Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/f1370a-57ca-46a0-8af4-78ba6dc50086/1/hEoXkcsH8dhhI8Y9w63P11TbEBs.mft
File: hEoXkcsH8dhhI8Y9w63P11TbEBs.mft (raw, json)
Hash identifier: tVgfxfQOjUYL34oxNk0ANJnomUci/isp32PLjqbUx5w=
Subject key identifier: 06:3B:C1:3C:56:92:67:10:24:8F:D0:7F:C8:38:90:A0:03:CE:95:45
Authority key identifier: 84:4A:17:91:CB:07:F1:D8:61:23:C6:3D:C3:AD:CF:D7:54:DB:10:1B
Certificate issuer: /CN=844a1791cb07f1d86123c63dc3adcfd754db101b
Certificate serial: 018F885AF92639AE6E3713CD648BB00DAFD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hEoXkcsH8dhhI8Y9w63P11TbEBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/f1370a-57ca-46a0-8af4-78ba6dc50086/1/hEoXkcsH8dhhI8Y9w63P11TbEBs.mft
Manifest number: 0589
Signing time: Fri 17 May 2024 21:00:14 +0000
Manifest this update: Fri 17 May 2024 21:00:14 +0000
Manifest next update: Sat 18 May 2024 21:00:14 +0000
Files and hashes: 1: aG7r0THwy7cpiTVAbkGnEdeJrF0.roa (hash: IGn0+oYSuQejqTsO0SICiVzVVPQPPdWXi5jh1dD83J4=)
2: bI_xYye2-OxZAf27ra_zyEKjuXc.roa (hash: N1i8Lpg+byPMcBq5ZcVlgtfRR9tl2UbMt72Qq0ghJ7A=)
3: hEoXkcsH8dhhI8Y9w63P11TbEBs.crl (hash: FL5Y2dDTISXeFetJQvZKisha9+XA7W52DCwyIAqsOYs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/f1370a-57ca-46a0-8af4-78ba6dc50086/1/hEoXkcsH8dhhI8Y9w63P11TbEBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/f1370a-57ca-46a0-8af4-78ba6dc50086/1/hEoXkcsH8dhhI8Y9w63P11TbEBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/hEoXkcsH8dhhI8Y9w63P11TbEBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:5a:f9:26:39:ae:6e:37:13:cd:64:8b:b0:0d:af:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844a1791cb07f1d86123c63dc3adcfd754db101b
Validity
Not Before: May 17 21:00:14 2024 GMT
Not After : May 18 21:00:14 2024 GMT
Subject: CN=063bc13c56926710248fd07fc83890a003ce9545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:2b:47:d8:ce:d7:2c:58:7c:cb:9d:63:26:a7:
b4:64:d0:59:a6:7d:e2:39:02:c1:12:78:36:0a:40:
dc:66:5e:17:8c:7e:4e:e0:66:00:13:3a:9e:1a:0e:
37:9c:93:87:dc:d9:8e:e2:5c:8a:62:a5:cf:5c:1c:
b2:d1:95:3d:09:41:35:75:bf:4a:9d:17:e6:1d:1e:
47:63:ea:6d:aa:f2:0f:e4:d9:2a:d2:5f:7e:49:fd:
96:f6:0a:34:8a:d6:19:ef:9c:74:08:17:b7:55:ae:
e9:5a:52:09:24:bc:60:76:0c:11:a1:37:3b:ef:16:
f1:e0:cb:b7:9a:25:8c:37:c3:1b:1d:f8:51:40:1a:
a7:b8:60:7f:44:db:7d:2d:95:0b:7a:08:b9:e3:c2:
77:4c:d8:91:fe:62:e4:8c:20:a6:87:ca:90:db:e4:
ba:6e:c4:71:0a:45:aa:44:d5:8a:34:e5:49:4f:d1:
17:a4:f8:b9:3a:c5:e6:1e:78:21:a4:4c:6e:fb:19:
c9:88:05:3b:68:98:5d:c0:f9:38:78:e1:5a:0b:fc:
12:9f:c5:36:b8:6c:f2:d7:d7:b7:2e:75:9f:5d:81:
c0:3f:62:01:6f:76:80:26:05:46:37:37:2a:53:fe:
5c:50:7d:e6:81:da:b2:87:88:31:76:35:e5:41:4c:
25:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:3B:C1:3C:56:92:67:10:24:8F:D0:7F:C8:38:90:A0:03:CE:95:45
X509v3 Authority Key Identifier:
keyid:84:4A:17:91:CB:07:F1:D8:61:23:C6:3D:C3:AD:CF:D7:54:DB:10:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hEoXkcsH8dhhI8Y9w63P11TbEBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/f1370a-57ca-46a0-8af4-78ba6dc50086/1/hEoXkcsH8dhhI8Y9w63P11TbEBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/f1370a-57ca-46a0-8af4-78ba6dc50086/1/hEoXkcsH8dhhI8Y9w63P11TbEBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:88:39:ed:c2:40:f0:f6:76:26:52:5d:2d:2f:a2:ed:5e:73:
a6:ff:9d:bb:b6:d6:3f:22:8c:12:1b:5a:c0:1d:d1:1d:da:21:
2c:e6:df:7c:db:59:2c:35:3c:ee:28:db:7e:82:d1:82:08:95:
77:87:ad:c7:6f:e5:89:1d:1c:cd:3a:4d:27:a4:1e:2a:21:bd:
40:39:aa:b8:c2:94:a4:89:0a:19:9f:f4:a7:d7:a8:19:0a:f8:
f3:c5:34:4c:7d:7b:21:ca:6a:35:9d:98:c3:43:e6:98:0e:d5:
66:fe:46:88:18:77:bc:eb:d3:4b:7f:cf:fe:d9:ba:63:4f:90:
89:05:d9:f3:2c:bf:0f:34:28:43:f6:6e:83:5c:97:42:bc:e3:
60:c3:8d:a8:43:a7:55:f2:c4:24:95:ca:26:02:1e:95:bd:46:
f7:77:30:72:4b:92:d2:94:dd:83:bf:3c:56:e9:53:8d:cc:d9:
48:e2:6f:82:d1:e0:7d:b7:7a:7b:bf:76:00:f5:f9:6a:b4:be:
92:d1:4b:83:f9:5d:1a:43:2b:95:e2:fc:f4:cb:e9:32:79:ba:
e1:37:7b:a4:c9:d1:8f:cc:d4:2f:70:74:84:da:f0:5f:d5:ff:
46:37:e4:f2:f7:a0:1d:c2:3d:4c:fc:b3:0d:16:43:85:47:9d:
d2:c8:20:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 22:04:57 2024 by rpki-client on console-ams.rpki-client.org