Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
File: ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft (raw, json)
Hash identifier: k46Xym0IsUi33mrIUkcICyQf6FLdda1zpW8pDmmWQ6I=
Subject key identifier: 74:33:F7:12:A2:62:0F:A7:64:34:18:17:93:8F:3B:91:7A:67:B9:60
Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Certificate serial: 018F877F3B174E8AFFB3169D1141AE70AB8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
Manifest number: 055F
Signing time: Fri 17 May 2024 17:00:13 +0000
Manifest this update: Fri 17 May 2024 17:00:13 +0000
Manifest next update: Sat 18 May 2024 17:00:13 +0000
Files and hashes: 1: 0a8FN8FTIEbSVMU9dR7kj1MMHSU.roa (hash: G4EOAkoERx1fOcRd2uiBPN9D/u0llTSpzQXBwIz0iqQ=)
2: ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl (hash: JZYKEknEwyKp9tOTLpWsDJ59FJLyK1UqwvDWfwGG5T0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:7f:3b:17:4e:8a:ff:b3:16:9d:11:41:ae:70:ab:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Validity
Not Before: May 17 17:00:13 2024 GMT
Not After : May 18 17:00:13 2024 GMT
Subject: CN=7433f712a2620fa764341817938f3b917a67b960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:3c:da:45:1a:b6:e8:5a:cf:22:1a:f6:87:0b:
34:94:60:8a:41:05:57:2c:02:56:95:ac:e7:4b:cd:
a3:5f:fc:e4:d4:f3:82:7b:a5:f6:71:48:c0:7a:51:
d1:3e:c5:18:6a:84:23:fc:97:b0:39:fe:a3:a6:d0:
09:d9:64:42:ee:e5:4d:71:be:e1:dd:9b:3b:aa:7d:
47:90:7c:cb:f7:4d:0a:da:f3:7f:b1:96:41:4b:13:
6e:57:40:d7:7e:54:34:5b:d7:60:35:f9:9a:e4:99:
4e:9d:5d:9d:1b:4d:f6:a7:dc:2b:c9:26:22:44:63:
33:d1:5d:a1:c3:98:72:da:2d:b6:cf:b9:0a:f0:8f:
c2:2d:72:7d:1d:7b:fb:90:5b:09:d3:96:44:a8:81:
20:21:e9:31:63:06:79:36:78:6b:ea:30:88:26:55:
7e:44:1d:75:3e:f7:f0:c5:c5:d1:e7:d8:ce:ab:24:
dc:e0:ba:ea:3f:27:e8:a8:45:22:c4:a1:c5:f5:33:
3c:60:c8:16:00:bd:f6:80:83:bb:b7:86:27:12:39:
0a:a6:28:09:c1:e2:f5:bc:2a:c4:6e:73:bc:d1:56:
ed:60:df:19:84:19:1f:86:a4:32:49:4c:a5:2d:d1:
88:8c:12:15:8d:f7:0f:d1:bf:ef:15:ee:1b:55:a0:
b3:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:33:F7:12:A2:62:0F:A7:64:34:18:17:93:8F:3B:91:7A:67:B9:60
X509v3 Authority Key Identifier:
keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:a5:eb:a0:36:56:37:8a:59:b0:42:55:e0:8d:ce:d1:02:ef:
9e:b0:0c:c1:c4:d0:0a:b5:a9:fe:26:32:ee:3f:23:4b:c7:04:
9c:e0:30:a5:0b:d1:90:21:68:e4:4f:4a:a8:a1:8b:ed:7b:f1:
49:87:1e:8b:72:48:b6:36:78:b0:79:39:7f:7e:8c:fd:12:92:
3c:8e:7c:0b:e7:c9:e3:65:88:b8:b1:ce:59:60:62:a9:32:54:
69:f0:ba:26:c0:95:a5:dc:dd:59:10:a9:84:b6:68:e5:bf:ae:
f2:af:21:d5:95:da:de:9c:8a:56:bf:f0:ae:53:dc:14:9f:4c:
4c:4d:f6:a7:5d:f9:0b:ae:8e:e7:31:d2:42:d8:36:6f:47:d8:
a6:e9:29:a6:72:27:66:4d:a0:36:e1:a0:7f:96:6e:4f:7c:5f:
79:4a:ad:d6:b6:09:a0:cb:b3:34:aa:75:32:9f:68:e0:29:7f:
72:f8:fc:f4:47:aa:cc:26:90:75:d1:40:a8:f9:8e:7c:9a:69:
24:9d:9e:dc:18:60:30:b1:78:6f:6d:b4:4c:dd:2d:1d:7f:7f:
65:5c:3a:7c:3e:40:d7:6e:cb:91:67:d2:01:4f:7c:45:db:8f:
d6:7a:0d:28:d8:83:83:43:ee:83:bf:b8:da:27:08:b1:5f:93:
76:9c:c7:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 23:47:53 2024 by rpki-client on console-ams.rpki-client.org