Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.mft
File: 2NZi3Mb-O4HvPeL8o8_O3BHrqkM.mft (raw, json)
Hash identifier: e9tmf0s6P3eAt97PyuvY8v1h71dDPRAxm2G+biozGEw=
Subject key identifier: 16:D6:C7:91:42:C6:BB:91:E2:A5:E5:1E:D2:6F:E0:7A:0C:F9:B9:D5
Authority key identifier: D8:D6:62:DC:C6:FE:3B:81:EF:3D:E2:FC:A3:CF:CE:DC:11:EB:AA:43
Certificate issuer: /CN=d8d662dcc6fe3b81ef3de2fca3cfcedc11ebaa43
Certificate serial: 018F49EB605AE7E1C02D4821DCD14CB7B898
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.mft
Manifest number: 1161
Signing time: Sun 05 May 2024 18:01:53 +0000
Manifest this update: Sun 05 May 2024 18:01:53 +0000
Manifest next update: Mon 06 May 2024 18:01:53 +0000
Files and hashes: 1: 2NZi3Mb-O4HvPeL8o8_O3BHrqkM.crl (hash: lvSLKjDK4RwkxxswvHjjLNhLHBbjyExYf3yCHupqvOo=)
2: 91K4KRildVIwc3CbmpvZABvqm1g.roa (hash: fUpP5u3GW8zpCUd6YH9luLFslE9PvTKZon8U7HIZnPs=)
3: JEY6m0q8wqhS81vR8jgyxq_U9Oc.roa (hash: iXoMTzZPfL/Hn1Z+ZcJtm5RfqDHv4aTFzI8JyF4phpc=)
4: SGQ_4o9QOoy-NtVhit8CqwBvuf4.roa (hash: zjfCVm0TlK0sfzcDID6CbAL+dGkznXAXHpBCzS39Alg=)
5: XyC5baECjxaJuespC6uKCaTdNDI.roa (hash: Cjquao5O5v/yThEb7jzLRD3EdbIueWOiBcYSRDhgMZ0=)
6: kDOH0kSro0RPA2sMVZEhGHMJY9c.roa (hash: 82vgiWTBXUy9J9CHhlP7nrQtwbUS2Vozx1XonMZi0xM=)
7: pztGol9_kQSDejcvkPHrZh7X364.roa (hash: TENDw5E9AJEpjeVjlAhf6Izk3pcb4XwPkGVHpkPeVhk=)
8: qcHScd_8o7rK5YSXpZO5VVvs8uI.roa (hash: SIDRUPvlGd1NDdzDCtFkJISj+UvEcsi+qhg69RyZo8U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:49:eb:60:5a:e7:e1:c0:2d:48:21:dc:d1:4c:b7:b8:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8d662dcc6fe3b81ef3de2fca3cfcedc11ebaa43
Validity
Not Before: May 5 18:01:53 2024 GMT
Not After : May 6 18:01:53 2024 GMT
Subject: CN=16d6c79142c6bb91e2a5e51ed26fe07a0cf9b9d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:32:6c:68:7c:fd:73:1e:2b:09:05:9e:a2:6d:
de:9e:29:0d:5d:c4:ea:23:a6:57:8f:4d:4c:ee:82:
74:97:bd:c3:f1:82:ee:bb:5d:aa:78:63:b6:0e:dd:
d4:aa:32:65:c4:39:ce:62:57:46:b9:73:e3:79:29:
ed:77:be:70:53:83:05:a5:d5:eb:1f:b0:36:07:be:
a2:58:7e:0c:a1:03:4c:32:9a:22:29:71:44:b6:76:
83:f7:d7:21:c7:79:af:a1:a2:85:3c:86:22:e7:4d:
aa:e1:f8:59:05:4d:ba:cf:50:ec:56:8f:02:a7:6b:
bd:24:09:e8:2e:3f:24:af:b3:79:2b:c9:eb:61:f0:
fc:67:33:42:49:a4:eb:38:89:fe:a2:e0:1a:a9:9a:
c9:8b:13:db:97:6d:bf:61:42:3a:5d:6d:68:6b:f4:
ed:32:22:ad:a3:cb:a0:cf:2a:2e:8b:00:15:2b:42:
17:29:02:c5:ad:8e:2c:c6:2d:27:af:97:fa:97:3b:
7a:12:ee:6e:70:17:2c:f0:d2:6c:28:2c:34:33:7a:
df:99:30:d1:34:0c:cd:dc:d2:f8:57:49:eb:3c:fb:
e5:ec:86:12:45:5c:46:92:5b:b7:bd:bd:3d:3a:6f:
e7:7d:24:9e:e9:ae:3f:bb:cb:c8:c7:91:25:45:a2:
32:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:D6:C7:91:42:C6:BB:91:E2:A5:E5:1E:D2:6F:E0:7A:0C:F9:B9:D5
X509v3 Authority Key Identifier:
keyid:D8:D6:62:DC:C6:FE:3B:81:EF:3D:E2:FC:A3:CF:CE:DC:11:EB:AA:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:35:db:6c:f3:67:73:15:9a:f7:6f:61:e0:97:b4:08:60:0d:
05:63:07:21:d1:ab:8e:fb:b7:75:77:e1:30:35:02:df:19:25:
43:dd:eb:e8:98:a1:c3:4d:a8:d1:02:b5:63:5a:54:b8:26:48:
f5:b0:8f:f8:b3:e4:a1:d4:e7:ba:8b:2b:5d:42:36:c1:25:a5:
aa:16:59:4b:1e:e1:25:10:ab:f4:3b:1d:5d:07:ac:96:ce:da:
91:90:46:ab:4f:23:de:13:86:1c:45:7f:3a:98:4e:59:6b:bb:
de:00:5a:35:50:5e:5b:25:3d:66:74:1a:d9:06:d8:1b:a5:b9:
2e:ac:b2:82:de:74:eb:0c:c3:c1:d9:19:07:ad:63:2f:21:2a:
9c:61:d6:6d:29:29:df:a7:79:9f:b1:3a:9e:7f:a1:3d:b1:1c:
b9:92:67:19:9b:91:32:84:91:7b:51:8f:6a:35:cc:44:a5:52:
f1:c3:51:0e:54:12:fd:3d:ef:c3:ab:c2:1c:a4:51:d2:ad:51:
97:65:9d:54:35:94:c8:33:b9:1c:69:c8:8f:90:f2:79:33:d1:
b2:3c:68:01:32:5e:1c:6a:ff:e5:06:3a:fd:49:df:1d:2a:01:
3a:ce:b3:a3:6b:3a:4b:7a:be:1b:53:82:21:1b:04:0b:5b:8c:
7b:80:43:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 18:44:37 2024 by rpki-client on console-fra.rpki-client.org