Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.mft
File: OBXtD6YgyAGqqabxT2WW1-yXUKE.mft (raw, json)
Hash identifier: x0pQbfxNER8vuSQnQOl0bjcai1hjTMsbDVdV6xemPBc=
Subject key identifier: 8D:80:6B:87:9C:B4:DA:B5:84:DF:1E:4C:F7:3C:59:BC:24:32:A3:A1
Authority key identifier: 38:15:ED:0F:A6:20:C8:01:AA:A9:A6:F1:4F:65:96:D7:EC:97:50:A1
Certificate issuer: /CN=3815ed0fa620c801aaa9a6f14f6596d7ec9750a1
Certificate serial: 018F885B3FA13C6C60310B9A5334B730C182
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBXtD6YgyAGqqabxT2WW1-yXUKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.mft
Manifest number: 117A
Signing time: Fri 17 May 2024 21:00:32 +0000
Manifest this update: Fri 17 May 2024 21:00:32 +0000
Manifest next update: Sat 18 May 2024 21:00:32 +0000
Files and hashes: 1: OBXtD6YgyAGqqabxT2WW1-yXUKE.crl (hash: oZgCjjk+KtwfZ97YUm0E8Jcj1RnYQ8OMpY0RV6N95Ic=)
2: R5_wrVyA5mjjDN7LAoKJe5YfMhg.roa (hash: t0IOL9eDmyRKttwKUs2HPxxeCSCVMH2C/7/L7O4awb4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/OBXtD6YgyAGqqabxT2WW1-yXUKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:5b:3f:a1:3c:6c:60:31:0b:9a:53:34:b7:30:c1:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3815ed0fa620c801aaa9a6f14f6596d7ec9750a1
Validity
Not Before: May 17 21:00:32 2024 GMT
Not After : May 18 21:00:32 2024 GMT
Subject: CN=8d806b879cb4dab584df1e4cf73c59bc2432a3a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:57:1f:13:9a:c0:7e:cf:6c:88:c5:b1:b3:e7:
b2:36:5e:15:e3:fb:4e:37:59:7b:d1:78:cf:ee:f2:
14:d0:b8:59:1a:e4:23:1c:d9:9d:a7:67:70:2a:c2:
b2:36:38:00:cb:0b:9f:e2:80:dd:21:34:ef:cc:ae:
65:ef:35:4e:af:1b:fc:39:e5:68:ce:49:5b:08:01:
d9:57:3e:21:a1:51:6f:4d:3d:e4:c3:71:16:8b:47:
21:40:de:96:ec:1d:52:d7:1b:8b:8c:da:5a:3e:8d:
d2:85:76:f1:36:e6:95:11:62:1d:81:a7:51:bf:d5:
5d:f7:4a:cf:b6:44:55:54:3e:59:a6:49:56:87:8e:
67:02:1d:63:17:68:d2:f9:d9:e2:bd:17:16:d2:f3:
b9:3d:00:d7:20:c1:63:d6:36:5c:50:76:7c:4b:14:
13:30:64:bd:19:69:fe:83:e8:06:34:d5:a7:ab:51:
06:af:e6:4a:22:20:29:bb:cf:05:e5:cd:71:11:8a:
c7:13:8e:50:7b:29:d1:3d:4f:ae:e8:8d:90:1e:2e:
26:c8:51:0b:47:60:fd:55:57:a9:dd:6d:5b:0b:49:
2c:5b:0b:ee:a5:a6:1d:51:fd:a7:38:c7:86:e6:52:
11:bc:e9:2b:be:15:7c:39:3b:b5:e9:1a:77:c0:00:
72:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:80:6B:87:9C:B4:DA:B5:84:DF:1E:4C:F7:3C:59:BC:24:32:A3:A1
X509v3 Authority Key Identifier:
keyid:38:15:ED:0F:A6:20:C8:01:AA:A9:A6:F1:4F:65:96:D7:EC:97:50:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBXtD6YgyAGqqabxT2WW1-yXUKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:4b:84:f6:39:62:dd:79:17:dc:ce:80:f7:20:92:80:c8:20:
da:c5:cb:7a:74:8d:05:55:1c:58:45:72:1a:57:9c:f5:d3:f4:
d9:00:5f:ad:45:d9:ad:55:96:c1:f8:0e:b3:f7:4d:d1:f1:b7:
cd:0b:01:42:0d:75:27:3f:b6:b3:65:9c:b8:00:05:e3:12:c8:
4b:21:73:c4:bb:fa:c1:87:1e:90:b8:b6:48:c7:45:23:db:87:
fd:14:01:27:c1:d7:08:21:f4:50:85:57:de:7c:a7:63:13:57:
e5:dc:1f:4a:a5:32:e9:ad:1f:db:f1:80:5d:28:5a:55:1e:69:
a6:2e:3a:23:77:5d:de:b5:ea:73:ad:09:31:42:4c:f8:bb:60:
19:6c:67:0b:fb:0a:0c:ee:cb:16:fd:26:c2:f2:64:00:dc:04:
98:e1:70:f3:3b:a1:ec:bd:e3:23:76:ad:6c:6a:09:f6:2b:c3:
a6:f9:10:2f:7e:f6:da:a2:bc:98:e8:98:55:1d:05:f9:db:7c:
32:8b:e5:8c:4e:22:d0:04:67:94:a0:b2:43:0f:e0:bf:36:d0:
8f:77:cd:b6:24:e4:ac:d5:3e:46:36:d8:9c:c0:b3:47:1a:89:
24:81:60:3d:9d:7d:c4:ee:4f:b6:6f:f1:41:49:6c:72:51:22:
6d:60:5a:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 21:42:51 2024 by rpki-client on console-fra.rpki-client.org