Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
File: SU14c0FlEKL7I0bvNCKAFVUicTs.mft (raw, json)
Hash identifier: i8J7OxK9OMThuIKe4Ds0d5AKpvZQg3uIVC8gYtf4slY=
Subject key identifier: 7D:CF:1D:BF:75:D2:5E:50:75:C1:ED:63:1E:52:5B:43:17:BF:3B:85
Authority key identifier: 49:4D:78:73:41:65:10:A2:FB:23:46:EF:34:22:80:15:55:22:71:3B
Certificate issuer: /CN=494d7873416510a2fb2346ef342280155522713b
Certificate serial: 018F8823FC9384FA3614B65188BE528BBEDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
Manifest number: 0E89
Signing time: Fri 17 May 2024 20:00:10 +0000
Manifest this update: Fri 17 May 2024 20:00:10 +0000
Manifest next update: Sat 18 May 2024 20:00:10 +0000
Files and hashes: 1: F6PQ9QxCrP1FvXd_CfbLxRhhTNQ.roa (hash: n0PRrUQAyBx9CcvAOmYSIyc/QdWUwxnb8OXptwsMWLg=)
2: SU14c0FlEKL7I0bvNCKAFVUicTs.crl (hash: Fcgj0QdadUIW75tN41dCGm1bBTmStM8QnFRNqGndsfw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:23:fc:93:84:fa:36:14:b6:51:88:be:52:8b:be:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=494d7873416510a2fb2346ef342280155522713b
Validity
Not Before: May 17 20:00:10 2024 GMT
Not After : May 18 20:00:10 2024 GMT
Subject: CN=7dcf1dbf75d25e5075c1ed631e525b4317bf3b85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:c4:64:95:e5:69:45:57:d3:d1:f0:df:89:dc:
35:aa:90:2b:e4:67:10:1f:85:bd:a9:5c:1a:42:23:
d8:e8:7e:c4:87:d9:08:b1:f1:25:73:c6:11:96:e0:
65:1a:27:37:62:ee:f9:b8:be:08:f1:51:3b:e0:fc:
52:c0:98:a6:d2:10:f2:2f:04:6e:67:f8:6a:28:d0:
39:01:46:95:1a:79:91:89:ed:d4:42:cf:5e:a1:54:
84:99:e5:54:0b:64:01:d4:57:15:3e:a0:62:01:c0:
28:29:09:7f:f1:a8:b6:39:64:63:1b:79:c5:55:4d:
8c:c6:74:01:e3:91:dd:31:5f:06:3b:b8:f5:f4:ab:
85:18:8c:0d:10:71:01:05:8f:da:f5:33:fc:25:96:
a0:a1:29:07:e2:a4:eb:49:15:f9:5f:04:bf:45:8b:
9d:d6:f0:20:c1:d9:52:cc:62:19:4d:2f:c1:82:e7:
a4:b5:25:f7:cc:0c:19:32:28:db:86:a1:fe:8c:28:
e6:f8:c9:08:6e:9c:c2:1e:63:3a:9c:09:26:2a:4c:
19:5b:c3:ed:13:5c:2c:c1:81:ee:b5:77:ca:9c:89:
d1:cb:6f:ba:71:82:bb:9a:fe:99:1e:52:e5:a3:03:
7e:67:8d:20:6f:99:d4:55:ec:aa:13:ac:2d:81:7c:
31:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:CF:1D:BF:75:D2:5E:50:75:C1:ED:63:1E:52:5B:43:17:BF:3B:85
X509v3 Authority Key Identifier:
keyid:49:4D:78:73:41:65:10:A2:FB:23:46:EF:34:22:80:15:55:22:71:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:8a:9d:14:86:a8:ca:ef:93:eb:03:30:5e:38:df:91:1f:3f:
7c:2d:ed:3b:8a:29:90:05:40:a9:02:b0:11:09:f0:33:91:b5:
4f:22:a9:f8:68:d0:03:e3:80:88:47:26:12:fd:ee:d9:6d:92:
2e:0e:e1:79:4f:78:f0:30:8c:ae:9e:c3:9c:93:ca:9a:97:85:
8e:54:55:1c:95:52:b3:ba:9d:1c:66:b6:3f:6c:88:db:db:e8:
49:99:3b:b4:f6:b6:7f:77:5e:44:30:53:8a:de:33:fa:4b:a9:
b8:23:f1:34:66:28:03:55:58:d6:4e:b8:b4:3a:f6:5c:86:99:
70:f8:43:58:62:e4:64:ff:bc:06:c4:9e:66:b8:ee:0d:49:cb:
1c:a8:61:8d:e2:6f:79:26:e3:52:fa:44:90:bd:24:d1:6e:d0:
02:66:40:d6:60:a3:70:71:a5:44:c1:fd:86:8c:3d:a5:28:3e:
86:77:4b:cc:20:14:ce:9b:ea:85:35:5f:ea:c1:dd:45:f3:25:
87:da:a9:0a:74:fa:67:38:25:b8:91:14:70:bf:49:fa:ad:83:
35:8d:76:93:14:03:f3:d9:3f:f3:73:cf:69:d5:2b:62:df:a0:
e3:95:e7:d6:22:f3:82:bf:29:17:93:11:06:0d:e9:72:cf:14:
a3:d5:be:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 21:11:46 2024 by rpki-client on console-ams.rpki-client.org