Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
File: 2f-H9S43t2bsv0s_nLJlWN0wiCA.mft (raw, json)
Hash identifier: Tiuo4+TvOvHlidIGOiF4bksRuGF4xSjaGNX+Q7xUUqg=
Subject key identifier: C2:F1:23:23:B3:66:4E:AF:66:F7:D0:E9:96:F9:F8:C1:16:49:B0:15
Authority key identifier: D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20
Certificate issuer: /CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820
Certificate serial: 018F23B85F5E6555EA120CB4AB4DE2AB30D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
Manifest number: 0712
Signing time: Sun 28 Apr 2024 08:00:36 +0000
Manifest this update: Sun 28 Apr 2024 08:00:36 +0000
Manifest next update: Mon 29 Apr 2024 08:00:36 +0000
Files and hashes: 1: 2f-H9S43t2bsv0s_nLJlWN0wiCA.crl (hash: go/0IPprdtofHrEtkKuQtwixnkn+MyJ1LiReRZYzpUU=)
2: J_lEuHqfdAtrIoGBXssOg6KGTNc.roa (hash: R5jQvLFZuTeTO1XXDxIm0/t1UZUBwninyKsuWimB098=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 29 Apr 2024 05:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:23:b8:5f:5e:65:55:ea:12:0c:b4:ab:4d:e2:ab:30:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820
Validity
Not Before: Apr 28 08:00:36 2024 GMT
Not After : Apr 29 08:00:36 2024 GMT
Subject: CN=c2f12323b3664eaf66f7d0e996f9f8c11649b015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:71:d7:ad:aa:2a:24:8b:f5:3c:02:37:22:27:
cf:9d:3e:d7:dd:dd:85:37:61:4a:bf:89:ef:b0:e5:
76:e6:82:5a:58:6d:07:21:1b:9e:5b:5d:b9:19:9c:
dd:ad:66:e6:8f:38:43:da:1b:dd:b1:7c:aa:2e:43:
45:a5:94:19:5e:65:a8:ac:84:83:3c:58:14:a8:b7:
ef:67:64:d1:87:e9:94:84:fc:44:6d:db:97:5f:79:
82:bb:20:12:fa:87:5a:25:ec:8a:3c:76:3c:e3:72:
97:c4:76:c9:8b:e5:47:d5:c9:46:7b:4a:be:db:fc:
0b:dd:35:6d:2b:3b:c3:11:04:67:04:c7:33:39:18:
07:a9:a1:06:29:73:2b:62:46:21:26:f1:cc:0a:d0:
78:64:72:2a:ea:c0:9d:45:b2:cf:af:36:d8:be:ea:
2f:35:c8:07:28:31:8c:3c:08:76:78:90:ce:96:77:
f2:45:ea:99:cd:3b:6f:a7:c2:e8:66:a4:83:fe:98:
2a:15:57:ac:6d:ff:19:6d:b0:54:10:f9:88:61:23:
14:3b:df:31:4a:7b:dc:1b:c6:0f:d2:27:a4:ee:ea:
df:60:19:38:99:12:c3:e1:fe:8e:88:2d:f4:66:ea:
ee:3a:5f:0d:06:33:6d:2b:f1:8b:9d:4f:c7:2c:a1:
aa:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:F1:23:23:B3:66:4E:AF:66:F7:D0:E9:96:F9:F8:C1:16:49:B0:15
X509v3 Authority Key Identifier:
keyid:D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:a1:54:b6:1a:8a:c3:ab:55:6c:2c:71:65:7b:24:0e:2a:33:
fa:b4:f8:6c:a0:00:93:e4:be:53:d0:88:77:05:8f:00:9d:d7:
ca:1e:8e:9e:33:53:bc:65:7f:3c:8a:94:7e:1a:78:d3:83:c8:
67:72:0f:59:aa:c3:4d:96:48:81:46:4b:cd:a1:38:20:6a:bc:
9d:34:c8:85:e9:8d:c8:1e:8a:bb:83:fb:1e:c6:5a:d3:2b:25:
9e:48:a1:1d:8b:6d:90:b8:85:22:75:97:17:27:6a:cf:fd:90:
90:65:6f:fd:43:88:fc:c4:39:1f:08:0c:09:06:8e:51:b0:4d:
bf:fd:d1:09:10:2b:43:d5:ae:d9:3a:16:2d:8f:82:18:41:f7:
ff:c6:5b:17:44:5c:5f:ea:31:87:5f:96:3e:b7:6d:27:e1:a4:
10:9b:d6:49:1b:43:40:e4:e5:2c:f1:35:62:9f:fc:dd:63:de:
30:04:94:60:00:11:37:bd:0b:4f:83:76:53:d3:c9:41:6a:08:
0f:5d:99:5d:c2:bd:65:64:4a:b2:2c:d1:b8:f2:cd:1f:68:05:
b4:ca:e4:18:42:be:27:aa:3d:86:4b:c1:e7:52:16:18:31:ae:
06:ae:ed:4c:0e:e1:43:80:64:f5:cf:22:e0:9b:cd:ef:6a:93:
ac:f1:15:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 10:14:16 2024 by rpki-client on console-ams.rpki-client.org