Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.mft
File: OJDnpFSaVx9otoja1PXO2OUpBos.mft (raw, json)
Hash identifier: U5cdx0MiAUg4ptorHrLYZOdEXqVZj/RN6b5ZXLunJP4=
Subject key identifier: 84:65:E2:19:69:23:67:DA:B9:B3:77:EF:B0:E0:2C:3A:2E:B9:2B:E7
Authority key identifier: 38:90:E7:A4:54:9A:57:1F:68:B6:88:DA:D4:F5:CE:D8:E5:29:06:8B
Certificate issuer: /CN=3890e7a4549a571f68b688dad4f5ced8e529068b
Certificate serial: 018F88245B09D003102D65DFDC3A4BDCFAB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJDnpFSaVx9otoja1PXO2OUpBos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.mft
Manifest number: 1178
Signing time: Fri 17 May 2024 20:00:34 +0000
Manifest this update: Fri 17 May 2024 20:00:34 +0000
Manifest next update: Sat 18 May 2024 20:00:34 +0000
Files and hashes: 1: OJDnpFSaVx9otoja1PXO2OUpBos.crl (hash: wOIkyTpAA//aLUseuCgaozN5MS9E5Yy4PT8FKk7uX6I=)
2: S9g7Vzh1P2FMifJvSn439KZG27g.roa (hash: v15MkXapqMIIz2ocPmFrHKam9nmEjR38xTT54Tkaxq0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.mft
rsync://rpki.ripe.net/repository/DEFAULT/OJDnpFSaVx9otoja1PXO2OUpBos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:24:5b:09:d0:03:10:2d:65:df:dc:3a:4b:dc:fa:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3890e7a4549a571f68b688dad4f5ced8e529068b
Validity
Not Before: May 17 20:00:34 2024 GMT
Not After : May 18 20:00:34 2024 GMT
Subject: CN=8465e219692367dab9b377efb0e02c3a2eb92be7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:99:db:07:3b:8c:dd:87:26:07:61:05:2f:07:
9d:15:76:55:c1:74:c8:b8:24:df:65:9a:8b:22:57:
d4:a5:f2:23:5d:15:f6:6c:f7:03:90:1d:21:c7:45:
e9:b4:a9:54:02:40:be:52:45:9a:d8:2a:2c:7c:b4:
85:c1:44:ef:1f:c9:a5:41:34:25:b8:ad:4c:56:1e:
34:dd:58:97:64:29:28:41:ee:a9:04:02:42:c5:a2:
8a:b5:32:f0:a6:26:cd:af:e1:73:62:af:bd:bb:c1:
fe:67:86:56:4c:0d:96:6f:3d:be:c1:79:4b:24:33:
67:b6:f0:4d:2b:4e:6f:b0:cf:8c:44:2b:d1:44:3d:
90:39:37:0e:b9:4a:91:27:98:e1:2e:52:82:15:32:
40:05:59:c3:1d:a5:dd:a8:02:63:2f:93:fd:de:db:
6b:e5:77:81:9c:39:6f:4d:82:21:44:19:33:42:9c:
79:3a:74:ca:98:08:6d:a8:8a:cf:32:8c:07:16:93:
73:ea:a5:bd:1b:e8:2b:e3:82:04:1e:8c:aa:a5:cf:
e8:82:66:e7:ab:8b:1c:83:49:aa:09:f7:ab:7d:15:
82:2f:69:bd:c3:0d:ea:be:df:a9:85:46:cc:88:89:
81:1f:e2:a3:21:d9:6b:b5:a0:71:0d:a9:f8:45:46:
e3:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:65:E2:19:69:23:67:DA:B9:B3:77:EF:B0:E0:2C:3A:2E:B9:2B:E7
X509v3 Authority Key Identifier:
keyid:38:90:E7:A4:54:9A:57:1F:68:B6:88:DA:D4:F5:CE:D8:E5:29:06:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJDnpFSaVx9otoja1PXO2OUpBos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:34:a9:7b:d9:d8:29:f5:da:e4:ee:cf:e2:e2:10:2b:00:a4:
54:b0:b9:5a:3b:9b:51:03:dc:8f:62:00:b2:fa:95:d7:14:09:
67:52:3f:f7:1f:93:2b:6e:52:c4:94:fd:18:f4:61:bc:6d:de:
92:56:75:cd:20:24:7b:ab:6e:37:34:6c:59:58:2f:1b:42:f7:
5d:2c:d2:e2:a2:b9:be:26:04:db:58:3b:44:1f:04:58:b6:42:
33:bc:c1:e2:51:3c:e6:a7:89:36:e3:22:ff:27:6a:c3:b3:73:
51:a7:ae:3a:bd:94:ce:ca:5b:73:de:29:d2:5e:c9:ff:2f:58:
cf:6a:6d:04:bc:49:23:c8:99:ed:f5:1f:79:8f:83:86:11:b5:
8a:dc:45:81:ad:8b:41:f1:68:2a:df:63:b8:eb:6a:26:74:55:
50:9e:38:00:9b:c0:cd:b5:1d:b7:f6:ae:64:e1:e8:0e:ab:4e:
c6:7d:70:d9:77:9f:63:34:05:9d:9e:f1:94:10:bf:28:fc:88:
8b:e5:8d:5e:2f:8b:1b:f7:11:40:d7:5c:a4:50:03:ce:79:b3:
9d:5d:21:b4:21:26:42:eb:5e:9e:75:23:79:b4:cd:49:0a:2f:
b3:d7:ae:65:91:c7:c8:31:2b:f6:5c:37:6f:6b:be:d0:ca:95:
6a:4f:4e:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 23:48:06 2024 by rpki-client on console-fra.rpki-client.org