Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
File: DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft (raw, json)
Hash identifier: YK3v/x6tqcUH1OFsdkksPS1wSUgtQWEBVorQZ+Dmm6U=
Subject key identifier: FA:F7:EF:B2:79:07:2F:63:99:BC:03:FA:7F:3F:0A:D6:D9:B1:45:E0
Authority key identifier: 0D:33:3F:72:D9:E2:94:54:38:25:BE:63:72:9F:80:34:A4:51:70:90
Certificate issuer: /CN=0d333f72d9e294543825be63729f8034a4517090
Certificate serial: 018F32F4703E0EA76DA688B511F48EC9F845
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
Manifest number: 0541
Signing time: Wed 01 May 2024 07:00:31 +0000
Manifest this update: Wed 01 May 2024 07:00:31 +0000
Manifest next update: Thu 02 May 2024 07:00:31 +0000
Files and hashes: 1: DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl (hash: 469wBpjep6Ods9tg61A4oG7FxVHMye2X/jxRRrisF4s=)
2: otoVcUDqll5tnl92NXJKAp2DKWM.roa (hash: XnKJsPFucKxHtw9U4ykYaZcRp9VLHLJ87UoP2vYZPS4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 07:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:32:f4:70:3e:0e:a7:6d:a6:88:b5:11:f4:8e:c9:f8:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d333f72d9e294543825be63729f8034a4517090
Validity
Not Before: May 1 07:00:31 2024 GMT
Not After : May 2 07:00:31 2024 GMT
Subject: CN=faf7efb279072f6399bc03fa7f3f0ad6d9b145e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:60:35:99:4e:23:b6:63:53:fd:5f:e1:49:0d:
08:f2:57:22:86:13:af:4c:05:8c:82:9c:e7:18:f7:
7b:16:b1:aa:58:1b:d2:95:87:b5:4e:ed:be:f5:30:
8c:75:6e:b6:93:cb:2e:39:14:b7:5a:0a:d9:85:c5:
d4:40:ff:2d:7f:f9:25:dd:6f:dd:dc:03:a9:73:99:
88:05:dc:d0:98:e2:82:98:ec:85:87:7d:f7:b6:8f:
0d:1b:07:72:90:15:bf:fd:9e:0b:56:70:11:93:f4:
f0:f6:3c:f7:9a:c5:82:dd:8c:5d:c4:8d:10:90:d2:
5c:c2:3e:40:d3:60:84:30:45:df:09:f6:8c:0d:c6:
29:61:63:6e:8b:a2:63:af:f3:d9:1a:8c:bc:27:ed:
9a:8c:24:69:3b:56:95:4d:cf:cf:97:87:3e:49:af:
0b:f2:4d:b0:4d:bb:11:d2:6f:a2:d5:f8:9b:2f:2c:
da:3e:2b:a9:b1:ff:23:0f:d0:c1:15:b3:f8:91:8a:
40:10:e9:48:e8:bc:a4:39:cd:0f:c9:71:8b:37:d1:
78:8e:da:2d:29:13:7b:61:c2:49:43:b0:1a:29:ce:
ce:aa:bf:ed:4e:04:cd:a9:3e:a6:0c:46:dd:d4:2e:
04:f8:77:e8:e8:57:1d:fb:49:2b:33:38:c4:2b:3f:
43:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:F7:EF:B2:79:07:2F:63:99:BC:03:FA:7F:3F:0A:D6:D9:B1:45:E0
X509v3 Authority Key Identifier:
keyid:0D:33:3F:72:D9:E2:94:54:38:25:BE:63:72:9F:80:34:A4:51:70:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:a3:00:36:0d:ea:91:3c:32:da:24:d6:ea:f3:09:34:ab:f8:
49:be:94:1a:1b:81:a0:f7:b4:d5:65:58:dc:8b:f2:75:e3:47:
07:63:ed:fe:12:d4:70:51:d6:6f:ac:94:9b:2e:dc:03:a5:88:
99:5b:94:9b:3c:09:9b:80:66:74:70:6f:65:62:d8:2d:94:ec:
24:18:74:6e:9b:71:36:f8:7f:cb:8a:02:46:64:90:71:b3:79:
82:d5:9a:db:6a:59:f5:09:e5:60:72:e4:68:b5:3c:ec:a9:6a:
3e:d9:87:8e:76:83:07:54:94:44:2e:df:2c:60:be:d9:bc:87:
15:c7:a3:42:93:61:d1:65:9c:62:26:03:e3:ec:21:41:ff:90:
b7:bb:52:ba:d7:8e:24:d0:56:60:f1:0d:d5:56:19:a8:2a:ab:
1e:00:89:63:0b:64:23:fd:0f:8f:29:16:c1:74:83:a2:27:6c:
5b:10:f4:37:21:50:b3:d8:6f:d6:6a:10:8f:cb:78:ee:6b:f2:
e7:1c:b8:0a:31:02:36:b1:3b:e9:be:7a:99:4c:77:4e:e2:a5:
32:7e:f6:b2:fe:31:f8:8c:87:34:93:f7:7a:71:d4:6d:bc:25:
cd:49:5a:e7:92:b5:38:22:d1:c9:74:a4:84:d8:32:a5:12:7e:
1f:7a:9f:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 16:18:36 2024 by rpki-client on console-ams.rpki-client.org