Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
File: kdDHjDCaPpncmrdPLNwEhIWedTA.mft (raw, json)
Hash identifier: fxqndOZ6WkMCNCzaA1fS9ntwKTLPsrGETU7p3Q1hePM=
Subject key identifier: 4C:88:E3:94:9E:BD:39:2C:28:8F:F4:85:7B:3E:35:0A:28:1D:51:CD
Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
Certificate issuer: /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Certificate serial: 018F85C7B778BE8D5E46598F214259F7D39D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
Manifest number: 0C86
Signing time: Fri 17 May 2024 09:00:09 +0000
Manifest this update: Fri 17 May 2024 09:00:09 +0000
Manifest next update: Sat 18 May 2024 09:00:09 +0000
Files and hashes: 1: 1-1TG_qMClEODo2IIWP7WsY7zmNo.roa (hash: eeqSjFVaM5j5+q3SAvWxUmpuyRTIcPImAc2lDmJ+HTk=)
2: 1-HnbxmK99DUTDW7m7lpCJFydmBk.roa (hash: GAUj/w+5iJrWywATYOYn1Bo5eeBQqwqfKLyFdVj07+g=)
3: _vbbx0zjEhhryN2SAKiY5PKPJYs.roa (hash: xfwcKNrowVLb9upD5301kZIToJrdZwnWC7YdL+p2a98=)
4: b44suaJ8-uqdIRYYeejhGSCuhVY.roa (hash: E9u1aKCheO/8KW36OuY4NwTEOH7DDZzd+J9AFv0wCMI=)
5: cLUJuuwo98F9cCSHwxMmlNgy1EI.roa (hash: mmDXwbg2CJCgyOBYHe76QQfGOqQ3kQ37CJocjzyhcz0=)
6: gNC9KkuGO-WukymlPMGmLy0jwWU.roa (hash: KhmM2k5HyYUW5YQyOOjsmOBRjPtTZoOVdeBNLECpcmM=)
7: kdDHjDCaPpncmrdPLNwEhIWedTA.crl (hash: 3lhSz5tvy8T7EBwgkfwi2gvNQqNoaWxoCFuEpe/ckHk=)
8: mIs7FuKL49YrIo_B4SQOcdwwOMo.roa (hash: frGELVk/UIsK1uH5rYXkaN7206ZpXpE65WkkZFpYCTo=)
9: zsjHCQuhauPJ_uWjp_YUfznSzkw.roa (hash: G56vF2K5K/chItjqnrVCg78CgMpW6Z2K3wKhXJWbpS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:85:c7:b7:78:be:8d:5e:46:59:8f:21:42:59:f7:d3:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Validity
Not Before: May 17 09:00:09 2024 GMT
Not After : May 18 09:00:09 2024 GMT
Subject: CN=4c88e3949ebd392c288ff4857b3e350a281d51cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4e:be:12:dd:e9:5a:1f:33:bd:1f:36:1e:f1:
c6:f9:52:84:1f:ee:30:cc:d7:8f:7c:d3:4c:91:01:
ee:8c:49:81:26:15:7d:eb:fb:da:f5:34:34:51:2c:
79:60:70:7e:cc:d5:de:4e:b3:b3:81:c7:42:85:63:
ec:b1:e4:ea:12:29:5f:a8:ac:3c:f2:42:45:db:91:
fb:da:a9:02:1d:37:a0:60:f5:15:d3:56:bd:41:40:
8f:ff:be:ed:63:9a:de:d6:c9:eb:4a:6e:cb:fa:19:
f2:a5:93:d5:15:e2:10:bb:97:82:88:ea:0d:5a:0e:
45:df:ab:77:b6:7f:f7:25:dd:58:18:a0:1e:12:4a:
80:52:38:b7:e4:63:2d:d5:11:27:61:34:f9:a2:bb:
59:ac:ca:05:b2:a3:ee:e7:23:9d:80:17:b2:43:5a:
b7:04:b5:ad:2a:ed:6a:6b:e4:e4:dc:2a:0c:63:bc:
be:19:11:b2:00:d1:d4:be:1b:b4:e3:e7:2e:79:f7:
be:c7:59:af:05:cf:d0:cc:aa:9f:1e:02:a8:78:fb:
38:db:3c:f3:7f:d1:69:b1:1e:6b:ea:05:57:8e:e3:
7e:ac:78:27:12:cb:a7:14:d3:a4:64:6c:69:5f:75:
2a:43:64:1c:07:b8:c4:f3:7b:4e:7d:fe:11:fe:3f:
17:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:88:E3:94:9E:BD:39:2C:28:8F:F4:85:7B:3E:35:0A:28:1D:51:CD
X509v3 Authority Key Identifier:
keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:56:af:6c:2f:18:26:00:cc:25:4e:4b:96:ac:f8:e7:39:4a:
f7:eb:18:a3:a4:b6:de:70:14:93:21:55:82:b1:89:5b:bf:ef:
84:9c:9d:44:79:49:67:fa:ed:0b:0d:db:90:1f:50:a1:b7:94:
15:83:d9:fb:45:88:3a:dc:03:6d:d2:7d:99:13:6f:17:f2:fa:
80:02:cb:02:68:26:d8:28:5b:10:6d:ad:c3:8b:aa:b5:4b:4e:
ec:4f:f8:91:9b:fe:d7:4f:df:3c:66:ad:c9:45:24:08:dd:fe:
48:50:b6:5f:be:46:92:b9:09:9a:b4:1c:8f:75:72:c0:3c:9f:
df:05:78:97:cb:98:7d:fd:ec:33:6e:40:46:57:7f:51:3c:5d:
b7:d9:d9:cd:db:1d:70:42:83:66:ad:61:a4:cb:9e:9c:2e:24:
a2:63:91:42:9c:f6:e2:12:7f:e0:3a:3e:5f:42:e7:b9:3a:e5:
b5:cf:00:d6:53:3a:03:bf:ad:6d:b8:15:6d:a7:a2:82:79:03:
b7:c0:cb:a7:b0:6a:65:42:c4:0e:d5:e6:dd:3b:1c:0f:d5:6d:
c8:70:70:54:81:27:c0:49:0e:95:e7:9a:f7:d5:12:fe:5b:df:
4d:73:11:5e:38:52:eb:57:88:7f:4a:82:4e:de:43:f0:e7:f6:
31:d0:73:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 15:50:13 2024 by rpki-client on console-ams.rpki-client.org