Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
File: iIFmRjoaMByltuuYvd0H45cJGYY.mft (raw, json)
Hash identifier: j0KdcjSi56wrtC33T1WhM+2fHhwzmiQ8trpOj1PXt/8=
Subject key identifier: 2F:83:17:03:7D:70:CB:5B:26:18:D7:0A:54:62:17:29:AF:37:5B:A1
Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986
Certificate serial: 018F874B05D61888BBD66E2ABC2545D36BD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
Manifest number: 0C51
Signing time: Fri 17 May 2024 16:03:11 +0000
Manifest this update: Fri 17 May 2024 16:03:11 +0000
Manifest next update: Sat 18 May 2024 16:03:11 +0000
Files and hashes: 1: UFQq7hbRSBMQcx1l4FOcgegZcbM.roa (hash: t0LhvynPH/f6IpJn+MXGtzo9l1lkkavXfj+ICAMqB+Y=)
2: iIFmRjoaMByltuuYvd0H45cJGYY.crl (hash: KNIftOx/q20+AQwsw1wxpHtTYvVxxzteCHeovdpi060=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:03:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4b:05:d6:18:88:bb:d6:6e:2a:bc:25:45:d3:6b:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986
Validity
Not Before: May 17 16:03:11 2024 GMT
Not After : May 18 16:03:11 2024 GMT
Subject: CN=2f8317037d70cb5b2618d70a54621729af375ba1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4a:89:94:44:76:eb:0d:d7:b5:8b:75:b6:0b:
39:22:eb:31:e7:da:7b:a2:a7:18:54:24:58:cb:ae:
8e:e9:83:65:62:b1:ca:ac:a6:14:2a:68:8f:ab:ad:
2e:2e:66:c6:f0:8a:b5:ec:27:8f:9f:d1:a6:e4:ab:
76:23:57:40:a3:b6:5d:de:9a:dd:94:9f:71:c3:b4:
ac:cb:30:ae:2e:e3:14:81:90:05:b8:17:7c:79:9d:
b3:e5:15:64:19:b1:fe:5d:0a:11:63:2a:ec:95:ab:
aa:3f:4d:67:64:8c:9d:4b:42:93:d0:63:2d:2b:08:
d4:eb:01:90:cf:22:08:4c:94:b1:77:86:48:c6:3a:
e5:6f:b9:72:fb:5c:3f:5f:4e:c6:ad:12:53:e9:83:
d3:a4:18:d5:9e:d4:73:9a:ed:0c:72:2f:13:39:c7:
9e:09:4d:42:67:f5:9b:52:c2:81:b1:2a:eb:78:43:
7f:84:17:37:7a:82:1a:d3:d3:54:5b:56:76:d9:e5:
80:f6:26:82:be:19:4d:36:29:20:fa:75:56:6e:32:
80:05:c2:21:4a:a2:9d:2a:15:24:ad:78:d6:27:47:
55:8c:6f:f1:11:fa:c6:0b:b7:40:86:8c:4d:c8:9f:
33:eb:72:61:3a:c7:02:69:21:f7:95:d0:97:6a:02:
3b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:83:17:03:7D:70:CB:5B:26:18:D7:0A:54:62:17:29:AF:37:5B:A1
X509v3 Authority Key Identifier:
keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:cd:90:10:1d:c2:b8:ce:1f:82:88:6f:26:7b:f4:24:ed:f2:
ab:3d:e2:49:9c:a9:51:97:fc:21:f4:e7:95:0f:d5:b8:2f:90:
0a:9a:ae:72:34:29:dd:16:0a:8f:dd:37:96:dc:96:5f:e1:8a:
5f:25:b4:37:b1:4d:7c:ed:d5:9e:b6:2b:68:fa:a3:0a:18:c9:
fb:45:51:2f:9c:e8:60:30:5e:f1:36:38:62:e7:d6:7c:71:95:
3a:d7:4d:fb:5d:7c:d6:ae:23:5d:15:03:db:59:db:0f:a3:54:
c6:fd:10:25:47:3b:d8:5a:47:4c:ed:ea:56:30:7c:af:9e:94:
75:9b:56:ba:ad:3f:80:02:71:b4:de:34:d2:6f:b7:01:eb:0e:
2e:03:61:dc:10:25:c1:68:47:b3:49:62:8e:ee:2a:20:98:19:
1f:68:0f:38:35:d7:e9:bb:15:90:2f:e2:d6:ec:ff:f5:3a:54:
48:8b:66:fd:ae:a8:64:30:10:c5:51:8a:29:ed:a8:19:cf:8e:
c8:b4:a2:d2:e8:74:dd:3c:6b:ab:2f:6a:6a:6b:1a:3f:84:e7:
b0:8f:d0:f5:eb:d5:31:c7:05:a4:88:f2:72:88:b9:6f:43:57:
80:a6:f4:35:b4:49:f9:89:95:f0:dd:36:de:c5:db:3c:ee:8f:
c5:f2:c8:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:25:41 2024 by rpki-client on console-fra.rpki-client.org