Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
File: ij_gucYwoz4XGgpceT80C0NEaTI.mft (raw, json)
Hash identifier: +l+DWfjNx8Kp5zJiQPc1r1YMcJc1juXIv0XE0BHeWhk=
Subject key identifier: 02:D1:64:C0:90:65:B4:CD:74:21:FF:87:71:5A:25:3A:E8:E2:B5:AE
Authority key identifier: 8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
Certificate issuer: /CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Certificate serial: 018F87ED512F2762D12703E5E9B709A1025E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
Manifest number: 1152
Signing time: Fri 17 May 2024 19:00:28 +0000
Manifest this update: Fri 17 May 2024 19:00:28 +0000
Manifest next update: Sat 18 May 2024 19:00:28 +0000
Files and hashes: 1: RYX7E7EsDbSF_lCtaLN-OHrHqoI.roa (hash: 8b8FHbKEgcFGY1FIqSa+LcjrvTCcZDUhvEjj5iH3dYs=)
2: ij_gucYwoz4XGgpceT80C0NEaTI.crl (hash: SHjtD92g83VXYpQNeFbxaVVaRp1UKqVvLAk+hxftO2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:ed:51:2f:27:62:d1:27:03:e5:e9:b7:09:a1:02:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Validity
Not Before: May 17 19:00:28 2024 GMT
Not After : May 18 19:00:28 2024 GMT
Subject: CN=02d164c09065b4cd7421ff87715a253ae8e2b5ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d2:9e:db:4c:2e:53:dc:3f:ea:42:da:79:ce:
68:ca:29:79:ce:1e:74:58:d2:ec:b9:51:43:b6:01:
3a:80:fa:c8:d4:17:19:5b:82:cf:0f:0e:64:f0:e9:
37:4a:b2:74:ae:86:5b:32:fe:b0:da:06:4a:02:91:
fd:4b:b4:76:7d:cb:36:2e:99:66:02:c1:34:5f:97:
a0:37:48:d0:b9:fd:bf:ce:97:d0:ab:12:1b:b1:88:
86:b9:14:10:a5:7e:7a:a0:3c:e8:d1:9c:de:37:2b:
02:2e:d9:69:92:36:a5:63:9a:77:77:10:45:fc:b8:
a7:8b:a5:52:4c:3c:33:17:e4:39:38:44:80:c8:de:
89:4b:96:60:44:5d:f3:da:94:68:2f:39:1e:b6:2f:
b9:a3:8e:6a:33:97:ec:79:f7:ec:17:19:14:08:b4:
a0:6d:f1:34:dd:80:9f:f4:bf:a1:99:6b:61:86:08:
29:1e:bf:cd:fe:a9:48:5a:e7:46:07:82:36:bc:3f:
9b:01:2c:4d:7b:2f:d6:0e:f1:aa:9d:68:ca:d6:b0:
03:20:29:6d:30:a3:7b:8d:ae:06:ce:77:ae:f6:ff:
ec:67:8e:24:c3:d3:7b:39:51:e5:7a:49:6d:f0:45:
46:e3:a3:21:9d:50:8c:0d:c5:2b:b6:47:e6:11:d1:
07:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:D1:64:C0:90:65:B4:CD:74:21:FF:87:71:5A:25:3A:E8:E2:B5:AE
X509v3 Authority Key Identifier:
keyid:8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:14:a4:1d:53:ee:43:ab:ef:45:bc:83:1b:08:c0:34:6f:73:
29:f5:f6:d7:21:32:f8:cf:f5:9f:45:1d:68:11:fa:88:2b:f7:
ba:32:11:83:53:09:d9:c4:9b:e1:97:72:1e:fb:47:6c:60:45:
dc:8a:fe:68:17:42:8f:30:84:c1:17:b7:ea:17:eb:ca:bd:a4:
a7:74:c5:28:38:71:cb:cc:af:dd:6a:9b:ee:8e:86:54:2d:f7:
94:fe:e7:86:f9:a0:85:9f:6d:30:32:9a:7f:4f:bd:82:8a:4f:
69:36:7e:e5:10:c9:4a:83:e5:58:f7:a3:e0:c1:b5:fa:80:cd:
b2:31:bb:d4:63:88:d3:f4:c6:87:2c:f0:a0:0c:8a:c2:30:3b:
11:2d:15:54:2a:d9:6a:b1:61:c4:6c:2f:44:06:8c:dd:81:ae:
c3:6d:6f:a0:96:82:01:c4:f7:63:dc:8b:59:e4:c3:b6:53:66:
ac:f2:3f:c5:e0:db:0f:9b:78:62:60:bf:0c:e8:eb:89:f1:83:
ac:d7:e6:eb:5b:93:54:59:70:bc:d0:e7:32:ff:eb:48:a2:00:
da:93:c1:aa:ea:e9:0e:6d:72:bf:55:ac:f0:3c:da:ee:46:20:
8e:77:ac:f0:5a:65:9a:2f:8b:3f:2b:42:fe:79:8e:6c:be:94:
a0:ed:9d:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 01:57:42 2024 by rpki-client on console-fra.rpki-client.org