Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
File: 4oNEKXdeZVXldCSSKGJUsdqfGQM.mft (raw, json)
Hash identifier: vHzkhj9KkKDfUQ4giqqWs3Qe20KeUnLpoPyVRR4lxJY=
Subject key identifier: 86:F5:53:75:D7:F6:75:E8:62:32:90:9C:54:C9:39:F6:4E:2D:4D:DC
Authority key identifier: E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03
Certificate issuer: /CN=e2834429775e6555e5742492286254b1da9f1903
Certificate serial: 018F53C97E406A60E061E90487A9B1A0BA1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
Manifest number: 0A17
Signing time: Tue 07 May 2024 16:01:04 +0000
Manifest this update: Tue 07 May 2024 16:01:04 +0000
Manifest next update: Wed 08 May 2024 16:01:04 +0000
Files and hashes: 1: 4oNEKXdeZVXldCSSKGJUsdqfGQM.crl (hash: GuK/B4VpZJ6eej2PuAVvuU8MtslcQfE3VHL4mEDv/ao=)
2: NN3idMrc6fFxAocAQ39FBwXKahg.roa (hash: 5Bt0LicYFc8Q9aSa59/Lj2ApbR15fSi4dRjdDm33MQM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:53:c9:7e:40:6a:60:e0:61:e9:04:87:a9:b1:a0:ba:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2834429775e6555e5742492286254b1da9f1903
Validity
Not Before: May 7 16:01:04 2024 GMT
Not After : May 8 16:01:04 2024 GMT
Subject: CN=86f55375d7f675e86232909c54c939f64e2d4ddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:cf:49:f3:ba:64:f6:80:89:dc:38:7a:bc:11:
82:a0:6e:f1:b0:fb:2c:d9:40:8b:36:77:64:41:49:
97:bf:c2:b9:9d:23:2d:66:0a:40:a8:2e:ec:42:08:
61:5e:1b:b0:0a:a1:a8:6c:e9:d8:0d:ca:5f:b7:3c:
48:ad:30:a6:8b:80:82:4c:43:0f:11:47:ef:3c:fb:
a3:f0:aa:af:fc:51:68:b3:9f:ba:fb:85:1a:76:2a:
e7:e2:64:be:b3:60:db:d3:ce:52:47:cb:7c:d9:0a:
19:3e:f3:84:5f:2f:c6:a5:4f:a6:16:b3:06:bb:f0:
e5:59:cc:e4:75:57:ee:98:5c:b3:a1:52:81:5e:af:
8b:63:65:5c:2c:c4:c1:25:e6:bc:2c:5e:9c:55:8f:
4a:b1:d1:82:b6:48:0c:2f:3e:55:79:62:49:15:bf:
c7:fb:2c:79:96:85:bb:5c:55:74:68:48:d3:9d:77:
b7:ad:1a:c4:dd:97:ab:97:7f:e3:6d:d7:2d:8b:55:
f9:e0:4c:e8:48:93:0b:7f:07:94:b5:ac:2e:53:7c:
60:7d:95:be:ec:31:84:a2:76:e5:a9:b7:1d:4c:f2:
a1:2a:d1:b0:0d:e2:86:5a:c9:a6:d9:5a:ae:0b:bd:
dc:80:ee:8c:e6:69:0e:d1:59:82:89:58:56:04:0f:
b5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:F5:53:75:D7:F6:75:E8:62:32:90:9C:54:C9:39:F6:4E:2D:4D:DC
X509v3 Authority Key Identifier:
keyid:E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:de:53:2e:ec:f6:28:42:26:20:9d:f3:64:dc:4f:9e:8f:e1:
07:4b:d2:78:8f:a5:87:8e:44:be:e1:95:a5:75:8b:16:95:32:
71:3b:9b:a3:57:12:c7:92:b8:f3:b9:ea:68:e9:02:f0:94:3b:
6a:7a:7d:14:4e:66:25:41:d2:9b:71:d5:38:e9:93:c4:fa:b0:
86:91:47:a2:ce:63:b9:fe:ef:7e:e5:ab:6a:d6:b9:26:98:9c:
67:30:3e:51:b6:00:51:c8:a7:72:ab:f0:ab:4b:bf:7a:28:bf:
88:a3:d9:7d:53:e3:6e:d0:0e:73:d5:ac:a4:fb:41:f8:4f:6b:
22:bf:f4:b0:69:4f:28:56:67:07:63:3b:70:d1:de:46:80:3a:
a7:ba:07:c5:74:39:d8:4a:11:d9:3c:f5:58:52:98:ee:52:53:
de:bb:ae:fb:ce:d7:7b:25:13:30:1a:da:f9:5f:fb:da:2f:92:
20:f4:ae:ea:b4:a8:c7:e8:1b:cf:d9:2e:bd:fd:a9:63:6c:d9:
15:17:1b:ae:4f:a3:4a:e9:2c:79:67:fe:ee:4d:7b:3b:b0:90:
6d:c0:5e:bc:bb:e8:71:d9:6a:da:2d:55:96:50:c7:68:e7:ae:
b0:75:77:3f:b9:a7:49:cc:a2:6e:c1:d1:f7:c1:83:2b:5d:da:
d6:06:d6:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 19:36:13 2024 by rpki-client on console-ams.rpki-client.org