Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/49b48e-c84b-4f99-923f-4586238305f1/1/sZ4bfoENZJKr24B_yN3oZ1vWvyw.mft
File: sZ4bfoENZJKr24B_yN3oZ1vWvyw.mft (raw, json)
Hash identifier: lfj3liqia0Y3EQxl2or+4guGWeGwjziMHDPlc54WK0k=
Subject key identifier: 87:FE:13:6B:E6:B4:86:28:CC:FA:07:46:F4:CA:B2:1E:F3:D5:9B:B8
Authority key identifier: B1:9E:1B:7E:81:0D:64:92:AB:DB:80:7F:C8:DD:E8:67:5B:D6:BF:2C
Certificate issuer: /CN=b19e1b7e810d6492abdb807fc8dde8675bd6bf2c
Certificate serial: 018FB1C5D184F55701439D9EA611108DFAAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sZ4bfoENZJKr24B_yN3oZ1vWvyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/49b48e-c84b-4f99-923f-4586238305f1/1/sZ4bfoENZJKr24B_yN3oZ1vWvyw.mft
Manifest number: 0BFA
Signing time: Sat 25 May 2024 22:01:22 +0000
Manifest this update: Sat 25 May 2024 22:01:22 +0000
Manifest next update: Sun 26 May 2024 22:01:22 +0000
Files and hashes: 1: Tonf_fDBilVE8CvCB3qX9-Fy9uA.roa (hash: /80jc99Ln+EdbXVfLU9xAVQy6JSX7woEZQ9TAfqpJDE=)
2: sZ4bfoENZJKr24B_yN3oZ1vWvyw.crl (hash: Roj6pafZUTY4SQcXjMn1XqAZQ+1Ur1+7uWyyGFo1CTA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/49b48e-c84b-4f99-923f-4586238305f1/1/sZ4bfoENZJKr24B_yN3oZ1vWvyw.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/49b48e-c84b-4f99-923f-4586238305f1/1/sZ4bfoENZJKr24B_yN3oZ1vWvyw.mft
rsync://rpki.ripe.net/repository/DEFAULT/sZ4bfoENZJKr24B_yN3oZ1vWvyw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 May 2024 22:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b1:c5:d1:84:f5:57:01:43:9d:9e:a6:11:10:8d:fa:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b19e1b7e810d6492abdb807fc8dde8675bd6bf2c
Validity
Not Before: May 25 22:01:22 2024 GMT
Not After : May 26 22:01:22 2024 GMT
Subject: CN=87fe136be6b48628ccfa0746f4cab21ef3d59bb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:26:e1:7c:20:ff:a6:e4:b4:02:d5:da:e0:1d:
9f:b8:a9:a5:01:68:e6:12:f5:13:31:04:53:a8:ce:
90:bd:1f:00:40:7b:cc:8c:e7:d3:d6:c0:4f:f2:aa:
69:e6:dc:eb:f5:0e:bb:df:1b:ba:d1:0c:d1:e1:f6:
8c:20:df:8f:72:dd:bc:9a:ec:81:31:bc:7d:86:2d:
3b:9d:4b:ca:85:1f:3e:75:47:64:b2:1d:f3:46:c8:
59:89:c5:e0:85:dc:60:f5:48:90:6a:70:7d:d1:14:
c2:0d:35:ae:b3:e1:dc:f1:e9:7b:1e:98:eb:8c:f3:
a9:c8:11:e5:13:9b:00:f3:39:d9:39:82:2c:93:6a:
67:bd:3b:cf:c0:ae:25:b4:94:30:7e:63:84:7d:b1:
ac:33:ad:dc:04:82:96:5d:78:96:94:ca:8a:3f:e1:
aa:c5:bd:29:29:6c:77:71:13:e1:a4:fc:01:32:9c:
ff:1c:84:97:66:8d:9a:03:af:d6:c4:76:03:48:c6:
df:09:93:29:47:ab:c0:6b:49:89:21:86:af:9d:fe:
f4:ec:3a:23:e2:7b:28:6d:ca:a5:ad:cc:70:81:63:
e5:20:80:2e:2b:d6:ad:4f:88:7c:4c:71:15:fc:28:
98:98:4b:ca:da:e7:9c:ce:bc:52:89:98:9d:17:83:
d4:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:FE:13:6B:E6:B4:86:28:CC:FA:07:46:F4:CA:B2:1E:F3:D5:9B:B8
X509v3 Authority Key Identifier:
keyid:B1:9E:1B:7E:81:0D:64:92:AB:DB:80:7F:C8:DD:E8:67:5B:D6:BF:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sZ4bfoENZJKr24B_yN3oZ1vWvyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/49b48e-c84b-4f99-923f-4586238305f1/1/sZ4bfoENZJKr24B_yN3oZ1vWvyw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/49b48e-c84b-4f99-923f-4586238305f1/1/sZ4bfoENZJKr24B_yN3oZ1vWvyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:9a:96:33:ce:d4:7e:79:4e:5b:b0:d3:bc:fb:e3:9c:a0:8c:
46:21:43:68:96:71:68:db:a1:a7:36:f8:89:73:51:ae:d6:3a:
2d:90:f7:37:10:83:07:ae:96:62:01:e5:85:45:d4:2e:dc:c9:
98:01:84:6f:8e:bb:24:b8:fe:7c:8b:70:47:93:61:d9:95:e4:
31:56:a1:8a:ff:06:7a:6c:4e:78:c1:42:4e:3c:5e:50:e4:b7:
60:8a:d0:4d:9c:f5:2a:c4:d9:2c:6d:32:0b:e5:6d:7d:cb:7c:
7d:c1:be:8c:ad:76:7a:2c:de:0b:5c:01:9f:77:8d:11:84:c7:
71:f3:71:a2:b7:4f:5a:73:5a:ac:3e:c7:c6:35:86:d0:ae:08:
c0:73:d4:e0:f8:89:a7:a2:ac:e2:3e:0f:08:fa:27:d9:d6:a3:
c3:9a:d4:a7:11:92:06:18:c6:c3:ca:b2:69:01:7d:1d:d1:b9:
20:7c:62:3f:61:89:2b:f7:4e:ee:0c:31:2a:ba:f7:fa:e8:1b:
99:b4:4b:ff:01:0a:87:da:46:8a:d6:0c:d6:0e:41:d5:60:f1:
24:55:ca:dd:31:0c:56:01:c9:42:c2:e9:41:4e:26:cf:6c:6b:
9c:ec:0b:fc:a3:59:a3:11:0c:8e:ae:6b:4b:1d:ba:29:26:8f:
b5:6c:cd:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 03:51:47 2024 by rpki-client on console-fra.rpki-client.org