Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
File: 1ots-3IKfJKhgMphS9sO2h8evp0.mft (raw, json)
Hash identifier: CR5qMMZ0Tv1lO5EEKM16xmarAIf8tI6uxVxHOYl7Rv0=
Subject key identifier: 21:3A:FD:6D:32:DA:0A:07:D9:4F:BD:5D:19:B2:3F:BC:BF:55:BD:DA
Authority key identifier: D6:8B:6C:FB:72:0A:7C:92:A1:80:CA:61:4B:DB:0E:DA:1F:1E:BE:9D
Certificate issuer: /CN=d68b6cfb720a7c92a180ca614bdb0eda1f1ebe9d
Certificate serial: 018F5138F550638BFFF401EB1589D3F644DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
Manifest number: 075A
Signing time: Tue 07 May 2024 04:03:58 +0000
Manifest this update: Tue 07 May 2024 04:03:58 +0000
Manifest next update: Wed 08 May 2024 04:03:58 +0000
Files and hashes: 1: 1ots-3IKfJKhgMphS9sO2h8evp0.crl (hash: AFNszuo3sFGt46VidvBijJQLDxzr/82oADZ5hfe85ds=)
2: yRj0-JrqV79cPXjvp_I6Tk4-pHw.roa (hash: +okuCuz4VxqxarcqgEvJy71EQKLDG02VSGbx1vFCjnk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 04:03:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:51:38:f5:50:63:8b:ff:f4:01:eb:15:89:d3:f6:44:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d68b6cfb720a7c92a180ca614bdb0eda1f1ebe9d
Validity
Not Before: May 7 04:03:58 2024 GMT
Not After : May 8 04:03:58 2024 GMT
Subject: CN=213afd6d32da0a07d94fbd5d19b23fbcbf55bdda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:40:a7:39:f0:ab:ee:1a:bf:13:8a:e4:b3:f6:
dc:5a:6d:1e:79:6f:3d:9d:74:6f:2c:4c:04:45:93:
e1:6a:a5:b7:86:72:8d:bc:ec:19:79:9b:89:3f:d4:
d5:04:cb:0a:7e:eb:a8:c4:13:c3:ce:4d:62:30:f8:
ec:77:98:8c:c9:2f:97:59:85:f6:42:af:d4:0f:db:
7c:b0:c3:6e:b9:e5:3d:65:a3:bf:df:17:0b:8a:66:
14:7b:02:cb:85:0e:3d:dc:f2:1f:f1:28:d1:ae:b7:
3b:34:b9:f8:00:cc:c7:f4:22:57:f4:0c:a1:73:49:
85:86:ca:27:e4:eb:96:db:53:77:b2:d2:32:d5:0f:
00:0e:ac:62:b1:4d:64:6d:9f:6c:a2:98:0f:42:57:
1f:4b:5e:5a:d3:94:d6:1e:55:6d:67:62:01:4f:ac:
03:9a:2a:29:e0:f0:e4:db:89:91:83:f1:2d:60:42:
7a:3a:07:8a:0a:6d:aa:ea:da:59:a9:88:c4:2c:96:
71:af:a9:51:e8:98:53:34:7a:41:18:c3:fa:92:a0:
a7:39:b8:8d:63:8f:b3:48:59:6a:09:ba:53:c0:61:
5b:24:de:c6:41:ff:df:ec:50:cb:e3:ec:ee:49:8d:
55:07:6a:de:da:70:6c:7c:27:64:f6:3b:da:6c:2f:
1b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:3A:FD:6D:32:DA:0A:07:D9:4F:BD:5D:19:B2:3F:BC:BF:55:BD:DA
X509v3 Authority Key Identifier:
keyid:D6:8B:6C:FB:72:0A:7C:92:A1:80:CA:61:4B:DB:0E:DA:1F:1E:BE:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:a0:0c:02:f9:04:6b:04:95:8e:1d:77:17:3b:2f:19:d1:87:
c8:11:be:7c:1a:c5:be:b1:7e:37:47:dd:c7:4d:9e:88:61:a8:
ce:1e:2e:c1:78:63:17:23:c6:3a:de:58:ba:09:72:d9:30:b9:
4d:e8:31:de:f1:69:6d:4f:3c:81:b8:fa:85:49:52:08:74:67:
98:23:20:11:ca:77:7e:c6:9a:cd:10:9c:45:14:26:af:83:82:
ca:d2:54:87:2b:e6:64:ad:86:7b:79:13:2c:90:a0:03:ae:93:
aa:63:0e:d2:1f:e7:7c:d0:f4:69:31:3d:23:a5:13:b8:fd:90:
6d:86:e7:0b:e6:92:fd:c4:9b:7c:08:20:76:5b:b4:d1:01:23:
ec:d5:67:21:9e:94:fa:a0:6a:c1:5f:65:f5:0e:34:22:d3:87:
37:38:db:4f:c5:27:f6:ab:b5:d2:81:cb:c0:3f:ae:ae:3d:79:
22:b0:d6:38:52:ef:92:24:4b:42:09:da:df:f6:65:02:7f:a2:
26:63:e6:12:f7:c5:fd:95:b3:5a:41:ab:1b:a2:bd:97:5b:6e:
58:17:0c:25:39:b9:cd:03:6d:b1:40:a0:be:76:e6:1a:6c:08:
48:89:6a:fb:5c:53:62:92:29:b8:11:fa:75:f3:44:59:4f:1e:
4e:6a:5d:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 10:09:43 2024 by rpki-client on console-fra.rpki-client.org