Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
File: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft (raw, json)
Hash identifier: Hujg79aKj+cneeXJdvQNgseTutOgZ+1rWDkU4GWJtVE=
Subject key identifier: 27:2B:ED:76:2D:94:14:AF:9E:74:0E:56:83:DE:9F:3D:79:B2:D4:7D
Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f
Certificate serial: 018F8748C154A58A6B19C39ED03B161B147D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
Manifest number: 0402
Signing time: Fri 17 May 2024 16:00:43 +0000
Manifest this update: Fri 17 May 2024 16:00:43 +0000
Manifest next update: Sat 18 May 2024 16:00:43 +0000
Files and hashes: 1: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl (hash: xsp9l9VfCqEcQeTURPig8JBqoeAnLTQ0eycvIrxZlkA=)
2: t_GTjuflazRiPPFAq6tWSi-basc.roa (hash: QNI/V4vOYOlhdGFDhPfLp28d9auaX5gAgaqEe7zFz90=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:48:c1:54:a5:8a:6b:19:c3:9e:d0:3b:16:1b:14:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f
Validity
Not Before: May 17 16:00:43 2024 GMT
Not After : May 18 16:00:43 2024 GMT
Subject: CN=272bed762d9414af9e740e5683de9f3d79b2d47d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:af:af:e2:2b:ee:0f:01:91:e4:b0:b1:87:b1:
33:cb:0a:02:86:30:1b:06:e9:f1:ab:67:59:53:91:
29:3d:99:ff:5e:83:94:7e:4e:53:a6:ad:46:7f:cd:
9b:a0:75:df:3e:b3:44:2e:cf:4d:4d:75:83:94:dd:
99:30:fb:bb:ff:f6:32:91:7e:a9:4e:06:3c:4e:32:
fa:d0:dd:d5:65:2c:b4:25:c1:b3:f2:17:e6:d9:a8:
cf:81:53:97:d3:d8:50:f3:65:96:15:11:0c:9a:a7:
17:73:57:c1:67:04:79:53:84:1f:a4:a1:d4:90:9c:
a6:f0:ef:34:0e:40:d6:69:49:2f:c5:7e:bb:e5:ac:
9c:46:82:f9:b0:ad:58:58:12:58:17:63:22:e7:65:
8a:61:b8:31:89:fe:f5:74:2f:fb:b8:02:b9:65:95:
27:e6:b3:79:1b:03:10:9a:ec:6c:ad:e0:2d:4d:21:
7f:84:7c:94:15:97:df:65:e3:a0:18:0c:ec:70:d9:
08:29:b2:dc:12:98:bc:54:e7:6c:23:dd:a5:1b:aa:
56:6b:98:2b:4d:1d:51:5c:89:ef:7d:e5:f6:2f:e5:
0e:85:d4:f0:9e:2e:dd:d1:31:d7:81:a3:90:25:f8:
e0:55:4b:50:b4:e2:5d:8f:09:3c:c7:63:c5:4e:f4:
7e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:2B:ED:76:2D:94:14:AF:9E:74:0E:56:83:DE:9F:3D:79:B2:D4:7D
X509v3 Authority Key Identifier:
keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:4c:d3:11:74:49:cc:16:5f:7d:b6:d1:78:6e:48:0c:9f:c8:
32:5c:4a:71:94:32:30:b1:2f:40:e6:43:97:49:50:9b:50:b3:
25:e4:97:b6:c3:23:a9:53:7d:b0:5d:40:da:4e:02:75:99:f6:
92:20:96:83:e6:67:32:f2:ca:2a:e4:54:18:17:85:5b:51:b5:
14:09:4a:af:d8:b8:f4:59:14:18:93:a6:bb:e3:0c:42:82:0a:
79:f9:f1:31:3e:ae:38:d1:ff:a9:6f:d6:57:62:e9:fa:ee:44:
49:08:2e:53:2c:71:13:2a:1c:cd:a3:a1:6d:43:2e:50:8b:74:
2c:7a:f1:0f:94:73:5c:f1:25:69:7e:5b:5d:4c:86:e9:01:2e:
e5:ea:f2:0a:80:09:ce:f9:ab:75:0f:a1:a7:ca:b8:9b:ea:71:
9e:3c:35:a6:36:dd:ce:55:e4:ef:72:01:92:c9:76:25:60:fc:
25:8a:bb:8c:b7:4f:4d:79:2e:d8:9d:50:0e:d2:10:f4:68:09:
bc:b1:3d:5d:35:50:30:c4:c9:52:9a:7f:10:5d:fd:ec:05:ef:
f3:62:3d:18:56:b2:66:15:a6:a4:fa:5e:e8:40:50:f8:c6:6b:
22:12:f6:d0:75:95:4d:9d:e7:ff:6a:a3:f3:06:db:76:aa:20:
ba:fe:54:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 23:49:53 2024 by rpki-client on console-ams.rpki-client.org