Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
File: 3MstX7JThS8YI8ZUNOjydtBOTgw.mft (raw, json)
Hash identifier: q3TrtQE/Yu/bFSYaUa61cG2dRQVGbHtekJbii5iHdB0=
Subject key identifier: 39:5E:0F:AB:4D:2E:36:A9:34:68:2A:4C:D5:DE:E8:D2:97:9F:9B:44
Authority key identifier: DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
Certificate issuer: /CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Certificate serial: 018FD29A24F4CB78A636D0A50EA9778C5155
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
Manifest number: 11A8
Signing time: Sat 01 Jun 2024 07:01:08 +0000
Manifest this update: Sat 01 Jun 2024 07:01:08 +0000
Manifest next update: Sun 02 Jun 2024 07:01:08 +0000
Files and hashes: 1: 3MstX7JThS8YI8ZUNOjydtBOTgw.crl (hash: lY5fdZq5mQg6rKAdDHZVaog34dgMAD5VCqCbcrDbDcc=)
2: BTEFmxApNcRXUG3FvdPAv1FrG_A.roa (hash: OVXSJm9BYCh0daP9YUBEg5ImNEblCcM5Tn+NUBUm+DM=)
3: g5CgRvkMNsAIfSPRrZKAoc83dmw.roa (hash: b0+iYHkrYY5itcVPcmWicFjHpyM0J9I80oQX1hAfiIQ=)
4: ocLojybqrMR9wTztcJr6AY-s07U.roa (hash: igNyxKcniHRm94ccZj4kkKHDkiZRDD4dE+mqy7fPTjU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 07:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d2:9a:24:f4:cb:78:a6:36:d0:a5:0e:a9:77:8c:51:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Validity
Not Before: Jun 1 07:01:08 2024 GMT
Not After : Jun 2 07:01:08 2024 GMT
Subject: CN=395e0fab4d2e36a934682a4cd5dee8d2979f9b44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:12:85:0c:0b:ea:c0:80:4d:62:d1:66:65:89:
4a:bc:83:22:07:bf:e2:f9:11:d3:74:69:ab:f2:6a:
32:a4:5f:c8:6e:92:2f:cc:42:5a:b0:ba:59:33:7f:
04:2b:9b:a7:f5:0c:54:c8:d1:1c:8c:03:20:0d:f4:
94:bf:f6:47:a6:30:ef:f2:bc:32:bd:f1:b4:82:48:
89:cd:02:65:03:31:d3:37:a2:23:df:79:b9:44:62:
79:58:69:ec:9d:65:ab:34:bd:cb:f2:48:4f:80:57:
09:89:57:55:f8:bc:0e:3a:1e:46:cb:97:67:a0:0d:
03:51:61:8d:59:b2:a0:5b:d6:01:a2:a2:ec:fc:b0:
59:77:8b:5a:eb:d0:9f:4f:f6:24:16:e1:66:a5:37:
68:ac:d9:23:bf:af:84:b3:bf:f1:35:24:82:fa:d9:
83:95:a6:92:38:29:63:5c:d8:96:2e:06:95:2f:65:
be:f9:d4:2b:ce:81:79:f5:fb:bd:1b:3a:71:3f:ea:
0a:e0:01:8c:99:d5:c3:ac:8e:65:69:9e:c4:a9:e3:
9a:3f:d8:95:9a:1f:a0:13:2a:74:ea:ac:88:3d:b9:
c2:b5:f1:af:1f:93:68:e4:32:e0:bb:b2:20:37:51:
f9:6b:e8:c8:b9:d4:9b:da:37:87:54:2e:dd:35:3e:
35:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:5E:0F:AB:4D:2E:36:A9:34:68:2A:4C:D5:DE:E8:D2:97:9F:9B:44
X509v3 Authority Key Identifier:
keyid:DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:9d:e1:5e:9b:05:70:e5:94:af:51:34:6e:1f:db:04:c3:28:
11:52:68:e9:e3:d5:ae:9f:de:3b:75:08:7f:88:c7:62:e7:59:
a1:c6:49:03:ed:4b:17:3f:3a:da:b6:45:5e:92:5b:6a:34:81:
8f:2d:83:ce:94:f6:75:4e:51:2f:3c:6e:3a:07:7c:5d:10:c3:
f9:7d:58:2d:de:d7:89:f3:8c:10:1c:b4:47:63:7b:3e:21:ed:
93:86:97:b2:a2:32:ad:4b:dc:f2:94:b2:30:00:43:1b:ab:d1:
42:03:ff:62:8b:d9:ef:77:6f:90:aa:41:cb:ff:40:a9:d0:3d:
7f:18:c1:7b:b4:04:ac:3b:64:09:d4:e3:1b:b9:2d:f9:47:db:
4b:ec:ec:9e:9a:1f:18:cb:50:7a:6d:ef:4e:e0:1b:ce:0a:3c:
14:01:6f:a7:f7:33:5e:ad:75:89:e3:80:5d:dc:31:d1:e9:5d:
2b:6c:51:8e:cc:0e:34:62:c3:8c:65:32:9a:db:7a:3a:14:4a:
72:7c:ca:e5:b6:58:6a:11:df:14:0c:f9:30:76:21:46:54:b7:
73:e9:19:e2:61:45:db:d3:af:b5:bf:ba:03:a5:e7:dc:fc:d1:
e9:47:21:f8:c0:df:96:f2:5f:bb:57:89:b8:2d:99:8c:a9:eb:
79:72:6e:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 12:35:26 2024 by rpki-client on console-ams.rpki-client.org