Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
File: DkOg3wWaUlGkALWh8TIboA0xINI.mft (raw, json)
Hash identifier: snhn6UGFxb7fEr+rIjLCU5tZFRofvgVythdOls1pc0U=
Subject key identifier: BC:8C:A2:6E:00:94:E1:CA:64:CC:6A:F2:81:B7:D3:2C:03:A6:17:5A
Authority key identifier: 0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2
Certificate issuer: /CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2
Certificate serial: 018F3A0A5D7195B6991D6474D92FEF164284
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
Manifest number: 1151
Signing time: Thu 02 May 2024 16:01:48 +0000
Manifest this update: Thu 02 May 2024 16:01:48 +0000
Manifest next update: Fri 03 May 2024 16:01:48 +0000
Files and hashes: 1: DkOg3wWaUlGkALWh8TIboA0xINI.crl (hash: xuOFMkbqRvXgcvvE6aNVoeOD4GmlZhYkuZPm+vWPQ6Y=)
2: jimYl-y2nUcHGZx440TRGeUv6KA.roa (hash: 2UWHTOh5Q15HlVZ7S0xzfqQOG98YgtpBHNU8lDgke0M=)
3: kKAFQr0lqBMD8HlYZRHVnch9ge4.roa (hash: US2ajpoOokHwIiJAHpFU2VhH4QnCdgcFzRAfbUasG4Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 16:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3a:0a:5d:71:95:b6:99:1d:64:74:d9:2f:ef:16:42:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2
Validity
Not Before: May 2 16:01:48 2024 GMT
Not After : May 3 16:01:48 2024 GMT
Subject: CN=bc8ca26e0094e1ca64cc6af281b7d32c03a6175a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ac:1d:31:54:6d:cf:72:2b:2c:0e:e5:14:11:
98:b7:a3:f0:43:90:de:54:7b:e3:88:53:75:36:d7:
6b:6a:89:b4:7c:09:18:b8:73:e2:b0:8d:12:6d:67:
22:dd:34:7f:9d:79:4c:b5:a8:ce:1f:71:5b:f0:5c:
c8:23:7d:ba:43:76:ab:96:7c:f3:d8:d5:03:5e:95:
37:c7:62:02:ed:ff:37:af:0e:a1:9d:53:e7:bb:58:
a0:5f:c9:74:53:d6:83:1e:4a:5c:1d:06:4c:19:d0:
30:8d:64:af:34:24:b7:e1:9f:4e:79:81:00:c7:97:
82:2a:d9:c1:18:fa:aa:66:55:6a:be:35:2b:4b:68:
e1:0d:ce:6a:a8:9b:23:53:7a:74:64:09:59:fe:59:
e9:21:bb:10:80:2a:4f:3c:13:36:b8:58:97:a3:7c:
64:9c:35:ba:75:9c:17:f1:23:50:f8:da:07:a6:30:
48:ec:92:f6:c9:e8:8f:9e:4a:33:07:5f:a1:a5:a1:
97:22:d5:8d:da:b0:48:fe:96:f0:e1:a1:e7:4c:10:
84:3b:53:34:3e:1d:c0:1b:3a:f3:d0:4e:80:e5:ab:
b2:2a:b6:c9:14:61:62:06:ca:e4:3b:85:87:03:45:
0f:4e:ad:85:3a:d4:f9:6b:c8:2b:ed:07:eb:da:56:
6b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:8C:A2:6E:00:94:E1:CA:64:CC:6A:F2:81:B7:D3:2C:03:A6:17:5A
X509v3 Authority Key Identifier:
keyid:0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:f9:a6:88:be:b7:33:28:36:32:b2:a9:f0:ab:d1:13:4e:5c:
41:ed:f4:6d:d2:d3:c1:69:df:98:81:12:6b:e1:0f:45:a5:9a:
eb:51:86:10:42:93:5b:7e:48:53:fb:21:ca:c2:70:eb:51:af:
2c:3a:4e:1c:38:b8:1c:eb:32:d6:1f:5d:07:f5:61:3f:90:36:
68:1c:6e:a2:9f:64:3b:52:48:f1:ff:f8:7c:bb:51:e2:e6:9f:
8a:7c:e9:00:19:fc:33:4a:e6:d1:49:83:16:12:bb:d3:59:42:
e3:1f:8a:ac:10:d4:22:88:bf:ec:42:72:48:60:81:8e:5c:35:
f0:24:1c:11:5c:a0:9b:68:fb:a1:cd:ba:53:e6:7c:69:72:b7:
4e:d2:07:01:4a:88:21:55:26:f6:d5:56:28:ff:94:65:c4:06:
cc:3c:0a:ea:6f:23:8d:5e:ca:4d:8e:a3:3f:9d:11:a1:ff:3a:
30:b4:57:c3:7f:0c:e5:be:49:78:f6:82:c8:a1:ea:cc:ca:3b:
34:28:24:dc:6f:e7:42:8b:a0:1a:6b:52:3e:57:d5:84:a8:47:
29:fc:59:44:7a:5b:c6:b0:df:60:36:62:cd:d0:34:ec:69:bf:
01:52:dd:33:19:ed:73:b0:b0:d0:e3:87:a6:75:a0:ab:3c:17:
a1:07:96:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 18:30:27 2024 by rpki-client on console-fra.rpki-client.org