Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/a16bfb-36c5-45bf-b627-1d77718022d1/1/y1ojbIrLg4aEGSMtmO8syxLxnrA.mft
File: y1ojbIrLg4aEGSMtmO8syxLxnrA.mft (raw, json)
Hash identifier: PXcC4+gMPE8esa7T0pah1WApBfue8eVeUBnmj1lm0fw=
Subject key identifier: BE:8F:EA:FB:72:61:18:53:BC:DA:F9:A8:B4:5D:EA:FE:83:94:43:C7
Authority key identifier: CB:5A:23:6C:8A:CB:83:86:84:19:23:2D:98:EF:2C:CB:12:F1:9E:B0
Certificate issuer: /CN=cb5a236c8acb83868419232d98ef2ccb12f19eb0
Certificate serial: 0191FB5A7F8915B845DA91E024F5D589A2AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y1ojbIrLg4aEGSMtmO8syxLxnrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/a16bfb-36c5-45bf-b627-1d77718022d1/1/y1ojbIrLg4aEGSMtmO8syxLxnrA.mft
Manifest number: 0107
Signing time: Mon 16 Sep 2024 15:01:37 +0000
Manifest this update: Mon 16 Sep 2024 15:01:37 +0000
Manifest next update: Tue 17 Sep 2024 15:01:37 +0000
Files and hashes: 1: QM0OCtW9RH5wF_RJAhnFi1Qk2N8.roa (hash: ZfIJyLuR/iWhui3rw61vGal9I2FfuUdlNV0JnWdyQfM=)
2: y1ojbIrLg4aEGSMtmO8syxLxnrA.crl (hash: uIWfuYzlNgkoL9d+VClntTOA5m4Uzuytvt2xRjfZmmg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/a16bfb-36c5-45bf-b627-1d77718022d1/1/y1ojbIrLg4aEGSMtmO8syxLxnrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/a16bfb-36c5-45bf-b627-1d77718022d1/1/y1ojbIrLg4aEGSMtmO8syxLxnrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/y1ojbIrLg4aEGSMtmO8syxLxnrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 14:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fb:5a:7f:89:15:b8:45:da:91:e0:24:f5:d5:89:a2:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb5a236c8acb83868419232d98ef2ccb12f19eb0
Validity
Not Before: Sep 16 15:01:37 2024 GMT
Not After : Sep 17 15:01:37 2024 GMT
Subject: CN=be8feafb72611853bcdaf9a8b45deafe839443c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:09:7d:ea:fe:5d:c5:04:a3:30:f9:65:3a:a5:
da:5c:84:c4:73:73:f7:bc:82:2a:7e:a1:f0:2f:3d:
1f:06:71:bf:9f:20:95:3c:81:96:d5:0a:dc:e6:e9:
42:7b:3b:ba:88:32:4f:54:c1:10:02:8d:65:08:65:
30:db:d1:20:3d:f5:4c:d3:1e:a7:00:4f:0c:a8:d6:
ad:7e:c6:6a:94:4b:30:a1:a0:b9:f2:11:0f:3a:f5:
4b:45:fa:2b:b9:23:85:0c:6a:e5:20:be:a0:bd:5f:
37:fe:3c:c3:1e:c2:ae:8b:4e:f1:32:2c:6d:ef:2b:
f9:97:af:0a:02:e3:89:77:59:86:c9:0d:e8:7f:2c:
73:87:a5:64:5f:26:bc:e4:63:9b:39:cf:14:f1:c5:
fd:d3:0b:b6:da:37:bb:14:dc:4e:e6:69:fc:d7:ab:
b1:92:71:15:38:d5:1e:26:59:4c:be:22:16:4c:15:
b9:09:47:47:93:4c:b6:d3:11:a7:b9:c2:9b:df:74:
d3:8d:34:ee:e5:7c:25:57:69:c0:aa:06:53:81:7f:
4a:75:df:00:49:1e:96:96:68:5e:b3:cb:52:74:43:
a8:32:54:66:ab:ac:0f:37:b9:b2:d7:d7:79:9c:d4:
bd:9e:8a:5b:16:1c:3c:28:0a:7a:bf:4d:e6:fa:60:
c5:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:8F:EA:FB:72:61:18:53:BC:DA:F9:A8:B4:5D:EA:FE:83:94:43:C7
X509v3 Authority Key Identifier:
keyid:CB:5A:23:6C:8A:CB:83:86:84:19:23:2D:98:EF:2C:CB:12:F1:9E:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y1ojbIrLg4aEGSMtmO8syxLxnrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/a16bfb-36c5-45bf-b627-1d77718022d1/1/y1ojbIrLg4aEGSMtmO8syxLxnrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/a16bfb-36c5-45bf-b627-1d77718022d1/1/y1ojbIrLg4aEGSMtmO8syxLxnrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:96:87:f6:a9:29:ab:1a:e6:a7:6c:32:d8:39:60:ee:2c:08:
05:3a:22:4b:11:b6:5d:8c:a7:9e:d4:14:11:9d:29:48:26:03:
92:ea:5f:ec:cc:5c:58:62:a2:e2:6f:ae:fc:5e:8f:38:89:4b:
9b:9c:ae:a4:91:59:09:54:29:21:15:34:55:ce:78:04:e6:89:
71:0a:42:20:09:4e:75:c0:77:ab:5b:b4:8a:8c:27:94:84:9a:
e3:1a:c4:f4:37:61:89:e8:94:a0:e0:b1:33:70:9a:ff:ba:d1:
e5:05:e5:86:fe:a7:87:79:6b:f2:1a:0a:64:b8:ac:5c:f1:a3:
31:f8:c9:f0:b3:58:45:c2:29:bd:40:c5:e7:fc:5f:3b:bf:5e:
3d:56:70:77:96:2d:5b:b2:b2:a0:24:61:70:7b:02:d9:79:dc:
99:ff:f4:88:52:2c:42:bf:21:c1:94:44:43:2a:00:0b:14:74:
5a:ad:da:4f:28:fd:25:18:4d:cd:ee:e8:cc:1b:f1:7f:6c:1d:
e8:61:86:48:93:be:56:a9:7b:6f:69:7c:26:65:a3:ee:cb:d9:
69:2b:d2:4c:1e:df:b5:95:ed:f4:91:4f:78:bc:45:54:32:9c:
d9:ca:ce:de:7a:19:70:11:35:51:bc:4f:3b:07:5b:03:f1:6e:
a4:e6:94:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 18:11:42 2024 by rpki-client on console-ams.rpki-client.org