Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft
File: CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft (raw, json)
Hash identifier: EenI6eZbUbSNcETkFhLrsNoyKhtDEspGbMbDVC5ti2o=
Subject key identifier: 80:BF:BE:D3:9E:CE:3F:10:2B:C9:F6:2A:B6:2D:DB:9D:B2:A3:6B:A6
Authority key identifier: 08:A5:C3:AB:A4:21:B7:8A:7D:5D:09:B7:5B:4C:E3:BE:52:73:CA:AC
Certificate issuer: /CN=08a5c3aba421b78a7d5d09b75b4ce3be5273caac
Certificate serial: 018F4D5B3F4953312927F25836EBD6FDA54C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft
Manifest number: 115E
Signing time: Mon 06 May 2024 10:02:56 +0000
Manifest this update: Mon 06 May 2024 10:02:56 +0000
Manifest next update: Tue 07 May 2024 10:02:56 +0000
Files and hashes: 1: CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl (hash: wJpnvYyl/MD2u3o3uusbUosefqiRLqcxaSC979nFxO4=)
2: biaZMBJdBOPx2FHlzf8QzqNWSW4.roa (hash: R6EFt2yzO/6cvZjM+UoPUQd1LR5tVrN3Lm9Q4bu+Nzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 10:02:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4d:5b:3f:49:53:31:29:27:f2:58:36:eb:d6:fd:a5:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a5c3aba421b78a7d5d09b75b4ce3be5273caac
Validity
Not Before: May 6 10:02:56 2024 GMT
Not After : May 7 10:02:56 2024 GMT
Subject: CN=80bfbed39ece3f102bc9f62ab62ddb9db2a36ba6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ce:4e:4d:9c:ee:e0:63:d4:3b:74:2d:7c:55:
43:3c:6d:c9:76:0f:c9:9a:25:a4:60:c7:66:94:dc:
81:a7:56:11:c8:23:f2:83:4d:c1:d0:fc:ea:c0:19:
e0:54:69:c4:27:4e:13:ef:8a:ca:0e:b1:62:df:60:
26:9f:1b:d9:d3:31:8b:c0:c3:cf:ad:a6:81:08:08:
29:12:4d:ca:99:8c:f6:d2:35:45:f2:c1:32:8f:e8:
f0:a3:11:e6:bf:d9:37:c0:99:13:cf:a8:40:2e:05:
96:66:f7:74:fd:c2:6f:1e:1e:e5:84:61:b6:8a:c1:
f7:da:b8:08:19:ed:11:b3:46:a1:43:1d:ab:e8:da:
2f:1f:4e:86:01:4e:00:bc:09:3c:cf:1b:b4:2b:7b:
7b:2f:3e:dd:77:2a:ea:4f:c7:c3:6d:c2:0d:4d:49:
30:81:84:0d:b9:79:1e:14:89:dc:d8:30:d4:bc:bd:
1b:57:da:0c:f9:a8:a1:44:66:05:41:36:70:ab:e0:
1c:f4:e0:28:86:1b:28:2b:02:9c:f2:b9:20:38:78:
d9:04:e4:0f:ff:4d:66:4d:28:ed:0a:4f:c0:91:c1:
b8:5d:0a:54:47:21:0d:9e:49:86:71:2d:29:d9:69:
e9:53:cf:79:75:c7:93:25:aa:0e:ae:31:45:1b:cf:
82:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:BF:BE:D3:9E:CE:3F:10:2B:C9:F6:2A:B6:2D:DB:9D:B2:A3:6B:A6
X509v3 Authority Key Identifier:
keyid:08:A5:C3:AB:A4:21:B7:8A:7D:5D:09:B7:5B:4C:E3:BE:52:73:CA:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:11:36:ea:87:65:52:35:0c:d7:92:b4:57:ff:62:67:59:09:
73:88:f4:5a:90:b1:ff:8f:a6:88:0c:01:0d:9f:87:f1:cc:be:
dd:f5:e2:ee:17:20:20:a4:c2:74:95:49:20:11:55:28:23:97:
68:90:3d:7f:d5:15:1c:c5:f4:71:bc:42:3b:93:a2:e7:23:4f:
2a:3d:2f:d0:87:c0:59:20:23:f5:e4:03:61:19:8f:b0:cb:a7:
24:ec:53:6d:8d:a3:f7:ee:f6:66:29:2e:44:33:75:ed:aa:31:
9f:c3:dd:c6:4d:8f:84:ee:63:99:aa:db:77:43:ab:b2:c6:b0:
9b:b1:e7:94:08:28:5d:64:9a:70:4c:91:bb:54:d6:3e:cf:b2:
ac:50:c8:fb:a9:27:3d:21:8b:ad:1d:fa:1a:03:3c:aa:60:d3:
c5:fe:1b:4e:4a:b1:ba:32:12:19:d2:cd:72:f4:76:a7:fa:a6:
06:f3:b2:a1:5f:75:c6:30:25:3d:b7:24:0f:c0:af:84:2b:bd:
b8:3b:c2:a1:11:79:49:3f:d8:01:78:ea:41:38:b9:b0:be:39:
89:c1:41:8d:07:d1:a9:d9:3a:82:dc:35:0a:c0:d5:f3:1f:40:
c7:95:45:9a:6b:3e:0c:73:01:b1:d7:29:40:0c:39:9c:d4:5e:
31:43:96:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 12:27:24 2024 by rpki-client on console-fra.rpki-client.org