Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
File: dLOekBkiWjsP_gWoNW6-8zwnvpc.mft (raw, json)
Hash identifier: NZDaTLq7wTcnxkfvKBul1+an1L5v/1blLdwzJvHJerQ=
Subject key identifier: 7E:F6:5D:BA:5D:8F:4E:05:BE:0A:6A:AB:00:70:7C:C2:7F:30:4F:7C
Authority key identifier: 74:B3:9E:90:19:22:5A:3B:0F:FE:05:A8:35:6E:BE:F3:3C:27:BE:97
Certificate issuer: /CN=74b39e9019225a3b0ffe05a8356ebef33c27be97
Certificate serial: 018F96BC598A98F727E44F9BF37F39378C51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLOekBkiWjsP_gWoNW6-8zwnvpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
Manifest number: 0172
Signing time: Mon 20 May 2024 16:01:16 +0000
Manifest this update: Mon 20 May 2024 16:01:16 +0000
Manifest next update: Tue 21 May 2024 16:01:16 +0000
Files and hashes: 1: MbqxgVNNXP9HGni-Dlr8i-jNqOs.roa (hash: a3XLq9/sjcvViDxyrgu95eNTZU/oqrX1orwwbMln+4U=)
2: dLOekBkiWjsP_gWoNW6-8zwnvpc.crl (hash: IEpiUkjL97vCC9vKozKWPmFNMsiONIY4UoOFfhXfsmM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLOekBkiWjsP_gWoNW6-8zwnvpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:96:bc:59:8a:98:f7:27:e4:4f:9b:f3:7f:39:37:8c:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b39e9019225a3b0ffe05a8356ebef33c27be97
Validity
Not Before: May 20 16:01:16 2024 GMT
Not After : May 21 16:01:16 2024 GMT
Subject: CN=7ef65dba5d8f4e05be0a6aab00707cc27f304f7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:f3:3b:ed:f3:80:69:16:00:54:dc:09:52:ea:
9e:6b:37:a2:30:8e:18:42:6b:b8:a1:16:79:50:00:
66:c8:f0:59:74:3b:24:05:67:43:6a:90:39:a9:c3:
e2:2a:a3:31:cb:dc:71:0e:de:2a:cc:80:9e:89:89:
b6:b6:52:56:31:ec:ef:7a:f3:5b:8c:16:42:6a:de:
4a:eb:47:f7:6c:0c:05:6a:7e:4b:b1:07:c9:4a:15:
a8:98:fe:7b:35:b1:4a:34:25:a3:89:36:3c:e9:dd:
5f:51:7e:e8:1b:6a:db:6f:3e:d5:5f:29:ad:d1:a1:
09:a0:34:bc:a0:ff:25:38:c0:8b:45:5c:41:00:08:
27:b5:2f:e4:9b:55:bb:c8:ae:55:05:ca:01:54:1e:
55:e1:a0:96:78:a8:48:7f:f5:86:17:04:58:6e:9a:
86:96:81:df:67:03:21:b0:95:e8:d0:f9:6c:fa:27:
41:a8:4d:ba:60:13:d3:32:f6:07:06:59:53:71:a4:
ae:9c:0c:d6:82:04:70:1b:20:e7:43:ba:03:16:a0:
11:0e:3c:a4:4b:d4:93:9e:af:fb:b3:da:8b:71:6c:
37:3b:a5:9a:cf:b5:ad:49:38:41:6c:5f:f1:2f:ba:
3e:19:ea:56:40:75:0a:f3:b2:37:97:f0:73:11:aa:
2e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:F6:5D:BA:5D:8F:4E:05:BE:0A:6A:AB:00:70:7C:C2:7F:30:4F:7C
X509v3 Authority Key Identifier:
keyid:74:B3:9E:90:19:22:5A:3B:0F:FE:05:A8:35:6E:BE:F3:3C:27:BE:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLOekBkiWjsP_gWoNW6-8zwnvpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:fa:44:c4:2b:19:8f:7b:c5:f1:e2:d8:f1:61:30:1a:00:ef:
b7:cd:97:88:e0:a6:cc:f0:07:61:80:c0:da:2d:cd:e6:d4:01:
25:e2:80:40:e0:7f:1c:7c:81:a4:cf:a1:2b:ac:98:b8:5b:4e:
8b:40:28:cc:69:e7:66:18:ec:89:13:0e:f9:0b:56:3d:9a:7d:
89:0d:f0:e9:13:0d:e2:f1:d4:cf:5e:f2:2c:8a:e9:12:62:47:
32:26:50:6b:74:00:bb:93:c8:fe:5c:f9:6f:28:b5:c4:ff:50:
9f:f4:fd:9b:1e:bf:cc:fc:d8:e7:e8:3b:5b:bd:3e:94:b2:46:
e8:5a:73:5d:f6:c2:ef:ef:e0:5c:e8:f1:e2:b8:ea:36:59:1c:
ce:e0:28:12:f6:65:bf:62:54:a2:b0:b9:c7:76:c1:a3:7f:90:
f9:6a:20:e4:2a:60:ee:93:e6:95:eb:c5:95:a8:5e:62:fe:de:
ed:34:b3:0f:b7:c5:b6:4d:2b:1a:58:9b:07:d1:a2:ba:d8:4a:
97:ce:b6:81:3d:07:b3:e8:51:b2:66:c6:22:a9:91:aa:be:fc:
7a:27:ca:7e:99:19:68:fe:0e:db:db:11:bf:23:30:f2:c6:11:
b3:b2:66:d2:08:8d:0c:d2:50:e6:87:56:97:c0:72:6e:6e:31:
60:77:41:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 17:34:45 2024 by rpki-client on console-fra.rpki-client.org