Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
File: aYVKV6sNijySLI9qeaqP6KaiwJ4.mft (raw, json)
Hash identifier: fqB2MB9qyza7zzztPxKp09o/RcD2dYfdz+ABexjw3rA=
Subject key identifier: D5:B2:0E:FB:1A:F9:A9:75:84:5D:D8:05:88:38:E5:53:CB:8C:D8:DF
Authority key identifier: 69:85:4A:57:AB:0D:8A:3C:92:2C:8F:6A:79:AA:8F:E8:A6:A2:C0:9E
Certificate issuer: /CN=69854a57ab0d8a3c922c8f6a79aa8fe8a6a2c09e
Certificate serial: 018F9A99008895C4F9221B6DB8E12C197145
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
Manifest number: 0BE3
Signing time: Tue 21 May 2024 10:01:09 +0000
Manifest this update: Tue 21 May 2024 10:01:09 +0000
Manifest next update: Wed 22 May 2024 10:01:09 +0000
Files and hashes: 1: 3DzbyqDSlAgUheApZvBjqLXWIDI.roa (hash: ksLtoRRJNxkrugWQ3bOjZmaawmXdMPoPOS2aZJDthys=)
2: aYVKV6sNijySLI9qeaqP6KaiwJ4.crl (hash: nyvxIjkIbFpjScyW9YyliY6Prtjs80mRVMaGNPeJLNY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 10:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9a:99:00:88:95:c4:f9:22:1b:6d:b8:e1:2c:19:71:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69854a57ab0d8a3c922c8f6a79aa8fe8a6a2c09e
Validity
Not Before: May 21 10:01:09 2024 GMT
Not After : May 22 10:01:09 2024 GMT
Subject: CN=d5b20efb1af9a975845dd8058838e553cb8cd8df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:b6:70:3a:c2:b1:1f:81:56:f7:48:6e:9b:af:
2b:ce:d6:d3:96:ff:eb:82:50:1b:ea:7c:0b:73:47:
11:d6:14:00:aa:d5:29:9b:86:52:26:45:07:6c:8e:
f7:cc:1d:78:c1:5f:25:06:e1:14:fa:9b:b2:b4:2d:
5a:01:95:a8:f8:c4:22:20:b1:82:c6:f8:26:99:86:
f4:be:90:69:3e:e0:37:d5:8d:be:2a:6f:33:db:ce:
ec:dd:26:7d:72:73:cd:14:b3:c8:ed:c4:ae:ae:3f:
4b:6b:b4:83:74:63:7b:8d:a4:92:91:3e:1f:53:a5:
c4:e7:81:2e:71:b9:a6:68:f4:17:8c:e8:0b:ec:f6:
d0:e7:ac:39:93:8a:47:f1:80:0d:05:51:2e:02:ad:
01:37:f6:c3:17:ce:3d:b0:7f:d5:ee:84:fd:5c:ff:
57:1d:b9:f0:8d:e7:40:7d:48:90:29:93:e2:a5:6c:
42:4f:3c:82:7d:29:fc:32:87:64:dd:0f:24:18:8e:
05:3e:ed:ed:5a:ae:c5:89:36:f7:0f:a4:86:ca:7e:
99:53:41:2d:90:53:55:fe:be:16:d5:77:9a:9b:53:
70:d8:7c:4e:a9:5d:8d:80:99:d8:9e:9a:e0:96:d0:
0d:98:3e:a1:98:a3:a6:f1:88:05:55:01:0e:29:c1:
04:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:B2:0E:FB:1A:F9:A9:75:84:5D:D8:05:88:38:E5:53:CB:8C:D8:DF
X509v3 Authority Key Identifier:
keyid:69:85:4A:57:AB:0D:8A:3C:92:2C:8F:6A:79:AA:8F:E8:A6:A2:C0:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:28:58:a9:e5:d1:1f:56:5a:de:16:ce:53:85:4c:22:04:4b:
81:ec:7d:b8:14:b8:16:b9:f9:b7:57:98:0b:91:49:67:29:5f:
e4:69:b3:1a:4c:43:77:9a:c7:d1:b2:cf:a8:b7:ef:02:6b:94:
5a:3a:ef:52:a5:54:ff:49:cf:e5:98:ce:22:f5:84:ff:7c:78:
cc:19:ef:43:91:ea:88:ac:74:50:c9:70:19:1f:a3:b9:3f:2a:
8c:c7:ae:ac:32:ad:66:76:4e:2a:ca:58:f3:e8:34:7a:34:c4:
1e:c6:69:4d:b7:54:99:3d:a3:3d:c5:ad:88:48:9d:bb:9d:df:
50:c0:13:b3:28:7d:20:e0:17:df:96:e0:0e:50:37:e8:ba:69:
9f:7f:fc:2e:db:2e:b6:f0:62:51:08:a9:40:f5:40:65:a1:9a:
71:d1:03:9a:a7:83:79:92:e4:78:bb:9c:bc:c1:5e:78:ec:bb:
3c:6c:9d:d5:ec:d6:a4:f0:e9:3d:84:04:2e:6f:ca:9d:12:85:
41:4c:98:1f:b9:c5:8e:4e:34:bd:78:e4:b7:fe:e8:59:ee:10:
84:e5:2a:6e:1f:b1:a9:5d:52:c8:31:ba:f5:03:97:d0:c2:38:
55:28:b4:b1:28:65:37:be:0a:d6:1d:14:c4:ac:71:92:cb:a1:
35:80:38:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 16:59:15 2024 by rpki-client on console-ams.rpki-client.org