Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
File: I--d4hUq7xsqYqMfsvNehZCzrYQ.mft (raw, json)
Hash identifier: DUHHPTLSLTQMz/2s6CH/7atRlJqXUDKcPQGpL52vCEY=
Subject key identifier: 13:9D:93:62:8B:E7:16:D6:71:5F:AA:6D:29:AE:96:3D:E5:41:58:9C
Authority key identifier: 23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84
Certificate issuer: /CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84
Certificate serial: 018F874A743D5F381EA98D162A2158406100
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
Manifest number: 01C8
Signing time: Fri 17 May 2024 16:02:34 +0000
Manifest this update: Fri 17 May 2024 16:02:34 +0000
Manifest next update: Sat 18 May 2024 16:02:34 +0000
Files and hashes: 1: 0iPIn0B4eFrd1fYhl3B_QMoabOA.roa (hash: kLKjUt/phM+9IAnWlKGnGFf7oYR4x+MlZl4ycv/p2m4=)
2: I--d4hUq7xsqYqMfsvNehZCzrYQ.crl (hash: amHcjvDAmudRXDG3Dg4DiiRkiD8oae1hpG6KMtgfdbs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:74:3d:5f:38:1e:a9:8d:16:2a:21:58:40:61:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84
Validity
Not Before: May 17 16:02:34 2024 GMT
Not After : May 18 16:02:34 2024 GMT
Subject: CN=139d93628be716d6715faa6d29ae963de541589c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4b:c8:d5:1e:50:c4:a5:91:19:87:16:53:46:
72:66:9c:c0:d6:01:31:16:8e:b5:1b:8d:db:bf:73:
97:93:bd:44:95:ef:90:51:a4:dc:94:ee:0f:40:13:
34:f7:48:ee:62:bb:25:7f:3c:78:63:dc:cb:0c:d2:
80:0c:cf:e5:0a:a0:b0:f9:68:a8:53:1d:9e:e8:4e:
d4:98:b2:49:93:9c:e4:12:97:ac:73:0f:8d:5f:57:
27:5d:6b:4d:5d:c0:93:f3:3f:28:9a:bc:8b:2d:e1:
0c:d2:53:62:6d:7c:14:97:aa:83:5f:45:32:cb:a2:
9a:15:64:cb:0f:66:a0:a4:80:32:81:dd:f4:09:b0:
07:56:17:21:bf:b6:e1:17:d4:f7:16:71:cb:c5:eb:
03:bc:5c:35:26:95:7e:ed:ba:1c:e4:75:a5:96:64:
d2:ba:b4:a8:e2:1b:5c:06:85:bc:3c:7b:da:16:81:
33:b3:55:4b:08:c5:19:0d:16:be:ff:0f:2b:b5:8a:
a9:ee:f7:c7:fb:1e:ad:73:34:fc:79:d2:d9:67:fe:
9f:c8:88:ea:ff:72:51:eb:28:9e:2b:7e:b1:95:ec:
09:69:e0:49:c4:ff:50:43:d2:5b:a7:30:62:cf:26:
a4:10:ec:f9:30:4b:a2:ba:1e:00:45:8c:25:95:e5:
f7:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:9D:93:62:8B:E7:16:D6:71:5F:AA:6D:29:AE:96:3D:E5:41:58:9C
X509v3 Authority Key Identifier:
keyid:23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:1d:45:26:86:50:bf:85:3c:dd:ce:0e:5c:e3:94:11:81:2f:
1e:07:e9:68:ef:d9:d1:93:eb:29:ed:ba:26:65:c8:c2:32:cd:
cc:f6:c1:b7:14:fa:5e:0c:5c:37:1e:28:c0:fa:7e:13:d5:c4:
82:3b:22:62:c2:4e:03:c8:c3:42:81:be:b2:4b:bf:9d:ff:46:
26:e5:c0:63:95:90:f5:87:29:23:65:94:da:36:93:42:82:74:
5d:fd:48:a0:89:3c:a7:dd:39:57:57:00:86:dc:28:30:72:f6:
d9:8c:44:2a:95:a8:d9:33:72:4c:2a:f1:a0:d5:e8:80:fd:f6:
07:69:28:bf:f5:9b:df:9f:da:58:04:04:07:7a:b8:a2:ea:8b:
36:9f:4d:a2:e2:4b:92:d8:e3:42:cc:b4:ff:ff:49:7f:a6:c6:
e1:21:59:8b:51:e0:d3:48:0d:b9:c9:0c:5b:e7:fb:a2:1e:26:
78:cb:b6:91:fb:9a:3a:ef:49:ba:94:12:e0:3f:a2:bc:29:5d:
6f:82:b2:bd:64:6e:e9:2e:df:80:1f:1c:0d:8e:36:4d:66:53:
1a:21:3f:28:6e:d5:40:c9:fe:2c:34:b8:4b:85:7e:73:6a:8d:
21:94:35:7a:e8:76:dc:a9:02:04:3d:1b:c3:a0:81:fe:e6:15:
11:d8:85:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:23:15 2024 by rpki-client on console-fra.rpki-client.org