Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.mft
File: H9e7sd5oCd9_blc_mrtk5gNhPKE.mft (raw, json)
Hash identifier: rpatF/1RNLCbdlyvUTWjvbDp3ssQZnGKziyz/urm7Jc=
Subject key identifier: D0:73:9A:6D:A8:54:68:9A:22:11:B1:C5:76:B6:D5:B2:70:BA:9F:41
Authority key identifier: 1F:D7:BB:B1:DE:68:09:DF:7F:6E:57:3F:9A:BB:64:E6:03:61:3C:A1
Certificate issuer: /CN=1fd7bbb1de6809df7f6e573f9abb64e603613ca1
Certificate serial: 018F43B318F96161405171817D9D250D3150
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9e7sd5oCd9_blc_mrtk5gNhPKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.mft
Manifest number: 1157
Signing time: Sat 04 May 2024 13:02:41 +0000
Manifest this update: Sat 04 May 2024 13:02:41 +0000
Manifest next update: Sun 05 May 2024 13:02:41 +0000
Files and hashes: 1: H9e7sd5oCd9_blc_mrtk5gNhPKE.crl (hash: dyJmnEzwWniPxJzUkqzUUlyf/uGeFCQTXtJYdQhnA7M=)
2: Xc24uluT673IDMs7n-TJ9YzM7P4.roa (hash: UodetPaIzHDWKd7AGqpkr4bJVB/r4tx1NRLbZMzkQ/c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/H9e7sd5oCd9_blc_mrtk5gNhPKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:43:b3:18:f9:61:61:40:51:71:81:7d:9d:25:0d:31:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd7bbb1de6809df7f6e573f9abb64e603613ca1
Validity
Not Before: May 4 13:02:41 2024 GMT
Not After : May 5 13:02:41 2024 GMT
Subject: CN=d0739a6da854689a2211b1c576b6d5b270ba9f41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:4c:dc:39:21:bc:79:91:92:97:b6:d3:63:b0:
c2:87:f8:c9:aa:d8:c3:54:e4:42:6c:1a:72:3e:72:
f3:97:fc:2a:94:18:8f:50:1c:24:cf:8a:1f:f3:9f:
fa:df:cb:eb:c5:46:da:40:9f:db:a1:d8:4c:91:43:
fe:30:80:5b:e7:d1:d0:02:b3:17:f1:85:34:cd:09:
94:3f:2e:58:7a:53:30:e1:db:73:de:77:43:51:67:
8c:cc:e3:31:0d:4b:dd:a3:58:89:36:50:97:92:cc:
94:45:56:5c:97:c8:56:58:60:71:b0:c4:da:be:1d:
bd:0b:96:93:7b:ee:fb:c6:36:38:c0:e7:6f:d4:3f:
b5:e2:d8:2b:62:2e:aa:0e:07:d1:7f:53:62:21:d2:
ab:d9:23:e2:f8:2a:df:52:58:7d:98:b6:60:4f:f8:
64:4a:14:31:d6:f6:12:d8:0e:93:38:ec:f9:ff:67:
7f:41:6c:c9:30:29:24:1e:8b:09:55:c6:56:c4:9d:
c1:77:c2:e4:41:91:c7:df:73:79:12:1b:63:70:5a:
3c:92:a9:76:23:d0:06:a8:22:83:36:01:b1:db:e4:
7c:43:a2:36:0b:8f:76:2f:0e:08:b0:d2:8f:8f:cb:
81:67:86:fb:80:3b:81:01:76:26:18:96:85:30:c8:
f6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:73:9A:6D:A8:54:68:9A:22:11:B1:C5:76:B6:D5:B2:70:BA:9F:41
X509v3 Authority Key Identifier:
keyid:1F:D7:BB:B1:DE:68:09:DF:7F:6E:57:3F:9A:BB:64:E6:03:61:3C:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9e7sd5oCd9_blc_mrtk5gNhPKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:a5:d9:e3:c1:32:c8:37:9a:6a:a4:d0:b7:f5:5e:2e:e7:0b:
94:27:94:d5:aa:4a:be:34:3b:29:e3:e3:15:13:11:eb:42:74:
1e:c9:3f:35:36:35:13:fe:75:42:90:57:94:8e:d2:1b:b3:1b:
14:8b:bd:41:04:48:fc:54:6b:23:7d:09:ea:5a:a3:b0:14:18:
d7:aa:c8:85:49:dc:96:b6:ac:f7:33:6e:24:79:6c:66:7c:9b:
42:93:d3:2f:d2:b4:5c:bc:fc:d7:c2:e3:31:50:7d:17:57:10:
b8:b8:ba:ed:a9:ba:92:47:0e:ae:2b:91:ee:03:bd:26:3e:27:
18:c1:78:18:3b:15:76:a6:b5:38:53:17:cc:10:6b:27:80:ae:
0f:64:1c:b1:4f:29:53:3c:af:b2:9a:5a:3c:b4:21:6b:80:b5:
f9:99:b3:8d:d7:c8:90:b9:fa:a7:4f:eb:42:a9:0a:f6:2e:fd:
24:fb:ae:97:10:6b:8d:6f:8d:54:2d:3c:16:3f:79:ee:fc:62:
25:cf:2c:15:f3:af:bd:86:13:ca:f3:20:a5:c2:eb:ac:65:38:
94:20:7f:b7:2f:5f:eb:9e:84:4d:34:ef:c2:90:38:cf:60:6f:
61:73:e8:de:2c:b5:ff:e2:ce:66:28:ca:c6:18:8f:1c:41:e3:
bf:6b:65:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 13:48:51 2024 by rpki-client on console-ams.rpki-client.org