Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
File: cnS17iqgd4rxMENYIlrGflUXCog.mft (raw, json)
Hash identifier: OPW2Grzjf30etcUCztvjdMl7vTxQrFcnvj3ceRp9k6g=
Subject key identifier: FB:05:B5:79:ED:E5:46:40:9E:B0:5B:A5:8E:C3:B8:15:27:63:40:CC
Authority key identifier: 72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
Certificate issuer: /CN=7274b5ee2aa0778af1304358225ac67e55170a88
Certificate serial: 018F8749D6FBAA015A7C08395ABE08B70092
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
Manifest number: 04A3
Signing time: Fri 17 May 2024 16:01:54 +0000
Manifest this update: Fri 17 May 2024 16:01:54 +0000
Manifest next update: Sat 18 May 2024 16:01:54 +0000
Files and hashes: 1: CL-l79gv5sKmDrI5H3D3m8rMcuw.roa (hash: Q4bUYWxmO/qyWC5yv6KacuNXAzGiuuTVyLT+IEQnWqw=)
2: cnS17iqgd4rxMENYIlrGflUXCog.crl (hash: C2fxxZpZzlgmuBxk330HEZWgSBjfVtYUGtzQEEK7DUw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:d6:fb:aa:01:5a:7c:08:39:5a:be:08:b7:00:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7274b5ee2aa0778af1304358225ac67e55170a88
Validity
Not Before: May 17 16:01:54 2024 GMT
Not After : May 18 16:01:54 2024 GMT
Subject: CN=fb05b579ede546409eb05ba58ec3b815276340cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e4:19:25:f7:63:96:52:e5:55:cf:55:27:ec:
59:e3:66:04:b8:f8:94:15:3b:dd:a1:09:f6:fd:fa:
01:9f:bd:79:57:20:51:76:22:1c:49:78:a7:fd:f2:
6b:02:62:fa:11:7b:86:31:c8:cf:f8:a2:09:3c:34:
b8:90:2b:49:8b:2c:d3:19:82:0b:38:0c:e3:78:2a:
76:be:7a:b2:a1:e9:f8:a3:2e:64:84:b4:03:82:18:
e7:48:15:7a:ae:af:ac:00:b6:6c:65:fb:4a:e3:a2:
4b:b8:9e:0d:5f:3e:34:3a:9d:1b:dd:c7:59:39:5e:
f2:c7:df:f3:f2:9a:7d:b5:a8:3f:14:8b:ad:71:cd:
e5:ae:12:66:b9:94:ce:7d:2f:07:33:91:7a:d7:af:
08:4b:73:67:e9:d2:07:02:b5:7a:fb:1d:ef:83:d9:
c1:c3:69:98:6a:66:1e:03:d4:25:c5:30:bd:5f:e0:
52:19:c3:e6:c5:21:1a:79:c0:72:e0:31:f4:53:49:
f7:6f:62:ce:ed:41:0b:85:7d:e3:3b:9a:11:7a:12:
c5:0a:40:ec:14:5e:95:07:b1:22:c5:54:79:25:5b:
86:31:ec:29:bc:6e:7a:7e:d4:f8:b5:8c:4a:09:74:
51:35:7f:38:08:68:9b:ac:41:f0:c9:da:70:37:d1:
0c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:05:B5:79:ED:E5:46:40:9E:B0:5B:A5:8E:C3:B8:15:27:63:40:CC
X509v3 Authority Key Identifier:
keyid:72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:d6:bf:4a:a5:04:98:be:b1:ec:68:a7:12:e6:1e:50:a9:53:
ef:da:92:2d:38:83:0b:7f:10:08:e9:64:01:b0:97:9e:81:4a:
73:fa:68:1a:d9:61:a0:b0:53:d1:91:32:13:8a:2c:8c:ee:58:
f9:e5:a0:95:f4:ac:9b:15:c1:0e:a4:86:62:50:a2:49:57:2c:
d4:4c:a1:9a:ea:a5:a7:eb:24:d4:bb:49:f7:5a:5f:14:3a:79:
16:6a:ba:84:30:55:94:ff:97:cc:15:0a:cf:4a:9a:96:c5:40:
1d:68:61:a7:b5:6d:b3:b1:c8:ba:a0:6f:6b:d2:1e:89:cc:c3:
2e:a3:9b:e5:97:8b:85:0b:60:f6:41:6a:3d:db:f5:24:2a:80:
ac:58:d7:8c:9f:3d:64:2b:6b:e4:39:d5:8f:8d:f0:2f:dc:dd:
b0:49:c7:6e:1f:e8:e2:04:b5:cd:1c:ea:d5:bf:37:e2:b8:59:
28:f2:46:c0:a4:c8:2a:56:24:35:4c:f2:e5:90:a1:6a:97:e7:
de:2c:ea:e6:be:f4:c5:a8:48:38:35:8c:75:76:95:98:69:47:
3a:c1:55:47:ab:4a:cb:22:c2:3a:8a:8c:96:d2:1e:94:8e:7a:
7a:70:9d:c4:d7:a3:13:31:16:8b:91:72:22:b6:b4:27:b3:56:
0b:94:d3:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 01:55:51 2024 by rpki-client on console-fra.rpki-client.org