Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
File: uHt2aWhxYpblu6C86DhWrnFluLg.mft (raw, json)
Hash identifier: U69U29OqwraIk1G3YP8ywRYeCd5m3sCHyYONjoxksL0=
Subject key identifier: D0:E8:2A:4F:58:BA:AC:B9:8D:CE:95:98:40:16:B6:CF:9E:EB:E9:F8
Authority key identifier: B8:7B:76:69:68:71:62:96:E5:BB:A0:BC:E8:38:56:AE:71:65:B8:B8
Certificate issuer: /CN=b87b766968716296e5bba0bce83856ae7165b8b8
Certificate serial: 018F147C29BEA197B08E89FE16385AA0BE43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
Manifest number: 1140
Signing time: Thu 25 Apr 2024 09:00:32 +0000
Manifest this update: Thu 25 Apr 2024 09:00:32 +0000
Manifest next update: Fri 26 Apr 2024 09:00:32 +0000
Files and hashes: 1: iNaBpyRDSlE2dhSrN2griDxvads.roa (hash: fr7mwCTGLiQQgjxHo9Q5H/6H8wezZ251l7kpxDTIvNk=)
2: uHt2aWhxYpblu6C86DhWrnFluLg.crl (hash: aKSNZN1XtBB12DgwUje4TBLNYg85PydrMJ2NfFN98bA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 08:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:14:7c:29:be:a1:97:b0:8e:89:fe:16:38:5a:a0:be:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b87b766968716296e5bba0bce83856ae7165b8b8
Validity
Not Before: Apr 25 09:00:32 2024 GMT
Not After : Apr 26 09:00:32 2024 GMT
Subject: CN=d0e82a4f58baacb98dce95984016b6cf9eebe9f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f8:4a:f1:f5:63:6c:2d:0a:62:e3:7b:ab:80:
b3:b7:c9:76:c4:80:50:c1:37:1f:aa:07:32:88:7a:
c7:c1:3f:0b:c2:e6:9c:e5:40:d6:ad:85:5c:47:df:
bb:72:90:72:97:bf:65:0f:66:9b:6d:79:84:11:fa:
1b:67:f6:fd:04:40:b4:8a:64:8b:e7:5a:63:b1:f7:
41:90:f3:99:6e:ff:f0:56:25:04:43:4d:14:c7:8e:
fd:c0:c8:09:36:45:d5:94:1b:cf:ec:41:df:5b:45:
71:c6:97:4e:90:bf:9d:3b:99:39:d3:da:2d:b3:9a:
bd:a9:1e:a4:eb:42:2f:88:b1:c3:45:f4:10:f4:82:
e6:06:18:cc:ab:39:db:df:62:e8:9c:49:1b:9a:86:
f1:24:0f:14:95:08:7b:30:e0:60:4d:06:e3:03:f4:
7e:d9:c7:02:c3:35:10:fe:31:8b:37:bc:58:f1:09:
84:c3:af:80:e7:3d:f3:99:7b:d3:df:e7:58:b6:53:
44:bf:40:14:a4:30:64:2c:26:f6:10:26:0a:49:a6:
cb:19:ad:48:30:a2:7d:d5:06:78:9f:b6:85:1d:0d:
15:ce:5b:25:ea:f2:19:f3:c8:b6:d2:c7:35:0c:75:
e2:de:c7:5f:2e:ca:61:91:cc:56:04:4c:22:31:b3:
6a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:E8:2A:4F:58:BA:AC:B9:8D:CE:95:98:40:16:B6:CF:9E:EB:E9:F8
X509v3 Authority Key Identifier:
keyid:B8:7B:76:69:68:71:62:96:E5:BB:A0:BC:E8:38:56:AE:71:65:B8:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:19:0c:73:26:f7:f1:1d:d2:36:54:ff:39:c3:45:95:aa:93:
26:57:fb:26:33:55:61:7d:ea:47:c7:50:0f:f2:f4:c8:fd:83:
a7:71:21:3d:54:c7:34:85:b9:06:cb:c2:e7:47:f7:13:70:d0:
e7:6d:59:de:3c:dc:2c:30:f4:45:03:53:49:73:dc:d8:0a:14:
3e:84:98:2c:7c:1c:19:95:09:f1:c8:40:a2:55:78:c6:33:ff:
69:3a:5a:87:6a:6c:a5:04:b0:ea:51:83:6a:d2:95:14:61:af:
4b:25:4e:eb:ca:9d:b3:3f:e2:64:80:d1:56:86:b2:dd:9e:7b:
7a:01:91:f7:f6:04:12:2a:90:fa:9d:50:b5:75:1f:08:5b:1f:
99:a3:43:61:f3:a1:d3:03:33:8f:de:0a:3c:8f:5e:66:b4:30:
09:f3:2a:af:98:5a:81:6c:d0:0a:2b:f7:f3:50:ba:25:42:28:
81:c3:88:aa:69:10:a8:2d:7f:86:59:fa:f3:1b:f7:44:b7:25:
a8:29:ef:1b:c2:7e:16:31:b2:7e:5e:65:d3:b1:28:f9:43:34:
31:b3:ce:01:06:a7:f4:9c:ea:fd:4d:82:35:ed:44:1c:4f:16:
fb:cc:ed:d3:56:a8:6e:2f:a6:8e:20:c4:8e:a3:a8:32:10:1c:
c6:89:20:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 12:00:10 2024 by rpki-client on console-ams.rpki-client.org