Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
File: 8yvpggYKQ3NNCtEmrUbaLzlcne8.mft (raw, json)
Hash identifier: ZoX1V+x5+nPkkJZ7kyquzBBTajdX1CqYbi7imXJMWnE=
Subject key identifier: A8:88:0D:49:4B:19:DC:6A:54:8D:28:90:02:DF:0F:F6:B6:9D:57:FD
Authority key identifier: F3:2B:E9:82:06:0A:43:73:4D:0A:D1:26:AD:46:DA:2F:39:5C:9D:EF
Certificate issuer: /CN=f32be982060a43734d0ad126ad46da2f395c9def
Certificate serial: 018F497DF1D2C53BAD0322A55AF0538236C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
Manifest number: 1158
Signing time: Sun 05 May 2024 16:02:21 +0000
Manifest this update: Sun 05 May 2024 16:02:21 +0000
Manifest next update: Mon 06 May 2024 16:02:21 +0000
Files and hashes: 1: 52yNUwd1MPlR5dyvcdJ3i3QgqyE.roa (hash: UHX5ehwGgRGx2k5azGZPr7jzt62HUq6PwHor1v9cV5I=)
2: 8yvpggYKQ3NNCtEmrUbaLzlcne8.crl (hash: Z+2Xtqw5bET3+hsQO5P+jTpGESWV5GV+VD+18BEIcQQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 16:02:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:49:7d:f1:d2:c5:3b:ad:03:22:a5:5a:f0:53:82:36:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f32be982060a43734d0ad126ad46da2f395c9def
Validity
Not Before: May 5 16:02:21 2024 GMT
Not After : May 6 16:02:21 2024 GMT
Subject: CN=a8880d494b19dc6a548d289002df0ff6b69d57fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:6f:85:1d:be:30:7b:65:2f:97:8b:69:ff:f7:
17:13:68:01:c8:8c:b8:64:3b:7d:88:9a:20:d9:16:
ff:f1:77:8b:c7:95:ef:ec:61:80:5f:f8:e2:f3:c3:
81:8d:01:1d:6c:4f:72:c4:69:6e:c5:e6:48:1e:01:
c7:c6:ee:96:fd:1a:af:4b:20:cd:a2:d3:ec:92:bc:
31:5f:1f:aa:93:a7:0d:08:03:12:aa:ef:96:ee:0d:
4b:84:b0:4e:c5:86:c2:c6:ec:57:fb:7a:63:d2:af:
d4:97:11:4a:f3:33:cb:70:8f:9f:d9:44:92:e0:5d:
a1:ef:84:ee:be:f6:7b:6b:f3:e9:20:10:59:f8:46:
cf:c9:76:93:b8:8d:4b:6c:67:cc:45:9c:8b:88:dd:
7b:cf:9e:13:9c:f9:7c:9e:04:fc:87:71:02:64:c8:
5c:3f:fc:ac:ce:af:db:fe:b9:f0:53:f2:ff:17:79:
13:4f:f1:d4:87:66:42:02:f7:93:79:e9:bd:02:09:
4f:ae:82:6d:e5:da:68:40:b3:36:82:c9:22:21:96:
f6:2d:b6:03:69:3c:4e:2a:7e:79:35:92:68:5c:4a:
75:9a:7a:f1:cc:68:be:f5:6e:6c:45:6c:54:8e:b1:
e4:d5:ec:e7:af:1b:6a:e2:d1:1a:41:db:c7:ec:b4:
40:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:88:0D:49:4B:19:DC:6A:54:8D:28:90:02:DF:0F:F6:B6:9D:57:FD
X509v3 Authority Key Identifier:
keyid:F3:2B:E9:82:06:0A:43:73:4D:0A:D1:26:AD:46:DA:2F:39:5C:9D:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:a3:0c:13:56:19:5c:65:04:ec:0d:89:5d:37:81:b0:6e:48:
b4:ca:42:24:54:9c:b3:cd:3b:f2:4e:0e:80:6c:f7:c7:76:c6:
08:fe:df:df:82:b7:45:10:90:fa:e6:7b:30:68:77:50:7f:e0:
ea:cf:1c:8f:25:64:49:92:10:1c:50:b4:56:d2:ce:ff:00:96:
38:35:74:be:88:9c:7f:2c:28:46:1d:3d:8e:e6:51:4b:cd:5c:
69:d0:4d:0a:f3:3a:55:2b:0b:8f:f7:b9:55:90:0b:b3:64:3c:
8f:c7:78:5e:c3:c0:33:68:7d:6f:c1:50:05:b4:da:89:ca:11:
06:a5:95:9d:d1:3b:4f:23:5a:fc:81:4e:51:7e:d5:c2:3a:95:
b8:19:8e:85:8e:38:88:6c:3b:1e:e1:5a:97:f7:05:0f:0e:38:
3b:2b:5b:31:67:c2:19:9a:91:60:2d:15:14:e7:9b:c1:2d:25:
dd:41:32:cc:56:35:06:e2:81:dc:4c:6e:9e:04:aa:d6:80:86:
4d:f1:47:d2:c8:53:95:4b:ae:41:c3:15:dd:d6:3f:f1:fb:9f:
32:41:1a:61:f3:40:98:de:b2:02:f7:07:da:9c:d6:0b:e7:26:
87:b0:42:62:09:4a:40:e7:b5:31:b1:fc:cd:3b:e1:33:e9:8a:
ff:1e:a1:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 18:46:19 2024 by rpki-client on console-fra.rpki-client.org