a1:11:b8:a3:8b:85:d4:99:1c:dd:
82:47:b9:5c:d0:73:93:a4:de:e6:34:e1:cd:c6:d2:d1:c1:d2:
20:03:0e:99:3d:26:8d:fb:9c:4f:96:86:2d:34:d2:8e:8a:a2:
ec:24:72:3e:23:b6:c8:a2:b5:7e:e9:35:9c:6a:72:41:2b:e0:
e0:0d:77:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 10:33:22 2024 by rpki-client on console-ams.rpki-client.org