Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
File: zNHiiTDXen65iRtvq7spFe44hao.mft (raw, json)
Hash identifier: SqRWpUlNfdXe6JOkWF51man9f1ONq7nifKpuPhf/n8Q=
Subject key identifier: 3E:2C:21:49:EB:6F:7E:B5:EE:F4:99:DA:4A:5D:28:36:30:F1:5B:3E
Authority key identifier: CC:D1:E2:89:30:D7:7A:7E:B9:89:1B:6F:AB:BB:29:15:EE:38:85:AA
Certificate issuer: /CN=ccd1e28930d77a7eb9891b6fabbb2915ee3885aa
Certificate serial: 018F866CCDC46FC5F1E5179CE5A3F1D8BB95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
Manifest number: 1178
Signing time: Fri 17 May 2024 12:00:28 +0000
Manifest this update: Fri 17 May 2024 12:00:28 +0000
Manifest next update: Sat 18 May 2024 12:00:28 +0000
Files and hashes: 1: HyNCxQlG4pU8sUEoFsYhLb1GzCY.roa (hash: G6il+trKEhoxsyl0BONyQUhAmxkiYuT6eiUBFu1sWZE=)
2: zNHiiTDXen65iRtvq7spFe44hao.crl (hash: N/tqmQ5GKzZbn6ZoCWbUh39YgaqrJxI/wWqdEy5nVYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 12:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:6c:cd:c4:6f:c5:f1:e5:17:9c:e5:a3:f1:d8:bb:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd1e28930d77a7eb9891b6fabbb2915ee3885aa
Validity
Not Before: May 17 12:00:28 2024 GMT
Not After : May 18 12:00:28 2024 GMT
Subject: CN=3e2c2149eb6f7eb5eef499da4a5d283630f15b3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f4:20:49:0f:a5:94:0b:14:6b:6e:02:a2:bf:
99:dd:12:73:ac:1b:35:2a:fb:6c:89:80:37:30:39:
b6:21:1b:fa:f5:10:06:03:0f:26:27:fa:51:c8:b4:
dd:48:86:a5:52:0b:a8:3b:66:d5:23:33:7a:5a:10:
c8:a6:d8:42:9d:24:45:f7:2b:82:00:3b:22:7c:e3:
ef:15:a7:0c:29:ad:0c:ab:e9:32:2a:82:41:ba:f8:
5f:96:b1:02:8c:33:86:4a:01:a2:99:0f:5b:91:65:
9d:7c:71:bd:d9:0e:40:af:88:9f:a7:3e:da:8b:e3:
81:8f:17:55:4f:aa:8e:da:4b:ad:57:d9:22:94:18:
bc:57:ca:47:6e:9b:ee:85:69:72:d4:c3:d2:02:e5:
7f:b8:95:12:ac:b9:3f:d9:23:07:e7:72:7a:64:14:
cb:01:53:ea:3c:a4:49:3e:c1:28:11:18:76:1c:17:
a9:a1:11:fc:6f:74:81:41:53:bb:50:6f:80:df:40:
a7:d0:8e:6d:5e:4b:01:f3:46:1f:e5:7e:0a:bd:b6:
c2:20:aa:29:84:bc:3a:79:e1:2f:a1:37:76:d6:22:
a9:d4:8b:86:38:58:84:c1:fb:4f:46:63:86:e5:c6:
78:9d:60:2e:cd:55:9e:c4:95:d2:40:2e:87:cf:f6:
44:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:2C:21:49:EB:6F:7E:B5:EE:F4:99:DA:4A:5D:28:36:30:F1:5B:3E
X509v3 Authority Key Identifier:
keyid:CC:D1:E2:89:30:D7:7A:7E:B9:89:1B:6F:AB:BB:29:15:EE:38:85:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:d2:3e:3d:14:fd:ee:c3:5c:16:a5:6f:07:2b:54:08:24:ba:
97:f7:6a:92:79:c1:9c:0d:cb:df:00:73:36:03:20:33:68:33:
6a:13:e0:dd:2e:f4:84:f6:3c:dd:9c:dd:b1:0e:89:95:01:f6:
38:af:2a:f4:80:b0:8e:7f:ae:b8:c0:2f:10:db:f3:ba:02:7c:
1f:5c:83:c4:a8:e0:4d:0c:35:4f:67:eb:c3:a6:01:e8:5e:b6:
fd:bd:6d:4c:ee:79:4f:3e:e6:41:98:c8:16:2d:9d:fc:a6:f3:
ce:fc:7d:90:dd:41:73:43:a9:03:09:e0:39:de:f3:21:a9:ca:
42:c5:15:2f:36:23:2b:bf:81:f3:08:32:ea:03:3a:e8:0b:0a:
47:d7:a7:2a:dd:6f:fd:b6:53:92:e3:53:3d:25:fb:ee:ae:2a:
95:ce:fd:a5:9a:66:08:a1:98:a9:a0:75:53:b8:ae:24:d2:1b:
34:9a:c0:0d:ed:08:ef:57:7b:4e:5d:62:23:c5:9d:98:2d:fd:
bd:1c:a1:73:35:83:f3:49:f6:cf:17:e7:d2:b3:dc:13:28:0d:
83:14:69:e5:40:17:9d:20:f3:7f:7b:66:d6:7a:18:58:79:c0:
c1:32:62:97:59:b0:13:a5:e8:fa:79:7e:e3:3e:b8:db:d6:10:
d1:e3:c6:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:25:38 2024 by rpki-client on console-fra.rpki-client.org