Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft
File: ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft (raw, json)
Hash identifier: rz63SJRMT/SQC8UixcF61eEEsJrGntEWwtnY8QZNxWU=
Subject key identifier: E8:84:F7:20:FD:7D:D3:11:CF:78:3C:2D:CC:B9:6C:5F:BE:3A:FC:2E
Authority key identifier: 89:AF:87:69:33:97:03:DA:3B:0C:B5:E8:31:02:3D:3B:F6:3F:02:2E
Certificate issuer: /CN=89af8769339703da3b0cb5e831023d3bf63f022e
Certificate serial: 018F994ED64C09D861ADFCB95384D9E16415
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft
Manifest number: 0A2A
Signing time: Tue 21 May 2024 04:00:31 +0000
Manifest this update: Tue 21 May 2024 04:00:31 +0000
Manifest next update: Wed 22 May 2024 04:00:31 +0000
Files and hashes: 1: XYD3udRDbSQdfVrW0koQoPxjLfA.roa (hash: P5r5mHp7c9eKdlX2lpDJMvOvoYOL8dCcvi+MmINIR1Y=)
2: ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.crl (hash: 82DW8X0XRHIUQw5MFFmzkjtDhuiReQxSYkEfA/Pxmd0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 04:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:99:4e:d6:4c:09:d8:61:ad:fc:b9:53:84:d9:e1:64:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89af8769339703da3b0cb5e831023d3bf63f022e
Validity
Not Before: May 21 04:00:31 2024 GMT
Not After : May 22 04:00:31 2024 GMT
Subject: CN=e884f720fd7dd311cf783c2dccb96c5fbe3afc2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1f:4c:c7:f0:c4:a6:17:23:b0:94:f4:04:d9:
3f:a0:53:a3:4e:c0:27:3d:87:7e:1f:43:0e:ad:1f:
86:70:62:7e:70:b8:dc:0c:76:3a:9b:cb:df:82:a4:
37:89:a7:88:38:c5:66:27:6d:76:af:02:5b:29:fd:
bf:8c:0b:e1:9d:c3:14:c7:c6:33:0c:94:f3:c6:7c:
47:79:47:cb:e5:fa:69:c0:2d:99:20:c9:19:53:66:
2c:84:9f:a4:ab:72:2f:0f:27:98:4c:c5:07:ab:b2:
f7:fd:0c:ca:e0:ca:99:56:2c:a6:ca:71:c7:9c:7f:
fa:18:43:4c:28:36:0e:a0:7c:d9:c3:cc:89:67:41:
19:e8:2d:3c:8e:d6:30:5c:5b:8e:cd:ca:35:ff:41:
b4:19:c9:f5:2e:f0:ff:96:29:ff:e0:3b:92:93:82:
05:3c:77:a6:da:b5:f3:d2:b6:9d:5a:4e:69:c1:fc:
18:74:75:14:8d:db:ae:e7:d0:a2:74:3c:e7:13:08:
4a:e2:0a:4b:31:a6:93:cb:69:9b:15:f4:11:db:ba:
86:1e:99:0d:e2:1e:0b:85:22:b8:fb:c1:05:a5:6e:
6b:c3:6a:0e:65:40:73:f0:59:86:5f:5a:38:f1:0e:
5d:e5:18:a9:0d:23:5a:12:50:53:98:bf:4b:85:bd:
95:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:84:F7:20:FD:7D:D3:11:CF:78:3C:2D:CC:B9:6C:5F:BE:3A:FC:2E
X509v3 Authority Key Identifier:
keyid:89:AF:87:69:33:97:03:DA:3B:0C:B5:E8:31:02:3D:3B:F6:3F:02:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:96:a7:e2:ec:63:51:36:2f:ce:9b:f8:ab:78:db:a0:7b:b2:
23:23:3c:e9:ac:a7:78:8a:8c:e3:d4:99:b4:c5:06:9f:67:4d:
e0:0d:4e:a7:b0:ee:45:fa:1a:7c:c5:3a:64:fe:8e:97:1b:66:
b4:7e:e0:bd:35:21:c0:71:f4:aa:87:fd:e7:7c:80:96:2e:db:
a5:8c:11:0b:30:bf:6c:76:81:ee:4d:c9:30:fc:d6:f6:49:f5:
47:13:6c:72:ec:db:93:70:69:82:4c:be:d8:70:82:01:2d:1a:
62:1e:e5:f3:db:c4:5f:15:3b:df:19:46:08:ad:6d:4e:37:8f:
b1:47:21:65:a1:a6:11:47:c0:9a:49:f3:a3:80:a0:55:a9:48:
6c:4b:27:6e:f3:3a:1a:4d:99:1e:0b:75:13:38:86:d9:28:39:
48:76:c8:a7:65:96:84:2a:55:1b:4d:d5:dc:ec:22:d9:1a:b6:
53:d2:10:96:57:9a:4a:a0:18:e9:de:4b:0e:55:aa:ad:db:7d:
7b:38:99:53:6d:fe:c5:9c:2e:5b:00:74:ee:46:28:5a:ff:1b:
64:60:25:92:05:df:87:b6:1e:1d:81:6d:18:36:59:d7:97:1e:
90:ab:c1:eb:9d:49:10:9e:0d:66:78:5e:4f:15:ab:58:61:d8:
d8:7b:82:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 13:34:30 2024 by rpki-client on console-ams.rpki-client.org