Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
File: aIEP_k-SA6EAZ31lGTtEJniaz1w.mft (raw, json)
Hash identifier: eDs/7tTl1VMK2c2SCMYo7pu2GDxkIu1BChfGtcJP3Us=
Subject key identifier: 85:D0:E6:1F:C7:28:35:DD:F7:77:30:E6:8E:FE:70:96:BB:9E:0A:A4
Authority key identifier: 68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C
Certificate issuer: /CN=68810ffe4f9203a100677d65193b4426789acf5c
Certificate serial: 018F874A8D7C606C42982A317A9CF4BAA00D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
Manifest number: 0588
Signing time: Fri 17 May 2024 16:02:40 +0000
Manifest this update: Fri 17 May 2024 16:02:40 +0000
Manifest next update: Sat 18 May 2024 16:02:40 +0000
Files and hashes: 1: XFl82jxdYDNbHjNgNB33ituVOsI.roa (hash: SKCNrV9STebt1D64arBRRyvWJkVbv/y01Xwxvd+s5Og=)
2: aIEP_k-SA6EAZ31lGTtEJniaz1w.crl (hash: Puz6zLz5ovYwtKpnF4TDSN6gZmEZdB4XGx72DT3W4Sc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:8d:7c:60:6c:42:98:2a:31:7a:9c:f4:ba:a0:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68810ffe4f9203a100677d65193b4426789acf5c
Validity
Not Before: May 17 16:02:40 2024 GMT
Not After : May 18 16:02:40 2024 GMT
Subject: CN=85d0e61fc72835ddf77730e68efe7096bb9e0aa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ff:ff:a6:08:c8:27:6c:30:66:f0:fb:ae:1e:
fe:d5:e2:15:54:be:2e:77:b3:ba:7e:22:3d:0e:ea:
df:cd:02:c0:05:8a:d9:8b:f9:c1:c9:02:7c:22:57:
ae:90:dd:13:bb:2b:4f:4d:db:97:64:53:9a:60:7e:
ad:63:a7:8f:b5:13:d3:30:2e:ee:24:0a:2c:54:87:
15:31:42:02:cb:bd:2c:56:ae:cf:29:76:53:6e:a5:
78:6a:a5:b3:82:2a:4b:1d:0f:40:a6:72:6a:eb:f4:
33:ff:03:6f:19:d5:b7:40:41:04:7d:22:4c:bb:79:
ec:b7:33:47:12:e5:29:3a:4e:9e:a4:72:26:c4:30:
36:73:0b:9f:ab:ff:3f:68:0a:ab:7c:1c:57:c5:b6:
fe:b5:62:d4:e5:64:36:2b:13:16:9a:ff:28:50:6d:
45:29:dd:11:32:3a:55:ed:a7:fb:ce:32:36:d5:a4:
23:56:3f:c3:e7:1a:93:32:d8:1b:a1:04:4d:44:be:
50:85:ef:ab:6e:f6:e9:9a:45:02:11:ed:96:e2:15:
f2:b2:b4:a8:dd:91:bd:b4:c8:8a:b5:84:5c:6e:77:
ef:7c:39:2e:d4:09:d6:5f:93:39:31:46:c8:8f:5a:
63:5f:57:77:a9:b7:91:e5:29:51:a9:52:e9:0a:7e:
38:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:D0:E6:1F:C7:28:35:DD:F7:77:30:E6:8E:FE:70:96:BB:9E:0A:A4
X509v3 Authority Key Identifier:
keyid:68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:d5:3f:b9:bf:d0:6d:97:44:5a:dd:db:76:19:0a:55:a8:d2:
51:db:98:82:35:f4:3a:58:ce:be:41:9c:30:e3:b3:cf:05:ec:
e0:bf:6b:0b:c0:fd:b2:ad:87:8f:6e:a8:97:e3:63:ba:94:99:
7b:07:f1:4b:6f:77:8b:07:55:81:5c:55:57:20:b2:ee:9e:7d:
01:02:ec:fc:fa:ce:70:10:36:2a:a4:b1:6e:ca:2d:0b:f4:46:
bb:04:08:70:d7:30:65:4a:52:8f:f6:c9:fa:ed:17:b5:e0:8c:
0b:20:5c:c5:7d:83:03:9a:6b:ce:2d:0f:16:95:6e:10:16:34:
1b:f2:1a:cb:00:af:2f:d3:eb:c1:76:f1:1b:b8:8d:69:0f:31:
84:d9:2d:05:ff:78:76:2a:e3:27:6b:e3:72:9c:a8:db:6a:3d:
de:97:c2:c2:fb:b5:8f:b7:3d:b1:80:20:1b:f3:13:cf:87:bc:
28:67:70:a5:5e:55:98:e7:70:72:f2:d1:99:8b:d4:bf:29:37:
af:59:04:05:93:3a:69:a9:8c:bc:d1:e4:f2:4b:61:b5:1a:95:
3b:a4:d2:0e:b3:c2:eb:1b:e5:e9:fa:06:81:00:b1:4d:22:89:
13:7b:68:c3:ec:fd:19:78:b4:06:43:3c:d7:d0:60:a4:14:13:
b4:0d:0f:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:00:32 2024 by rpki-client on console-ams.rpki-client.org