Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
File: aVJaNi6HcFoewCLRZWDydtWc7h0.mft (raw, json)
Hash identifier: A7Ar0xdnMd4RGTm5dZoydH0nuGyv7vRFL8zclzVeW1E=
Subject key identifier: DA:FB:2E:2B:22:9C:8B:C2:14:FD:75:EB:AE:DD:5F:2C:E3:E8:4A:58
Authority key identifier: 69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D
Certificate issuer: /CN=69525a362e87705a1ec022d16560f276d59cee1d
Certificate serial: 018F882436BF4165CE4DE90D053DBCC07C23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
Manifest number: 0351
Signing time: Fri 17 May 2024 20:00:25 +0000
Manifest this update: Fri 17 May 2024 20:00:25 +0000
Manifest next update: Sat 18 May 2024 20:00:25 +0000
Files and hashes: 1: X717aLsLlgnVlUzVlfB1ws7L4zs.roa (hash: gTPCXh6ROvOy5smU0nN+o5TkY8PXCrQjS5cokgafSJk=)
2: aVJaNi6HcFoewCLRZWDydtWc7h0.crl (hash: Ykz+p6Uhh4S6i0OuizobqpAT4xwRjznPSnwJW+/Gd74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:24:36:bf:41:65:ce:4d:e9:0d:05:3d:bc:c0:7c:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69525a362e87705a1ec022d16560f276d59cee1d
Validity
Not Before: May 17 20:00:25 2024 GMT
Not After : May 18 20:00:25 2024 GMT
Subject: CN=dafb2e2b229c8bc214fd75ebaedd5f2ce3e84a58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:32:55:ab:7c:ed:20:75:37:b4:05:46:8f:c6:
e0:2b:e5:1c:19:db:2c:59:71:15:85:d0:b5:de:3a:
b8:36:f8:ec:79:46:18:94:98:74:b0:0f:b9:a7:03:
b0:e6:fc:c5:ee:8d:06:30:e8:79:50:33:ff:67:f3:
ff:68:93:1a:11:29:61:30:be:97:06:dd:40:41:48:
cf:11:32:ba:98:a0:b1:8c:db:45:e6:c6:77:7d:13:
03:d1:22:83:c9:02:42:1d:f0:26:6e:c3:54:5d:f5:
13:ff:b2:1e:2d:6c:22:38:8e:e1:b4:89:16:7b:dc:
61:18:fc:1d:a4:13:37:0c:71:f1:20:98:21:84:e0:
f5:e7:92:76:61:cd:ce:c4:bc:60:63:cd:3e:75:09:
00:15:f8:d7:c1:2f:5f:2d:c8:db:de:ea:c5:42:e3:
78:4c:a3:74:c9:85:ef:93:36:6e:38:60:84:87:cf:
99:70:09:dc:df:ed:7b:31:fe:f3:31:56:eb:4c:c3:
b4:00:68:e5:60:7d:43:97:66:99:70:15:ab:c5:b8:
d7:e9:08:e7:76:ab:4c:12:c5:7d:c6:2e:2e:6f:25:
15:29:34:84:b4:cf:f4:48:be:d4:ec:06:f0:1c:63:
57:6c:23:4a:4b:8f:a9:f9:28:3a:3f:ac:ea:20:99:
6d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:FB:2E:2B:22:9C:8B:C2:14:FD:75:EB:AE:DD:5F:2C:E3:E8:4A:58
X509v3 Authority Key Identifier:
keyid:69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:63:7e:a1:76:6d:ce:87:41:bf:e5:8e:60:87:b9:2c:22:56:
c1:32:0d:1c:31:a6:20:a9:fb:1a:63:f3:c2:5e:24:bc:34:85:
86:61:4d:97:d7:c2:3c:06:b3:11:b4:87:47:e2:9b:30:ec:33:
5a:29:a9:8f:2a:c9:90:4e:a5:64:be:87:0c:5a:ad:d2:6f:10:
78:a6:4f:3f:f6:67:28:69:db:84:a2:e4:55:5f:cb:f9:b0:dc:
7c:e8:90:f6:ea:1d:0e:de:93:a0:b6:ec:37:87:6d:9d:82:d6:
74:21:e4:41:dc:f6:85:a0:58:ee:21:78:cc:5b:e9:9c:22:54:
f0:eb:22:75:4e:9d:df:2d:d0:34:2c:6a:60:7d:68:41:48:cc:
d5:d9:96:c7:0e:cd:f7:b8:64:45:86:b3:3b:8a:81:92:dc:47:
b9:4b:28:03:dc:ae:d5:99:f1:c5:b7:9c:e2:f6:90:ae:75:c6:
cf:0e:b5:26:45:7e:c8:78:90:20:0e:8b:0d:7f:27:ac:f6:04:
8f:c8:a2:8c:63:f3:aa:d8:d1:6c:d9:b5:23:f5:57:2b:2f:f7:
fb:87:e3:fa:29:aa:c8:71:45:36:59:c4:d2:39:19:59:0e:43:
f9:bb:14:f8:18:a2:e3:ab:83:a0:98:38:95:16:8b:9b:07:85:
26:62:d1:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 21:00:14 2024 by rpki-client on console-fra.rpki-client.org