Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
File: 2okNBdXIi33m9bqkwdCF_nMB9dU.mft (raw, json)
Hash identifier: TiBioUGo6tXAdfeQQdJkSIi2l/TqolIcODPuobiV1TI=
Subject key identifier: EC:13:9A:CA:26:8C:23:BC:14:B3:AE:08:06:BE:14:BD:D3:1E:0C:A0
Authority key identifier: DA:89:0D:05:D5:C8:8B:7D:E6:F5:BA:A4:C1:D0:85:FE:73:01:F5:D5
Certificate issuer: /CN=da890d05d5c88b7de6f5baa4c1d085fe7301f5d5
Certificate serial: 018F429FB2A2B43DA17B9F97F08F5A74DF1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
Manifest number: 05AB
Signing time: Sat 04 May 2024 08:01:53 +0000
Manifest this update: Sat 04 May 2024 08:01:53 +0000
Manifest next update: Sun 05 May 2024 08:01:53 +0000
Files and hashes: 1: 2okNBdXIi33m9bqkwdCF_nMB9dU.crl (hash: Bt8BWZfmgcWreZ/ZJw74nuKoDAI9om0F46XuGuF+JPQ=)
2: vD0H6X3chERfPno0j5PdflSU_gc.roa (hash: dcY2W9Vyf68Gzt8Yw4qsFcK/yADPHS7kxzPqZIQbVkQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:42:9f:b2:a2:b4:3d:a1:7b:9f:97:f0:8f:5a:74:df:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da890d05d5c88b7de6f5baa4c1d085fe7301f5d5
Validity
Not Before: May 4 08:01:53 2024 GMT
Not After : May 5 08:01:53 2024 GMT
Subject: CN=ec139aca268c23bc14b3ae0806be14bdd31e0ca0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:a2:20:48:b2:99:77:36:46:49:da:9e:f6:92:
78:d5:97:05:a4:5a:5f:6f:8b:73:67:f6:ea:05:27:
0a:6d:a2:57:95:38:c8:59:de:da:07:7c:91:ff:eb:
7d:8e:fd:dc:d9:d4:e9:35:c3:5d:f8:11:50:a2:77:
51:82:58:59:ac:46:69:89:4f:54:7d:0d:cf:27:b5:
c0:13:8d:1b:8e:a7:08:a7:dc:5d:71:6c:6c:f1:ef:
1d:d5:06:19:0f:04:ab:be:3e:49:2e:a6:f1:3e:86:
66:76:d8:ed:e9:6b:4c:c7:6e:aa:f4:a4:00:aa:aa:
8d:bc:fc:82:21:2d:8e:6d:53:0d:08:90:ff:09:89:
66:63:36:90:6d:2f:f4:8b:a6:1b:38:58:b4:79:c5:
50:1b:0b:92:2a:ce:91:c2:fb:ca:2c:23:62:1d:8f:
d3:3c:11:22:0f:41:a5:ac:18:bf:fb:93:85:4a:75:
4b:5d:92:4c:97:fd:c4:fb:0c:de:f5:bc:ab:30:04:
f0:92:83:b9:ae:15:9d:4a:5e:9d:31:b9:5a:a0:33:
2f:81:5d:60:34:d0:bb:7b:a4:b6:a0:ad:23:03:01:
42:b2:76:b0:99:48:2c:0e:da:50:bf:8b:a8:c5:2a:
ba:a8:c7:52:01:54:2c:fd:a4:99:f8:33:89:3f:5b:
0c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:13:9A:CA:26:8C:23:BC:14:B3:AE:08:06:BE:14:BD:D3:1E:0C:A0
X509v3 Authority Key Identifier:
keyid:DA:89:0D:05:D5:C8:8B:7D:E6:F5:BA:A4:C1:D0:85:FE:73:01:F5:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:61:8f:22:d4:31:b2:eb:22:c6:81:ed:5c:d4:e3:85:1d:13:
6c:ee:f6:02:61:c1:40:f8:9a:9d:9a:85:e7:79:9a:2e:aa:10:
68:ff:51:aa:43:1b:39:d6:fb:5a:fb:17:b5:d1:b0:41:c9:f8:
f2:1b:da:88:87:e8:34:7a:e2:37:dc:7b:3f:a8:29:d6:89:f2:
94:33:29:03:bc:24:d8:d5:4c:c4:19:c6:0d:df:5c:58:64:3a:
cf:5e:27:f3:c5:38:2f:a3:93:e5:35:2b:cf:5c:6d:dd:13:08:
ef:be:29:52:30:54:e2:04:e8:eb:b3:f6:fd:cb:97:a0:b3:f8:
de:cb:b1:3d:cd:72:d6:f0:6b:65:fd:53:63:00:c1:5c:4c:8d:
85:4d:e3:fd:5a:d8:5d:be:6a:e2:de:6d:37:69:65:ae:bd:76:
f6:65:f5:4d:76:22:69:90:20:f8:8a:6a:5f:d7:30:96:10:c4:
fc:30:ab:e3:90:7a:03:fe:69:c5:ae:69:28:ca:a4:4f:a4:92:
8a:30:b4:02:80:d5:95:41:13:f9:07:60:b0:57:a6:73:6c:cb:
e0:65:46:62:46:30:2f:ee:75:9f:d4:0a:32:b1:41:00:41:df:
77:e2:b3:8c:fc:e8:60:47:73:17:1e:a6:fc:35:0b:73:d2:28:
43:5f:04:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 09:12:14 2024 by rpki-client on console-ams.rpki-client.org