Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.mft
File: pRA1bcClIYlc5h-FSV4G2vehKzs.mft (raw, json)
Hash identifier: GrEBLmyghhLjjAm8gB6y6HUtW7uDgmgyg5Kx3tHF0r0=
Subject key identifier: CB:7F:CC:1A:D9:9E:90:4D:1D:93:23:4A:41:3A:91:90:17:41:2C:C8
Authority key identifier: A5:10:35:6D:C0:A5:21:89:5C:E6:1F:85:49:5E:06:DA:F7:A1:2B:3B
Certificate issuer: /CN=a510356dc0a521895ce61f85495e06daf7a12b3b
Certificate serial: 018F5EBB8CA19215C2E5723903A6D5E52E22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pRA1bcClIYlc5h-FSV4G2vehKzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.mft
Manifest number: 1162
Signing time: Thu 09 May 2024 19:01:40 +0000
Manifest this update: Thu 09 May 2024 19:01:40 +0000
Manifest next update: Fri 10 May 2024 19:01:40 +0000
Files and hashes: 1: 1-WcSIjOU0UwOA9pLWGEyt3S9KrM.roa (hash: ZPiBFbP5J0Wkntm1J4MElWcRENrt2GDRYU0CxLD/PNc=)
2: p8F4-GVzz5862Ng7caeIfHg2f1E.roa (hash: RC7n+MIiotg8/oTX4U2DNiqMAP2aJZOORGVRW8iynt8=)
3: pRA1bcClIYlc5h-FSV4G2vehKzs.crl (hash: BPawi2As5Ltj8GvsR96vyuuW9mReAe0GyVPsblEcSmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.mft
rsync://rpki.ripe.net/repository/DEFAULT/pRA1bcClIYlc5h-FSV4G2vehKzs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 10 May 2024 19:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:5e:bb:8c:a1:92:15:c2:e5:72:39:03:a6:d5:e5:2e:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a510356dc0a521895ce61f85495e06daf7a12b3b
Validity
Not Before: May 9 19:01:40 2024 GMT
Not After : May 10 19:01:40 2024 GMT
Subject: CN=cb7fcc1ad99e904d1d93234a413a919017412cc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:de:3b:88:6f:ef:4d:2c:c8:a3:2e:f5:c2:0e:
e3:15:23:dc:70:7e:58:9b:5d:c9:c4:34:fe:08:c9:
83:6a:24:03:59:72:2e:fb:eb:60:65:63:72:15:98:
4b:48:92:86:ec:ba:ec:56:b6:2b:69:47:95:f8:7d:
d3:7d:c4:a2:31:f2:ef:c0:5e:07:8d:89:cc:a9:31:
05:f9:25:0f:94:79:96:25:b6:12:e5:0f:66:41:2b:
b7:ed:22:00:2d:9f:bd:5c:6f:a7:36:83:2f:f1:f8:
8d:53:85:eb:a5:f7:05:e1:f2:b1:46:07:0c:b1:5e:
85:49:9f:52:c1:d7:47:b0:cc:df:86:14:7a:0a:31:
cf:7a:00:82:18:c4:74:58:89:6e:32:96:62:47:0d:
e8:ab:a1:79:fd:7a:d5:e3:8e:e0:22:37:c7:de:ef:
08:30:b0:5b:ba:26:2a:34:c7:11:75:24:e9:59:ba:
16:c2:e2:49:04:c4:9c:81:bb:5f:96:e5:18:75:25:
93:d9:22:b4:31:de:90:aa:bf:73:80:da:2b:fa:e4:
05:73:80:8b:00:b9:24:d2:a4:83:f2:f0:40:43:31:
93:e8:42:c7:0f:9e:b3:0c:47:dd:c7:57:14:a8:96:
6a:ef:07:b7:29:40:91:d4:65:5b:1a:f2:f9:53:85:
10:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:7F:CC:1A:D9:9E:90:4D:1D:93:23:4A:41:3A:91:90:17:41:2C:C8
X509v3 Authority Key Identifier:
keyid:A5:10:35:6D:C0:A5:21:89:5C:E6:1F:85:49:5E:06:DA:F7:A1:2B:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pRA1bcClIYlc5h-FSV4G2vehKzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:0b:97:ea:0b:0e:3f:fd:22:79:13:5a:5e:13:6c:f8:d5:d3:
58:46:b6:eb:53:21:11:f0:4d:71:88:8d:b4:17:ba:26:33:06:
fe:b0:85:b9:47:78:57:74:40:c5:24:4a:5d:6e:00:60:31:8b:
af:70:0d:93:e1:00:45:4d:ee:a9:f0:56:ef:78:03:de:c2:12:
05:ca:90:8e:2f:36:17:9f:da:6e:1e:8e:5a:00:ed:4a:7d:5c:
a8:f0:ed:18:f8:60:ef:da:89:b9:8b:8f:9a:33:05:be:e2:48:
0a:ed:32:03:81:5b:cf:b7:6b:e8:8a:df:3e:25:d6:b8:5f:65:
a1:46:71:34:8a:b1:31:0f:2c:22:26:3a:8e:dc:b4:23:29:90:
65:c3:bd:7e:0b:2a:98:4a:9e:05:60:ec:95:75:46:a2:86:4f:
a0:61:4b:c9:cd:27:e4:e0:8c:fc:9a:a1:49:a1:ca:22:b7:31:
e0:8a:c9:28:42:91:cc:11:b3:66:e6:46:c5:76:2e:2c:1d:7b:
84:77:1e:20:40:b5:47:63:5d:ec:b0:48:f4:9d:4c:93:58:59:
7e:79:b3:f7:f6:d7:ac:1c:d5:81:43:b7:fc:1e:80:7a:aa:b8:
86:4a:ce:7f:6c:6e:7f:72:13:ed:35:10:fd:58:b8:d9:5e:27:
4f:55:bb:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 00:49:37 2024 by rpki-client on console-ams.rpki-client.org