Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.mft
File: I5xF5DYlUiCArsU5UpiaE6KKvQA.mft (raw, json)
Hash identifier: 7SAHa1V7sW8N/ooIPE4tWv4g2E1Fz68MFkIJxIVx9o4=
Subject key identifier: 91:B9:F1:3F:C0:45:37:17:FD:DD:23:F2:E0:10:00:05:9C:F4:E3:2C
Authority key identifier: 23:9C:45:E4:36:25:52:20:80:AE:C5:39:52:98:9A:13:A2:8A:BD:00
Certificate issuer: /CN=239c45e43625522080aec53952989a13a28abd00
Certificate serial: 018F3BFA4F8FCBB67C02EE5F06201C3B95A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I5xF5DYlUiCArsU5UpiaE6KKvQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.mft
Manifest number: 1152
Signing time: Fri 03 May 2024 01:03:30 +0000
Manifest this update: Fri 03 May 2024 01:03:30 +0000
Manifest next update: Sat 04 May 2024 01:03:30 +0000
Files and hashes: 1: 8m14GemymqOGC0QdkxXJ5SIo1rE.roa (hash: s9BYHWU3xU8SXQ0aeCTfx6dsFGvyHeZFQG9O4YC9ksk=)
2: I5xF5DYlUiCArsU5UpiaE6KKvQA.crl (hash: XT72Lu9nhqSUYSLm3R3arIO9U2U05Odd1d7cTQpRo0k=)
3: QSKD91Z3-QtmXDJcOBL-KUxpJAI.roa (hash: ycSvkvKMM9p5uKPl/GNg7sjdJsjwnXms6GUdVmVrxEI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/I5xF5DYlUiCArsU5UpiaE6KKvQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 00:09:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3b:fa:4f:8f:cb:b6:7c:02:ee:5f:06:20:1c:3b:95:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=239c45e43625522080aec53952989a13a28abd00
Validity
Not Before: May 3 01:03:30 2024 GMT
Not After : May 4 01:03:30 2024 GMT
Subject: CN=91b9f13fc0453717fddd23f2e01000059cf4e32c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:5f:8d:6e:42:1c:78:42:4c:f4:cc:e2:b2:27:
7b:bb:38:db:10:7b:84:a3:74:ed:77:5b:75:9d:be:
8c:b1:a5:ba:ba:63:ba:58:06:82:a7:9b:d5:ec:6f:
63:ac:5e:0d:ea:47:fc:59:d5:20:8d:57:a6:74:34:
86:04:ae:49:ac:ce:49:ad:e7:44:84:04:67:b5:22:
58:b6:fe:d1:6c:87:17:28:b6:c3:d7:87:67:a1:80:
a6:d1:a1:cd:7a:4a:27:0c:eb:d3:dd:93:1e:3c:ef:
0f:c5:0f:e2:44:a5:60:fa:1e:7d:77:6e:d8:e4:bd:
3e:e8:7b:39:1a:14:63:ed:15:52:2b:f4:e1:95:38:
58:c7:d8:38:29:2c:cf:72:23:b2:ce:df:b4:b0:48:
e0:d0:f6:64:15:06:be:61:10:75:e9:7a:50:29:4b:
63:7e:59:4d:9a:0d:f2:c1:3c:db:5b:7d:c2:c6:8d:
b7:22:ac:9f:fa:82:f1:07:b5:9f:04:67:36:be:03:
b8:80:b9:4f:1f:e6:96:6e:3a:be:2d:b4:85:c9:ba:
bf:8d:7a:50:41:26:85:0c:5e:33:09:75:e9:fd:76:
b1:bf:98:04:7a:4f:39:db:82:57:34:5c:80:5e:6b:
29:e0:3b:0b:68:9f:ef:26:b3:b4:56:6c:d3:1f:27:
3f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:B9:F1:3F:C0:45:37:17:FD:DD:23:F2:E0:10:00:05:9C:F4:E3:2C
X509v3 Authority Key Identifier:
keyid:23:9C:45:E4:36:25:52:20:80:AE:C5:39:52:98:9A:13:A2:8A:BD:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I5xF5DYlUiCArsU5UpiaE6KKvQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:20:a7:27:c5:f1:b8:a7:9d:b6:bd:1a:0d:7b:33:93:98:1a:
3e:18:79:37:df:4d:f4:98:8f:7a:19:ac:4a:66:ca:dc:c5:4b:
a3:69:dc:99:aa:64:06:0c:1d:69:aa:84:17:b6:b6:19:29:f9:
75:aa:e5:67:b6:5d:06:d3:4d:05:73:ea:92:3a:44:66:92:da:
bc:98:c7:64:b8:cd:f2:a8:91:a1:e8:f7:69:af:6b:f8:3d:fa:
83:4a:8f:68:c8:bd:b7:f6:f9:e9:ff:55:88:b4:7e:f3:ab:3c:
2c:d9:42:92:bf:9f:f1:b3:af:9a:7b:4d:8b:37:b7:35:34:d6:
9e:dc:06:09:0e:96:fe:9b:18:1f:71:07:8f:5e:04:bf:f7:2c:
90:76:15:19:43:5c:3d:7e:6d:68:a5:8f:ed:72:52:d9:d4:6f:
af:37:cb:62:32:97:59:d5:a0:e7:dc:47:b0:ce:fd:23:88:6f:
25:f5:97:ce:e1:74:ad:9d:42:a2:08:21:e7:35:6c:89:0c:8f:
a7:21:2c:b8:c2:e0:e2:3a:12:b6:8c:5b:74:87:29:82:81:8f:
64:c2:cd:50:fd:21:92:1c:43:36:b9:5f:fe:a9:52:90:0d:4b:
3e:02:48:63:49:09:f4:f7:eb:6a:2e:e7:59:1c:33:db:35:e3:
6b:1b:bc:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:32:05 2024 by rpki-client on console-ams.rpki-client.org