Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
File: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft (raw, json)
Hash identifier: UzLCArrtD5Qi9yw0kxaURMoP3gr3iw/B10s54cI8DDE=
Subject key identifier: 31:12:B1:94:E9:72:8D:51:FF:84:8A:8D:40:E8:EB:D4:E3:8E:AF:B3
Authority key identifier: 03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E
Certificate issuer: /CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e
Certificate serial: 018F88249FD1B7306E9E5A0A6C8DDDF413A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
Manifest number: 0108
Signing time: Fri 17 May 2024 20:00:52 +0000
Manifest this update: Fri 17 May 2024 20:00:52 +0000
Manifest next update: Sat 18 May 2024 20:00:52 +0000
Files and hashes: 1: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl (hash: CruaoCRRqKHDtM2m8sjrPrKxiPBJzq8YQYB4IO1gWtc=)
2: RFFndJaAsheyX40fDDXhXYd6y6g.roa (hash: i84XH17q/j96gcob+vFRMtu00NEFwhm7XnWZlowNKZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:24:9f:d1:b7:30:6e:9e:5a:0a:6c:8d:dd:f4:13:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e
Validity
Not Before: May 17 20:00:52 2024 GMT
Not After : May 18 20:00:52 2024 GMT
Subject: CN=3112b194e9728d51ff848a8d40e8ebd4e38eafb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6c:82:09:4d:97:84:e6:53:b1:a1:8f:f4:78:
9b:34:34:8d:fb:d3:f6:5d:ae:86:7b:74:b5:3c:1b:
31:74:7c:cb:d7:56:04:0e:e8:b6:9e:c9:67:0b:50:
36:28:f9:14:a2:19:49:ed:c5:d2:6e:05:dd:c4:10:
30:d1:f0:fb:74:0c:a8:91:59:af:66:07:e3:e4:87:
32:90:ff:ac:da:42:24:1b:19:e0:c6:5a:d6:e3:67:
86:40:b9:1f:59:8c:a4:6d:39:92:7e:49:8d:ad:6d:
bd:ba:8d:7f:93:27:cb:cf:45:f3:26:82:9c:8e:7c:
e2:e9:0a:24:f1:fe:2a:75:9c:27:f3:01:3b:a6:01:
3c:23:c5:b3:41:26:5d:de:fb:5d:7f:69:80:22:c3:
a7:8f:b4:d6:f3:e8:6a:10:2e:f6:39:93:52:7f:ba:
44:f8:4b:91:56:7d:e7:45:d5:1f:ee:bc:98:16:42:
68:b7:2f:52:07:d0:ac:72:5d:03:1b:6a:ad:3f:8f:
3e:6c:d7:ad:4b:78:52:38:94:b6:02:df:a9:ee:9b:
e0:47:59:f6:7e:ed:1c:8d:2a:cc:18:c5:a6:4c:e8:
66:7f:b8:58:5e:c5:b3:d4:3d:03:01:f4:1b:1b:4e:
d0:8b:49:d0:ad:42:d5:97:ea:4b:73:0d:81:3c:83:
cf:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:12:B1:94:E9:72:8D:51:FF:84:8A:8D:40:E8:EB:D4:E3:8E:AF:B3
X509v3 Authority Key Identifier:
keyid:03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:db:ea:80:b5:56:7e:8b:cb:bf:3b:41:be:6a:3f:57:e6:10:
b1:cc:8a:4d:a2:97:cf:7e:dc:55:c1:e3:00:98:6d:db:d1:6b:
93:ee:65:3c:9c:a2:20:37:94:8e:a1:d3:76:30:94:6e:70:8c:
5d:a5:11:20:8c:8d:77:34:59:db:53:ad:bf:3c:86:c9:e0:5b:
c9:83:8e:16:8a:73:4b:e6:50:4d:09:f4:66:bf:7b:a8:28:09:
94:6e:12:be:4e:75:0f:be:b1:d7:4d:a8:59:d7:9f:19:63:22:
4e:97:25:63:4d:59:c7:77:16:38:f9:d8:d2:a1:f5:74:b3:77:
90:88:7a:fd:32:c4:f4:c5:e9:7c:38:fe:6a:13:f8:d6:fb:ea:
05:6c:6c:45:1e:8e:d6:79:50:a0:1b:5c:43:0b:7a:5f:6d:9e:
3c:21:94:40:a3:a2:e8:ff:1a:34:62:dd:ec:c6:44:d4:e9:d5:
fd:6f:d9:19:cc:c1:12:d8:83:b6:08:30:96:76:a5:20:eb:e9:
c2:90:70:b3:5d:dd:d7:fb:33:f2:92:66:17:92:91:3e:71:4e:
04:b9:13:d1:da:1a:c3:6f:58:84:19:54:10:71:06:53:bf:09:
e5:53:35:48:5e:41:e9:8d:49:02:77:be:86:a5:f9:de:b4:b1:
69:14:cf:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 01:54:36 2024 by rpki-client on console-fra.rpki-client.org