Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft
File: ChCKKMcHsOXCwubCE31Fh5EUu5I.mft (raw, json)
Hash identifier: YpIUEDKImnxJlI6/vdhBccvFLpSkO+W1sOeLodZFfK8=
Subject key identifier: 3D:9A:F8:F7:6C:88:45:2D:AD:A6:FD:1D:AA:DF:BD:77:72:D3:0C:B7
Authority key identifier: 0A:10:8A:28:C7:07:B0:E5:C2:C2:E6:C2:13:7D:45:87:91:14:BB:92
Certificate issuer: /CN=0a108a28c707b0e5c2c2e6c2137d45879114bb92
Certificate serial: 018F8938337FA7B2568C5A05AD6F01C1BAF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ChCKKMcHsOXCwubCE31Fh5EUu5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft
Manifest number: 0372
Signing time: Sat 18 May 2024 01:01:52 +0000
Manifest this update: Sat 18 May 2024 01:01:52 +0000
Manifest next update: Sun 19 May 2024 01:01:52 +0000
Files and hashes: 1: ChCKKMcHsOXCwubCE31Fh5EUu5I.crl (hash: nl+GDLLba2W2Kvo7gT/E3k7FpO7iHaexZSteS24opWw=)
2: Jt0Zox4TVq6eTdr_aHK5XmDBpkc.roa (hash: sxHUKq/HBPI3LK1mqa+1qHAcM5ocqZS9m1aAc2kAv6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft
rsync://rpki.ripe.net/repository/DEFAULT/ChCKKMcHsOXCwubCE31Fh5EUu5I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:89:38:33:7f:a7:b2:56:8c:5a:05:ad:6f:01:c1:ba:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a108a28c707b0e5c2c2e6c2137d45879114bb92
Validity
Not Before: May 18 01:01:52 2024 GMT
Not After : May 19 01:01:52 2024 GMT
Subject: CN=3d9af8f76c88452dada6fd1daadfbd7772d30cb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:99:3a:68:da:c3:7b:a7:96:0c:b9:50:c4:5a:
d0:8e:0e:66:88:08:2a:8a:d0:46:aa:0d:b1:a9:7b:
b5:cd:ca:1e:06:bc:4b:c5:f4:51:c9:14:06:19:3d:
eb:af:66:9f:19:30:e1:0c:f4:a2:09:02:93:32:be:
18:01:82:26:ab:90:53:a9:5d:ac:b8:c4:3a:d3:b7:
e3:02:aa:b3:6c:97:05:ea:64:1a:ec:0d:04:e7:8a:
fe:6e:4d:71:b0:3c:30:d6:9c:ef:ca:83:aa:86:65:
1d:eb:5a:95:46:40:e6:a9:f2:7f:25:06:cb:4c:9e:
1c:41:9a:02:58:fb:89:f4:83:76:8b:07:89:59:bf:
d1:f6:47:d1:a5:a0:c4:6c:28:b4:70:77:7d:6f:ad:
14:74:8b:12:93:c3:3e:58:c9:25:ea:5f:b1:18:ae:
07:81:30:2a:cd:87:34:d1:e1:a5:28:09:c0:48:31:
d4:09:97:05:f2:67:c4:f6:9c:69:f3:88:dd:02:66:
05:80:63:9b:ca:e0:b6:2d:27:13:5a:4b:e6:f5:f5:
9c:8e:4b:2f:f5:d9:c7:c9:4e:fa:2b:f0:c3:86:f1:
90:0b:f7:2e:e8:6e:7f:dd:46:92:e6:ef:07:0e:02:
09:52:18:ad:85:43:cd:58:a1:92:1d:f4:ab:95:f1:
93:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:9A:F8:F7:6C:88:45:2D:AD:A6:FD:1D:AA:DF:BD:77:72:D3:0C:B7
X509v3 Authority Key Identifier:
keyid:0A:10:8A:28:C7:07:B0:E5:C2:C2:E6:C2:13:7D:45:87:91:14:BB:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ChCKKMcHsOXCwubCE31Fh5EUu5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:aa:39:33:de:a4:14:fb:02:ba:26:9f:9a:b5:b3:af:2a:ff:
7b:c9:0f:ef:e5:a0:f6:e2:0c:33:30:fd:ff:93:3d:8c:21:d6:
d3:1b:17:a8:12:03:9f:d5:eb:d1:80:49:32:ae:6c:d8:9f:b1:
93:d9:21:c7:8b:8b:c8:17:df:41:eb:e3:db:a4:a2:a5:28:9d:
a6:d4:ca:05:c1:f0:2b:7a:4d:e4:a3:48:43:e3:5b:c9:4b:dd:
42:2f:ac:bc:8b:71:fb:28:22:e7:af:76:66:65:f0:6c:a7:61:
f4:b9:ed:89:c4:ff:46:ef:b3:63:54:d7:86:33:53:35:10:85:
5f:54:75:8c:91:94:fa:bd:ea:84:c1:cc:85:63:c8:79:58:83:
af:b1:7e:7e:27:3c:33:2f:ce:f6:26:4a:a8:12:8d:c1:fb:37:
a3:76:20:ce:8e:75:64:f9:f3:9c:2c:81:c2:39:0b:0b:4d:4d:
99:6b:2d:e3:63:22:bf:96:0c:ff:ce:d3:0e:7e:cb:9d:62:d5:
d8:51:3f:fe:03:2f:e1:a2:2f:0f:6d:f4:9e:de:79:ad:65:e8:
b2:ee:f5:48:b2:f1:e9:7d:ae:84:a9:8a:59:46:c2:91:b6:cd:
a5:43:15:82:20:6d:16:9f:8b:20:1d:49:1f:1f:1a:54:d1:fd:
50:a7:ec:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 02:00:02 2024 by rpki-client on console-fra.rpki-client.org