Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/0vONSutNAojbuFTR6uC9itP4Qfo.mft
File: 0vONSutNAojbuFTR6uC9itP4Qfo.mft (raw, json)
Hash identifier: PfQclq4XZlN/FRtSk/1AOrrr4xTywoLakLTmOa8/StE=
Subject key identifier: 45:3E:D0:51:43:22:4B:AF:01:F0:49:DC:8C:AC:56:E9:B6:C2:23:72
Authority key identifier: D2:F3:8D:4A:EB:4D:02:88:DB:B8:54:D1:EA:E0:BD:8A:D3:F8:41:FA
Certificate issuer: /CN=d2f38d4aeb4d0288dbb854d1eae0bd8ad3f841fa
Certificate serial: 018F3D0AA2E1ECF41E0AC57154F35903ACE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0vONSutNAojbuFTR6uC9itP4Qfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/0vONSutNAojbuFTR6uC9itP4Qfo.mft
Manifest number: 1151
Signing time: Fri 03 May 2024 06:00:58 +0000
Manifest this update: Fri 03 May 2024 06:00:58 +0000
Manifest next update: Sat 04 May 2024 06:00:58 +0000
Files and hashes: 1: 0vONSutNAojbuFTR6uC9itP4Qfo.crl (hash: 9pN3i5dq2JOaDudvGVWcUXgH9w2kSMS36m6ihusWG0s=)
2: 2LNHKRM6LGb1SQNMFWHYsqL4gA0.roa (hash: Lebm8MWbqU7lJJEa9svp1kAtq13EnCHpdLokMxqIu7I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/0vONSutNAojbuFTR6uC9itP4Qfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/0vONSutNAojbuFTR6uC9itP4Qfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/0vONSutNAojbuFTR6uC9itP4Qfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3d:0a:a2:e1:ec:f4:1e:0a:c5:71:54:f3:59:03:ac:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2f38d4aeb4d0288dbb854d1eae0bd8ad3f841fa
Validity
Not Before: May 3 06:00:58 2024 GMT
Not After : May 4 06:00:58 2024 GMT
Subject: CN=453ed05143224baf01f049dc8cac56e9b6c22372
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a7:7c:17:b2:cd:54:80:94:5d:55:8c:20:98:
7c:d6:ca:69:5b:17:99:ae:5d:f1:8e:11:33:36:17:
08:02:b7:cd:0e:67:ed:ce:b7:56:79:2f:03:84:55:
16:ec:29:13:0c:ad:37:6c:e1:fa:d0:5c:f4:de:ed:
eb:97:a8:5a:0c:80:0e:42:f5:d9:b2:4d:8a:4c:39:
7e:69:59:60:a8:b5:03:17:6a:43:77:6c:f2:76:07:
4f:1d:a4:9c:2a:f5:71:fb:6e:4c:c7:12:c5:5e:b2:
a0:54:af:77:e9:82:c3:2b:8b:01:e2:a4:b3:87:f1:
83:3c:f1:09:73:f9:75:8f:57:6d:90:90:7f:7f:5f:
eb:39:cd:c5:a9:d8:2b:93:ae:08:24:d5:5d:4d:43:
d2:26:07:19:db:08:b1:e7:b8:27:87:d2:cd:e9:af:
c2:c1:74:e3:c4:22:cd:6b:46:68:19:d9:e5:39:03:
1f:28:a4:9c:ba:5a:4a:80:f2:65:f7:94:f3:26:08:
3d:39:5e:2a:83:f4:50:e4:76:52:c1:1d:d2:2c:fb:
a5:c6:af:65:bd:da:dc:a9:38:1c:78:67:3d:b2:64:
42:ef:10:b1:4a:04:e5:0b:4e:23:36:75:9e:d4:6e:
37:6c:e5:92:2a:62:c1:45:d8:d0:88:a7:39:f6:6c:
ee:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:3E:D0:51:43:22:4B:AF:01:F0:49:DC:8C:AC:56:E9:B6:C2:23:72
X509v3 Authority Key Identifier:
keyid:D2:F3:8D:4A:EB:4D:02:88:DB:B8:54:D1:EA:E0:BD:8A:D3:F8:41:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0vONSutNAojbuFTR6uC9itP4Qfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/0vONSutNAojbuFTR6uC9itP4Qfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/0vONSutNAojbuFTR6uC9itP4Qfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:0d:17:9c:cf:e5:b4:bf:14:02:ea:f6:af:6f:68:b9:79:16:
28:66:fc:37:c2:25:ad:36:00:fe:5a:a9:ba:2f:0e:35:77:4a:
14:73:38:b7:65:3c:b5:d0:67:79:5a:c7:ae:46:c9:05:68:97:
45:b2:3c:a4:b4:52:47:28:ce:af:3f:f9:ad:58:de:0f:e4:2e:
a7:25:83:3b:7e:46:1e:35:09:f6:f6:d7:67:57:7a:eb:ba:f5:
f4:49:88:92:df:56:44:d9:ad:5d:3a:ad:90:75:b0:b6:af:57:
59:8b:ea:c8:55:f3:b3:be:cb:85:e4:5e:2e:f0:05:ad:57:87:
9a:01:34:bd:e9:9b:9d:c9:37:bd:8e:9a:42:81:84:77:45:67:
88:56:3d:28:77:56:02:da:f3:d0:c5:cc:a9:71:3a:f9:3e:8e:
93:c7:92:14:76:84:ec:2a:ac:e1:65:d7:1c:f9:5a:c2:ba:ad:
0f:bd:5f:bc:56:97:91:09:c5:63:fe:a6:e1:d3:2e:90:8d:3a:
ea:cf:dc:f7:59:f7:67:de:9b:91:1e:db:54:b2:89:a9:8f:3d:
5f:bc:96:24:fb:b0:2a:78:bf:db:09:fa:24:4d:44:32:39:a3:
1e:44:50:d5:b4:31:7e:cd:1c:73:b5:1d:ca:07:82:e5:b4:cb:
2f:00:58:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 12:28:52 2024 by rpki-client on console-fra.rpki-client.org