Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
File: 0gXOrys2rZ_lGQaehrlONtLsS94.mft (raw, json)
Hash identifier: z2h8BXBmcqDdgAZxdkUWSI4GQDft+3hxTjb25FXh45g=
Subject key identifier: 29:4E:4F:56:EA:25:CF:62:B6:49:1B:28:BE:73:A2:EB:BC:20:A4:6F
Authority key identifier: D2:05:CE:AF:2B:36:AD:9F:E5:19:06:9E:86:B9:4E:36:D2:EC:4B:DE
Certificate issuer: /CN=d205ceaf2b36ad9fe519069e86b94e36d2ec4bde
Certificate serial: 018F51A47E1EA39A69755763C52C6CB82086
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
Manifest number: 048C
Signing time: Tue 07 May 2024 06:01:25 +0000
Manifest this update: Tue 07 May 2024 06:01:25 +0000
Manifest next update: Wed 08 May 2024 06:01:25 +0000
Files and hashes: 1: 0gXOrys2rZ_lGQaehrlONtLsS94.crl (hash: JJc2hsd8GEcq9lthQ/NuFRtwo9L6mGDu11jVyfo7wec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:51:a4:7e:1e:a3:9a:69:75:57:63:c5:2c:6c:b8:20:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d205ceaf2b36ad9fe519069e86b94e36d2ec4bde
Validity
Not Before: May 7 06:01:25 2024 GMT
Not After : May 8 06:01:25 2024 GMT
Subject: CN=294e4f56ea25cf62b6491b28be73a2ebbc20a46f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:84:2a:02:60:a0:41:17:39:4b:90:81:71:b4:
d0:c3:79:23:d1:4f:e6:8a:c6:9a:82:e6:d8:30:a2:
99:dc:35:7f:fd:29:d2:98:00:e7:af:f2:99:d2:a6:
b2:7c:2d:f6:4b:5c:c8:80:23:9f:25:71:4e:0d:b3:
27:f3:0c:4f:ab:7b:92:9e:e2:39:fd:36:c2:ce:a3:
82:0c:9e:52:fa:2e:9c:90:c6:0f:e1:ac:b3:22:a4:
f6:76:9b:1e:a0:76:13:d0:8b:5e:39:f9:3b:e8:cf:
c1:45:1d:28:26:c7:37:e8:79:88:d5:ce:ac:dd:99:
07:95:0e:aa:c1:a6:dc:1c:42:75:0b:a5:e2:78:01:
bd:31:98:1c:eb:14:15:fc:e1:f7:cc:da:57:e9:84:
32:9b:9c:35:bf:63:c7:ce:bc:16:58:93:3e:92:a6:
36:12:d4:de:f0:f0:f6:a3:f9:a0:19:98:62:b4:90:
c8:54:c4:d5:1a:4b:2d:0b:09:c2:9f:82:be:6d:c0:
5a:57:16:e4:8f:d0:8e:29:f1:c4:b4:45:35:b0:da:
2f:90:f9:9d:9c:d9:75:92:22:a7:87:bd:b3:01:dd:
55:30:45:4a:98:dc:eb:be:c9:0b:4b:60:84:af:d6:
54:94:78:bd:b3:37:ee:69:0c:b2:70:07:db:c1:a3:
96:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:4E:4F:56:EA:25:CF:62:B6:49:1B:28:BE:73:A2:EB:BC:20:A4:6F
X509v3 Authority Key Identifier:
keyid:D2:05:CE:AF:2B:36:AD:9F:E5:19:06:9E:86:B9:4E:36:D2:EC:4B:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:e3:7a:3a:ac:89:cc:5e:45:f2:36:c4:b4:f5:a6:53:9c:4d:
7c:24:64:d7:49:35:9e:23:84:d6:31:85:1c:d5:f9:c7:b7:11:
9b:bb:0c:f9:f4:2a:c1:4e:36:d6:fa:2d:91:79:29:91:2b:9e:
e3:cb:48:3f:0d:dc:58:f6:cd:a5:ee:35:b5:b5:08:7a:bc:19:
1a:98:fb:ca:f4:ef:f3:7a:a7:8c:c1:da:d4:ab:84:8b:98:39:
f3:46:22:7f:ae:f2:62:1f:2c:4b:7c:fc:47:f6:83:92:2f:8b:
b5:4b:e1:12:ea:4e:56:1e:3a:32:78:47:51:96:4b:44:3a:b0:
72:77:d2:49:34:86:aa:02:51:af:ea:ae:aa:2a:5c:ed:93:a1:
92:c7:8d:11:8a:77:04:11:95:b1:4f:35:08:a0:94:85:9c:af:
12:ad:a7:d8:1b:a6:34:fd:09:3d:38:17:69:92:46:df:68:75:
98:05:04:82:a9:42:47:4a:1a:79:a6:5d:23:37:0b:d4:39:2e:
a6:64:8f:a1:dd:92:40:f4:2d:77:89:7f:bd:27:6f:ba:28:25:
96:2c:1b:03:6b:ae:6a:20:6c:c8:76:72:5d:ca:8b:b4:59:83:
6a:dd:a2:d1:49:c8:f1:19:f9:d1:ba:46:09:58:96:ec:36:1b:
86:f1:c3:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 07:28:17 2024 by rpki-client on console-ams.rpki-client.org