Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
File: xHKa8T09FW9BGXaxduVU-mcddvc.mft (raw, json)
Hash identifier: n2J1hDmvonpnsYMDoeegsaq71ewEKtOLB0UVFT5cuMk=
Subject key identifier: 09:69:83:F8:3F:A1:E6:EE:03:86:89:59:B3:CD:B4:96:F0:48:CF:DB
Authority key identifier: C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
Certificate issuer: /CN=c4729af13d3d156f411976b176e554fa671d76f7
Certificate serial: 018F86362B8772E0F1697CC5C8C7434267BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
Manifest number: 0EBB
Signing time: Fri 17 May 2024 11:00:48 +0000
Manifest this update: Fri 17 May 2024 11:00:48 +0000
Manifest next update: Sat 18 May 2024 11:00:48 +0000
Files and hashes: 1: xHKa8T09FW9BGXaxduVU-mcddvc.crl (hash: 5BYihRlazpvq6AAYDPRoqhA8WZi3PKpxyW8o+41b/8s=)
2: xJRDdgU1QKvWLcDDvgD65_2zgH4.roa (hash: VGOKCDEQsA5H4jgg9RyTcHL7RXja6Sw6T7nUmI++BMY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 11:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:36:2b:87:72:e0:f1:69:7c:c5:c8:c7:43:42:67:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4729af13d3d156f411976b176e554fa671d76f7
Validity
Not Before: May 17 11:00:48 2024 GMT
Not After : May 18 11:00:48 2024 GMT
Subject: CN=096983f83fa1e6ee03868959b3cdb496f048cfdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:d4:f9:53:f3:63:94:6a:2b:d5:81:a3:ac:90:
c0:61:f9:ca:fc:3a:81:8f:ab:27:0f:4c:0c:8c:ce:
16:99:c0:2d:f3:ae:06:f4:1b:fc:fd:4d:3c:af:7c:
b3:20:ee:ff:00:16:8c:27:c7:74:06:84:55:30:fd:
15:62:a3:fd:00:79:dd:8d:c9:a8:40:7f:8b:5b:b3:
3b:d3:e3:cf:db:23:7b:5f:49:a9:b7:7d:54:a2:bd:
79:c9:87:25:38:f3:6e:81:6e:db:78:7b:fd:be:b3:
5f:0b:ee:90:ab:c7:b4:3c:8a:9b:c8:d8:80:ac:58:
a3:60:b3:bc:ab:73:6a:53:18:f8:b9:ec:12:4f:06:
c1:58:d6:b6:68:55:0c:b3:34:47:a9:08:57:71:7b:
76:d3:96:97:af:ba:12:8a:7a:76:cf:9b:f5:0b:1d:
f6:4c:e2:c2:33:9a:17:da:4e:7e:d8:66:44:ba:86:
b0:a5:81:9d:63:c6:90:9a:71:d5:5c:f8:82:f1:56:
58:80:15:8d:fe:8a:ef:c3:dc:65:5f:10:a6:51:25:
88:59:66:85:9a:3d:2a:0a:45:bf:92:59:3f:76:46:
a5:bc:ff:23:d0:cc:85:3d:36:0d:d0:90:ae:39:ac:
ee:93:a3:af:c1:8f:d2:bb:b9:48:14:c2:1a:7f:da:
81:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:69:83:F8:3F:A1:E6:EE:03:86:89:59:B3:CD:B4:96:F0:48:CF:DB
X509v3 Authority Key Identifier:
keyid:C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:36:b6:d1:6c:84:a2:b7:dd:65:11:13:56:f6:85:c3:73:4c:
3e:82:5b:2e:0e:ec:d6:be:68:91:1d:c5:c5:d8:a9:0f:54:62:
1e:40:ac:3a:49:16:08:7f:61:38:c2:fc:2f:65:56:5a:e1:30:
2e:a5:c3:8a:fe:4f:b6:d3:d3:98:52:d4:90:04:df:46:a0:5f:
2a:5d:63:75:91:27:67:a3:02:ad:50:36:c2:4b:92:bd:b8:00:
21:44:2f:f9:bf:b7:c9:ca:59:ea:5a:e0:88:c7:b5:32:3a:1a:
ab:f6:7d:e4:7d:39:9c:91:67:93:db:07:3f:50:47:78:7c:b1:
60:e9:02:dd:aa:dc:a4:4b:a6:75:ea:07:a9:1f:7a:95:4c:de:
06:13:aa:73:17:7e:51:77:c1:82:cb:e7:05:f6:11:0f:3f:c6:
2d:2d:62:e3:58:ba:65:19:17:e7:77:eb:fa:02:54:60:74:70:
7f:0d:35:b2:4f:ee:40:db:b1:26:ac:6f:c2:de:68:96:21:1b:
93:7e:be:42:74:ce:11:bb:85:b9:e5:19:55:83:1b:68:a7:d8:
2a:6c:9f:d0:45:c9:1d:59:8c:84:60:a1:2e:d1:b5:e2:e6:01:
72:e1:f0:50:7e:36:f2:f1:2d:31:bf:b1:6a:70:5a:3a:db:f9:
71:95:7a:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 17:58:18 2024 by rpki-client on console-ams.rpki-client.org