Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.mft
File: 4tNxxKeqqFX4zDsa6oAilCCoDyA.mft (raw, json)
Hash identifier: d2K2Nzh/qNOZJQAWf33t2TnEftrlwLfBvJkHi2++ZpQ=
Subject key identifier: 4D:F1:BE:8C:CC:31:6B:83:1E:13:79:EA:3E:EE:50:CB:0D:13:72:10
Authority key identifier: E2:D3:71:C4:A7:AA:A8:55:F8:CC:3B:1A:EA:80:22:94:20:A8:0F:20
Certificate issuer: /CN=e2d371c4a7aaa855f8cc3b1aea80229420a80f20
Certificate serial: 018F5392B7BE0C24C9EE90CA3CA0A23F9C90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tNxxKeqqFX4zDsa6oAilCCoDyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.mft
Manifest number: 115E
Signing time: Tue 07 May 2024 15:01:15 +0000
Manifest this update: Tue 07 May 2024 15:01:15 +0000
Manifest next update: Wed 08 May 2024 15:01:15 +0000
Files and hashes: 1: 4tNxxKeqqFX4zDsa6oAilCCoDyA.crl (hash: WIlrWkxBmPjuCfcCbSaMCwSCkbs0K57Ro2aCLJI/SmA=)
2: xywUy-j1hDs4WdVtiz4vZdriHlw.roa (hash: srJM4D0xoaoHeJWC1iKVMbBfIKClDiI9mjsfqm3Rl00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4tNxxKeqqFX4zDsa6oAilCCoDyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:53:92:b7:be:0c:24:c9:ee:90:ca:3c:a0:a2:3f:9c:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d371c4a7aaa855f8cc3b1aea80229420a80f20
Validity
Not Before: May 7 15:01:15 2024 GMT
Not After : May 8 15:01:15 2024 GMT
Subject: CN=4df1be8ccc316b831e1379ea3eee50cb0d137210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e4:72:2b:75:5f:b9:30:dc:e9:56:0b:3e:dc:
61:5b:28:13:bb:24:f1:6b:dc:70:83:c0:95:2e:83:
2e:ab:b6:37:6a:f7:1f:cf:f4:d1:4b:11:53:e3:3b:
31:de:6d:b2:1d:00:e6:54:e4:28:35:89:c5:5c:f1:
d6:95:e8:e1:d6:c8:7e:39:c1:38:1c:cb:8d:aa:82:
a1:2d:48:1f:9d:1f:ca:00:a8:20:ea:37:50:4b:95:
09:89:4f:30:b5:aa:c0:e3:13:e8:2c:e9:ba:4c:18:
ae:4a:c5:77:7e:3e:8b:8c:e5:88:1e:82:ca:33:02:
48:e8:90:fd:7c:0d:10:ce:fc:dd:df:93:1e:29:a5:
41:f2:64:0b:4e:fc:09:11:9f:03:66:eb:1e:27:83:
0a:15:1d:6d:6b:34:74:97:67:8c:0c:bd:c8:21:a7:
28:25:16:0a:86:b4:ee:3e:89:13:1d:d8:ff:6b:56:
4e:06:5d:dc:1e:2e:5a:1a:c4:ba:9e:76:2a:c2:d7:
34:53:32:ce:11:c7:8a:3a:03:89:ef:04:8b:02:c2:
33:54:47:46:d7:7f:23:1f:ed:74:c1:7b:55:e6:10:
e0:68:e7:ec:df:cd:c6:0a:f1:6d:7e:b3:cc:7c:63:
0a:a1:86:e6:22:a5:ac:c1:a3:6b:4c:5e:4e:d7:5c:
13:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:F1:BE:8C:CC:31:6B:83:1E:13:79:EA:3E:EE:50:CB:0D:13:72:10
X509v3 Authority Key Identifier:
keyid:E2:D3:71:C4:A7:AA:A8:55:F8:CC:3B:1A:EA:80:22:94:20:A8:0F:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tNxxKeqqFX4zDsa6oAilCCoDyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:dc:b7:15:f3:36:2d:8b:1f:aa:61:77:19:38:db:d8:e9:54:
d7:f5:5b:03:52:6f:27:70:8d:6f:3b:47:53:ad:b9:0d:f0:fb:
a2:b1:c4:09:c8:8e:cd:c3:4a:93:65:fb:1d:25:dd:f5:74:7a:
1a:3d:d6:0c:77:40:f2:db:4f:09:20:d8:63:7d:9f:52:d3:fe:
40:08:a0:ec:e8:3c:f0:b4:c8:f1:1b:93:e3:c9:55:48:64:61:
0e:2a:a0:c1:c8:e5:c6:d8:43:e4:3f:33:5e:33:a8:f1:c3:fa:
73:ad:d1:31:a3:03:c0:88:fd:3e:18:f2:53:7c:b8:75:f0:3d:
5b:7b:2d:a3:39:98:dd:8e:82:3c:96:37:39:f1:d1:54:9a:ef:
ef:00:4a:b5:7d:06:51:4b:d1:b9:a8:30:03:d0:3f:8d:74:39:
71:26:e0:83:ce:aa:c5:53:b3:70:ff:af:41:62:52:36:60:3d:
db:8a:14:09:7b:d4:e1:ef:37:31:8a:61:cd:c2:5b:34:2a:3c:
b5:e5:dc:75:c6:ec:2b:04:a6:9f:20:6e:31:3d:f1:2a:ed:bd:
ab:8a:ba:62:83:3c:b3:eb:5d:b1:89:0c:f8:f7:b7:f0:5e:83:
a8:67:cf:b9:f4:37:06:a6:23:6a:49:b7:de:1e:5d:a8:63:d4:
88:6f:d1:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 19:46:32 2024 by rpki-client on console-ams.rpki-client.org