Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
File: cIEc4M5zU_A-3py3ylEWJV-_t70.mft (raw, json)
Hash identifier: /D5i6Is8cINFU4Ww0JcJMSxTcXVirdCsZp21torkATg=
Subject key identifier: 16:48:64:79:02:41:29:60:8F:04:78:A8:7F:C9:59:83:36:CC:A5:1C
Authority key identifier: 70:81:1C:E0:CE:73:53:F0:3E:DE:9C:B7:CA:51:16:25:5F:BF:B7:BD
Certificate issuer: /CN=70811ce0ce7353f03ede9cb7ca5116255fbfb7bd
Certificate serial: 018F874AE9D9891A8140424BDA9DF26C19A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
Manifest number: 0630
Signing time: Fri 17 May 2024 16:03:04 +0000
Manifest this update: Fri 17 May 2024 16:03:04 +0000
Manifest next update: Sat 18 May 2024 16:03:04 +0000
Files and hashes: 1: OC7VYmFzXkrnroW464py0VMNK7Q.roa (hash: iXRVt60CTBatjyHUI46pQNS15ALABWCu9KNSjt3FZcg=)
2: cIEc4M5zU_A-3py3ylEWJV-_t70.crl (hash: y2D3nqhdOGJk6lcgghU7EcD5BrclseIvfILFNxd0eO0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:03:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:e9:d9:89:1a:81:40:42:4b:da:9d:f2:6c:19:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70811ce0ce7353f03ede9cb7ca5116255fbfb7bd
Validity
Not Before: May 17 16:03:04 2024 GMT
Not After : May 18 16:03:04 2024 GMT
Subject: CN=16486479024129608f0478a87fc9598336cca51c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:74:76:11:b9:df:f3:61:fe:7b:22:3d:6f:4a:
d1:be:50:bc:c7:a2:95:5e:39:b0:49:93:d5:8a:3e:
92:34:c0:bb:92:3c:b2:c4:c7:71:f5:30:93:d2:81:
aa:7b:8a:b8:35:64:db:fa:d3:b6:a5:1d:d4:52:ff:
1d:d2:4a:7b:5f:d9:86:6c:e3:40:33:03:a9:96:5e:
8b:8d:1a:26:13:2c:02:af:8d:77:8c:2a:cf:8b:eb:
d0:90:e4:eb:4a:20:32:a4:61:cd:ae:13:85:77:28:
30:a6:ab:fe:50:47:3d:ad:fc:11:97:2b:ce:72:03:
67:e6:03:2c:33:14:8e:43:d7:bd:e2:5d:6c:0e:84:
fc:d0:7c:1b:9a:8c:26:10:43:08:38:91:88:90:8e:
35:f3:99:ff:de:34:85:e9:ae:4d:3f:45:dc:91:bd:
49:40:0a:ba:70:12:fb:68:64:13:ae:46:3f:d1:66:
fb:4a:22:85:63:98:3e:ae:9e:17:ed:e6:b0:6c:f5:
f5:d1:a4:6d:94:32:57:48:3b:fc:b3:60:bc:18:8a:
89:8e:32:6c:6a:14:40:88:48:49:0e:11:7f:08:cd:
c9:20:42:3c:94:32:f2:4e:b3:65:3c:44:7f:1c:de:
51:ed:c5:3b:86:55:65:39:fa:7d:29:54:cf:8d:a7:
83:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:48:64:79:02:41:29:60:8F:04:78:A8:7F:C9:59:83:36:CC:A5:1C
X509v3 Authority Key Identifier:
keyid:70:81:1C:E0:CE:73:53:F0:3E:DE:9C:B7:CA:51:16:25:5F:BF:B7:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:91:83:8c:bf:72:5f:3d:dd:a1:37:66:5e:66:d5:38:ff:0f:
33:30:d7:0f:95:09:6f:14:b7:0a:3c:9a:ac:8e:85:4a:46:c8:
00:df:c3:4b:d5:f0:0c:a8:de:2d:86:28:8e:31:31:83:e3:0d:
bd:cb:7b:45:5f:12:b6:e7:7c:0c:05:d8:b6:f6:0b:21:be:8d:
b7:d6:79:20:d1:1c:39:14:df:28:ec:6c:ac:1b:8d:a7:57:73:
9c:06:de:b0:29:0f:5b:a2:a9:27:05:dd:6d:9d:4a:71:da:37:
7d:34:c4:44:29:d3:e9:9f:23:17:68:90:6b:4f:fe:00:ee:88:
e8:6c:f4:7b:77:65:24:b5:22:99:e1:98:fc:dc:48:f3:1f:42:
0a:05:90:4e:db:e0:a0:92:79:8c:38:dd:87:00:f2:b4:07:1d:
ed:9b:b4:c0:2d:a9:33:11:2d:ef:8b:5c:ce:4e:18:f7:a6:24:
f9:65:43:80:d8:7d:1f:61:93:3e:ff:fa:d8:ce:9d:e7:47:db:
fd:d9:08:5a:f5:ea:21:a5:f3:35:dd:0d:5e:18:38:01:ad:9b:
89:23:d8:07:ee:54:fa:05:df:98:e5:31:0f:9b:6b:f2:3c:29:
16:e8:13:cd:c5:e6:1b:c0:cf:f1:69:4e:01:95:3d:77:7e:3e:
48:d7:c0:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:29:35 2024 by rpki-client on console-fra.rpki-client.org