Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
File: vaYQQ1QkhQlrDfQ1HMDal383cN0.mft (raw, json)
Hash identifier: g4O3H7m9EuWbpDO28zAD0LMpjD4vJPzolQpaq5agJys=
Subject key identifier: 35:A5:8E:55:5D:A4:74:55:BD:4E:C4:40:20:87:27:7E:2D:6A:F0:3F
Authority key identifier: BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
Certificate issuer: /CN=bda61043542485096b0df4351cc0da977f3770dd
Certificate serial: 018F8748BBCCFB02AFB5763E4406DF5CFE81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
Manifest number: 1179
Signing time: Fri 17 May 2024 16:00:41 +0000
Manifest this update: Fri 17 May 2024 16:00:41 +0000
Manifest next update: Sat 18 May 2024 16:00:41 +0000
Files and hashes: 1: M1Zb7uwl6jel9-LympB2obGx-gI.roa (hash: sJMW5VofdhLEu08b+4lUt+J9us3oLh8TusE1ZY86djk=)
2: vaYQQ1QkhQlrDfQ1HMDal383cN0.crl (hash: aNUEFfE0YwRDkQDCfH33Y2j+mqhCGBQY7syFXVHH3mc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:48:bb:cc:fb:02:af:b5:76:3e:44:06:df:5c:fe:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda61043542485096b0df4351cc0da977f3770dd
Validity
Not Before: May 17 16:00:41 2024 GMT
Not After : May 18 16:00:41 2024 GMT
Subject: CN=35a58e555da47455bd4ec4402087277e2d6af03f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:3f:9c:f5:3d:8a:c7:8b:65:2f:a7:54:4d:ca:
97:16:46:42:63:cd:9e:e9:e4:12:27:06:e4:67:de:
10:b9:cb:77:d6:3e:74:c3:de:d2:0c:42:61:33:34:
f7:13:4f:64:a9:8b:20:90:0f:7b:1a:e3:87:1a:87:
1a:bd:32:70:42:be:68:e8:9a:ce:d2:ac:ae:c1:3b:
c4:ac:a5:ff:29:a6:33:05:dd:7f:1d:f6:31:4e:3e:
2b:6b:28:8f:b0:45:42:f4:7b:11:85:a1:64:4e:e7:
f5:54:fb:2f:e6:79:46:ed:91:bc:92:45:0d:41:b2:
f4:30:d2:79:f9:13:92:b4:ef:e7:45:2b:41:cc:a6:
95:12:a4:b8:8f:8e:33:00:91:be:ba:2f:08:87:0f:
01:3e:3a:27:38:f2:ad:b0:2c:19:0b:a8:e2:25:f4:
8f:c4:68:b1:e3:b6:77:ca:5c:20:46:f2:81:49:c9:
0f:ad:32:f6:2d:84:e8:9f:53:dc:fe:e7:e5:04:fb:
05:61:b8:2b:cb:00:a3:0c:b2:c8:01:61:88:88:5f:
aa:c8:5f:c3:0b:88:ef:e2:01:cb:e2:d8:e2:ab:f0:
bf:e6:b2:1c:77:a2:bb:73:51:30:e0:83:63:10:be:
43:a7:b6:91:55:7d:6a:4d:76:8e:7f:3c:42:9c:69:
87:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:A5:8E:55:5D:A4:74:55:BD:4E:C4:40:20:87:27:7E:2D:6A:F0:3F
X509v3 Authority Key Identifier:
keyid:BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:e2:4d:77:29:29:28:81:a0:07:bb:65:b2:b9:a4:70:6d:1b:
1d:52:8e:74:f3:20:19:c2:22:34:1b:39:72:44:ba:5e:72:20:
a9:87:99:d0:7d:94:52:f0:11:4b:a5:b4:d3:8d:2e:61:8f:3e:
3a:0c:14:5a:1d:d6:46:bc:be:00:f7:12:8c:5c:f3:2a:cc:f0:
90:b1:93:50:fb:c7:38:4c:e7:ab:c1:c3:f7:4d:59:35:d9:f3:
f5:37:8a:37:7a:2b:e2:30:b6:ce:50:f1:fe:34:dd:3c:b5:64:
c2:40:1d:76:6b:a5:5b:cd:da:08:51:ea:95:1c:a8:8b:4b:88:
7f:16:3c:d6:a9:2b:aa:5b:8a:fe:15:60:6b:c9:7e:2a:ca:0d:
02:4f:59:91:82:0c:53:e9:2b:b0:c2:7f:ba:2e:10:24:c5:89:
7e:89:7a:34:a0:3b:f1:be:12:ad:21:80:52:5b:d7:45:dd:15:
ac:bc:3a:ab:41:eb:fc:98:ae:71:c3:ce:5b:76:18:88:1d:3d:
d9:8a:8c:26:f6:37:a2:8e:31:51:a7:ce:de:82:ae:90:8e:5f:
cb:19:00:c4:b1:3c:39:d0:12:72:a9:83:5a:45:cc:8f:e8:c6:
bb:d2:73:87:46:30:50:2f:a8:f1:61:c2:3b:76:15:56:a4:56:
28:20:3b:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:01:08 2024 by rpki-client on console-ams.rpki-client.org