Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
File: XZxbcz-6cemMB-E7A6fFWrhMyO0.mft (raw, json)
Hash identifier: TWcJ5ia8Z+zHmxTuIokPPDHmIEMi/SMkrMHdbyLoN1Y=
Subject key identifier: 67:85:0D:F3:E8:D0:BE:CC:C4:66:0F:FE:D9:24:8F:08:FD:16:7A:EF
Authority key identifier: 5D:9C:5B:73:3F:BA:71:E9:8C:07:E1:3B:03:A7:C5:5A:B8:4C:C8:ED
Certificate issuer: /CN=5d9c5b733fba71e98c07e13b03a7c55ab84cc8ed
Certificate serial: 018F874AD8AAFEAE329C87B9D154D992F473
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
Manifest number: 1179
Signing time: Fri 17 May 2024 16:03:00 +0000
Manifest this update: Fri 17 May 2024 16:03:00 +0000
Manifest next update: Sat 18 May 2024 16:03:00 +0000
Files and hashes: 1: NlZbb3JEFvLS7qgpO5Sarfp7X6M.roa (hash: m/qdjOcr/p8LWnX+p0Dhv9lthJEH6izG7CaZhpN/GKc=)
2: XZxbcz-6cemMB-E7A6fFWrhMyO0.crl (hash: It63muga4kj43JBvH1R/vg5esYQhl80ST7Yr88Q6kFE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:03:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:d8:aa:fe:ae:32:9c:87:b9:d1:54:d9:92:f4:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d9c5b733fba71e98c07e13b03a7c55ab84cc8ed
Validity
Not Before: May 17 16:03:00 2024 GMT
Not After : May 18 16:03:00 2024 GMT
Subject: CN=67850df3e8d0beccc4660ffed9248f08fd167aef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5d:da:d3:05:27:ad:38:27:60:c2:e5:6b:4a:
dd:de:35:ef:96:d0:8c:0f:ce:52:02:7b:3c:55:03:
77:32:94:c9:44:a2:44:49:bf:92:23:b1:e7:63:6b:
4d:4e:b7:82:56:05:c4:3a:37:47:e8:22:0e:8a:78:
0c:70:82:9d:8e:4d:2a:6d:da:1f:91:9a:23:15:5b:
df:c0:79:0e:05:c8:94:14:52:cb:6e:4f:f7:80:5c:
17:2c:01:fd:e3:04:0b:10:76:3d:fd:b5:f2:8f:44:
57:24:14:71:67:fc:94:af:b5:87:9a:c5:3b:d5:fb:
65:f3:13:8d:75:ea:c2:3a:73:07:6f:d5:9b:cf:f3:
ab:77:c1:e8:1e:3d:46:4f:43:cc:82:4d:ef:c5:d3:
4b:b5:65:56:45:91:b0:aa:09:c7:45:57:58:1e:7a:
4d:e3:a9:03:96:d4:c1:65:f6:10:88:88:8f:df:67:
be:a5:e9:7f:af:56:65:c0:4e:25:29:2d:0d:1a:83:
1f:f2:29:18:2a:c2:2d:75:2e:db:79:1d:2e:7c:7a:
7a:d4:70:d8:e5:bb:5f:38:e9:42:53:e2:30:63:d2:
4a:7d:91:d4:b0:5d:01:ed:10:67:94:79:18:d0:56:
45:c1:2e:2e:30:f3:62:28:ad:de:98:aa:dd:60:bf:
2c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:85:0D:F3:E8:D0:BE:CC:C4:66:0F:FE:D9:24:8F:08:FD:16:7A:EF
X509v3 Authority Key Identifier:
keyid:5D:9C:5B:73:3F:BA:71:E9:8C:07:E1:3B:03:A7:C5:5A:B8:4C:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:67:ed:31:63:f5:5c:ee:96:76:74:80:97:6e:a1:cb:5f:fa:
05:e5:b4:2e:f9:8a:58:0c:2b:3a:43:96:9a:5e:68:20:03:6c:
de:71:09:bc:c2:65:89:4e:0f:1d:c2:bd:8c:e9:1f:33:b4:3c:
13:b4:9a:29:7c:53:5f:ed:f7:3c:2b:5c:9b:19:2b:6b:d9:0f:
d6:cb:cd:84:e4:dc:5e:2a:fd:fb:4c:cf:73:d7:ab:94:16:5c:
1f:a7:ee:b9:e3:29:bf:72:c1:0c:a7:36:ca:8a:30:d3:5f:ed:
b2:31:be:f4:eb:f2:5c:a8:5c:31:5b:8d:e9:5e:b8:5f:db:78:
7e:86:11:26:1a:a9:9e:72:36:a2:01:ff:fd:7a:40:f8:5d:5d:
f9:72:06:33:33:ed:f9:3f:e5:fb:68:d4:e0:9f:d6:c3:24:75:
c1:63:4a:52:73:69:90:77:d9:94:16:d6:2c:78:3a:ea:a3:cd:
5f:6a:94:88:37:39:41:7d:d2:1c:7a:2f:18:8e:64:36:b3:46:
30:ef:06:9f:5a:02:33:a2:bf:a2:7c:ca:44:13:32:6c:65:82:
bd:55:33:68:f6:06:45:59:a3:e7:cb:92:65:3c:fc:a1:ba:2c:
54:7d:20:ca:1e:47:8b:3d:14:23:00:c3:fb:de:c4:5f:14:4f:
9d:93:b1:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:27:19 2024 by rpki-client on console-fra.rpki-client.org