Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.mft
File: TAAG4FiW9v-zAWHnyN2i-a0FtWE.mft (raw, json)
Hash identifier: nSakBxb+Lu1Ut82NT96RuSTFn39WlcXX/skDGpdw7+8=
Subject key identifier: 41:53:BF:7C:F5:00:EC:45:58:3A:FA:34:8C:F1:AB:6C:E8:BB:E2:6A
Authority key identifier: 4C:00:06:E0:58:96:F6:FF:B3:01:61:E7:C8:DD:A2:F9:AD:05:B5:61
Certificate issuer: /CN=4c0006e05896f6ffb30161e7c8dda2f9ad05b561
Certificate serial: 018F7BB275F510E37DC16F73E9A5C7E8122D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TAAG4FiW9v-zAWHnyN2i-a0FtWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.mft
Manifest number: 10CD
Signing time: Wed 15 May 2024 10:00:44 +0000
Manifest this update: Wed 15 May 2024 10:00:44 +0000
Manifest next update: Thu 16 May 2024 10:00:44 +0000
Files and hashes: 1: TAAG4FiW9v-zAWHnyN2i-a0FtWE.crl (hash: M1fBD8vOF6VqtKm1idn8pF3tg9k2MnkV9a+7ZIJ4EsQ=)
2: kDbOIUdibCBeatS_fI0vXSFdc9M.roa (hash: XpezS0S7M/+85L/bZyL8KTDm5MpI3Rp4A4M4rzDVq04=)
3: x7G3_EedMag96ih44LzaGzQiIXA.roa (hash: 4M93Q/AO/Zond7mH/1XhwlY2MInfgCW17LkqVTCTkWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/TAAG4FiW9v-zAWHnyN2i-a0FtWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 16 May 2024 10:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7b:b2:75:f5:10:e3:7d:c1:6f:73:e9:a5:c7:e8:12:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c0006e05896f6ffb30161e7c8dda2f9ad05b561
Validity
Not Before: May 15 10:00:44 2024 GMT
Not After : May 16 10:00:44 2024 GMT
Subject: CN=4153bf7cf500ec45583afa348cf1ab6ce8bbe26a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:41:4e:32:a2:0b:42:ac:0c:61:9b:ae:77:9a:
04:90:38:a4:ba:0f:7d:7c:af:81:a7:e0:f1:46:a1:
34:bd:92:27:e2:49:54:b0:bc:3a:9d:4a:78:97:9d:
b1:ab:3f:4b:58:02:9b:80:50:92:66:7d:59:04:b4:
bb:74:3f:99:5e:7b:3d:ac:ec:a7:9d:32:41:b6:5c:
55:92:f8:f4:9d:89:c9:c8:de:bb:1c:d1:47:5d:b0:
94:fc:d2:73:82:99:7a:d0:06:25:db:cd:d2:eb:91:
ce:57:c6:e2:19:84:7e:fc:12:b5:4b:60:bc:9b:8b:
7f:89:72:0a:20:67:42:ec:20:d8:98:a7:23:09:d3:
19:89:f9:5c:83:fb:9b:7c:8f:d7:35:3c:9a:bf:47:
00:82:70:51:c4:16:60:d8:66:58:84:40:bf:cd:12:
0d:77:2a:b3:e5:42:2f:25:8f:f7:c6:94:2b:d5:ff:
e9:ef:22:b4:11:21:73:7f:18:be:6e:6e:97:f0:56:
d2:90:40:40:31:c7:f9:6a:f9:fe:ee:08:19:5b:fb:
32:19:89:fe:c5:a2:fa:18:04:34:ba:cd:dc:32:70:
57:28:7e:35:bc:bd:08:ac:4e:f2:e8:6c:a3:50:93:
62:67:7f:ab:d4:20:71:63:3e:64:43:9c:61:78:db:
bd:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:53:BF:7C:F5:00:EC:45:58:3A:FA:34:8C:F1:AB:6C:E8:BB:E2:6A
X509v3 Authority Key Identifier:
keyid:4C:00:06:E0:58:96:F6:FF:B3:01:61:E7:C8:DD:A2:F9:AD:05:B5:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TAAG4FiW9v-zAWHnyN2i-a0FtWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:40:5a:8c:40:8f:e8:fb:2b:03:a6:0e:0e:ef:4f:38:53:81:
6f:05:66:be:9e:c9:1f:1a:2d:7d:f1:fa:35:51:e6:c0:25:2b:
65:25:3b:25:4c:8b:db:60:70:ee:1f:42:b2:45:16:e2:56:6b:
f2:f5:c1:20:17:50:cd:5b:b9:3c:c3:d6:38:25:76:92:05:9b:
2d:fa:de:93:58:85:cb:2a:59:c8:24:dc:9c:0f:ec:a2:6d:39:
0f:2c:ad:88:1b:62:cb:47:7f:12:5e:63:ef:a3:c7:f3:df:63:
27:22:dc:9a:58:71:74:5c:3e:cb:de:97:ef:02:d2:8a:f0:31:
e3:ee:f2:64:03:b4:65:9e:76:05:b0:65:0c:1b:ab:ea:04:ff:
fb:ea:f1:d5:8f:f8:35:1a:3c:67:f7:06:f5:54:3f:51:14:81:
c3:0c:ae:4b:9d:c7:f9:83:82:c2:55:db:55:85:44:30:12:c8:
19:42:d6:56:4a:78:25:be:87:ed:2d:14:d9:33:d7:c2:9b:f9:
80:1f:88:78:15:52:72:bf:b9:12:31:88:75:56:4d:3a:3c:b2:
69:68:09:08:d6:7f:8e:e8:15:f5:02:0e:30:fc:e0:04:b8:ff:
7a:69:3c:ae:8f:39:ac:d2:f5:ec:26:2a:1d:80:e6:21:39:9e:
bd:8f:88:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 18:16:14 2024 by rpki-client on console-fra.rpki-client.org