Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
File: o4SlYxesgXmFG1cPDjp6oEToCKY.mft (raw, json)
Hash identifier: cUMg1buzNrhWPl6p3EyimTx6dvkujvuy2ptrzvgt/3A=
Subject key identifier: 75:CC:B5:38:72:26:BE:B4:2F:B2:2D:7A:D3:E1:F1:02:ED:8E:1F:AB
Authority key identifier: A3:84:A5:63:17:AC:81:79:85:1B:57:0F:0E:3A:7A:A0:44:E8:08:A6
Certificate issuer: /CN=a384a56317ac8179851b570f0e3a7aa044e808a6
Certificate serial: 0191FAECF57717BE869F4513FA8AC2866174
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
Manifest number: DD
Signing time: Mon 16 Sep 2024 13:01:58 +0000
Manifest this update: Mon 16 Sep 2024 13:01:58 +0000
Manifest next update: Tue 17 Sep 2024 13:01:58 +0000
Files and hashes: 1: HZ3AVmfBOPXsG7V7loSqKR7gzuo.roa (hash: GtqiW8D4tozMV/X5ZTVBz7Elv4E4UzfMRn2xRw83qiQ=)
2: o4SlYxesgXmFG1cPDjp6oEToCKY.crl (hash: ul34bb/c0gajhMFF53hcQ3Fsk++i5IitldEHx4RyKJ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 13:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fa:ec:f5:77:17:be:86:9f:45:13:fa:8a:c2:86:61:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a384a56317ac8179851b570f0e3a7aa044e808a6
Validity
Not Before: Sep 16 13:01:58 2024 GMT
Not After : Sep 17 13:01:58 2024 GMT
Subject: CN=75ccb5387226beb42fb22d7ad3e1f102ed8e1fab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:78:61:80:7c:9c:4f:2a:ff:57:45:48:3c:be:
3f:20:39:72:02:13:ab:8f:5f:2a:f3:70:32:2f:db:
14:d0:e9:56:02:ec:64:ca:e3:28:68:3b:79:97:9c:
b1:ff:16:1f:38:c0:a5:6e:63:bc:71:98:64:43:44:
be:92:1d:1d:24:19:71:84:ac:75:7a:b6:50:bb:67:
de:7a:0d:42:b4:a4:61:d5:7f:64:a7:05:19:95:0d:
da:37:f6:ac:bc:66:3e:17:b7:43:ae:5e:6d:68:34:
ae:0a:c9:9a:5c:92:cb:83:5b:7e:16:ce:51:5c:06:
16:4e:c8:57:ec:b0:cf:d0:e7:dd:57:4b:50:9d:ab:
60:c3:cf:8b:d8:6d:2b:5a:e5:8f:3d:da:98:48:58:
e9:f3:e4:c4:8a:f3:01:40:73:db:ed:04:85:21:b3:
58:53:38:ae:74:71:e6:89:d5:9d:92:d8:78:38:2d:
d0:ac:f2:15:81:6f:d7:9c:76:c5:a5:74:26:17:b4:
67:20:51:08:67:60:bc:96:b6:ad:6a:41:30:97:98:
0c:e2:d7:73:0f:3c:5c:6f:8d:3d:52:52:40:a5:1f:
3d:19:d0:45:fc:38:8b:b4:b4:28:7c:9c:a9:f0:5c:
ca:54:19:1a:67:27:e5:d7:f9:b4:cf:c0:69:8e:4c:
f7:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:CC:B5:38:72:26:BE:B4:2F:B2:2D:7A:D3:E1:F1:02:ED:8E:1F:AB
X509v3 Authority Key Identifier:
keyid:A3:84:A5:63:17:AC:81:79:85:1B:57:0F:0E:3A:7A:A0:44:E8:08:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:cd:58:b6:8f:09:2f:3c:c8:0a:f0:1a:fe:f6:15:38:67:4a:
41:d3:18:5e:4d:ac:52:d4:4d:0b:b7:1b:6f:0b:bc:51:27:f7:
f7:1a:60:a2:9e:1f:1a:55:9e:2f:c0:7b:cb:e9:cb:89:7e:a4:
a5:c9:a4:ce:27:1d:ab:ef:01:7c:8c:48:a9:28:00:2e:5b:2f:
76:f3:53:d5:0a:dc:03:b8:60:1e:73:ae:fd:a1:a7:7d:83:41:
48:de:c2:53:61:e8:7d:d2:6d:12:4c:ff:bd:ef:0a:66:92:69:
cc:f6:98:2a:33:16:81:35:a3:5a:5c:7b:ba:7a:a2:95:9b:e0:
0a:ab:55:5c:ad:8b:52:cd:24:e0:8e:25:90:a7:67:56:07:8b:
24:d4:2f:31:0f:b0:da:d3:4b:35:f0:13:3d:56:6b:71:77:fa:
09:69:31:bc:22:48:97:ca:00:ef:c5:c5:2a:de:c1:78:e8:07:
26:a5:15:a5:d1:f6:ac:44:2e:cb:ea:70:16:aa:a6:65:e8:c2:
2b:8f:b0:62:9b:07:74:f5:0a:03:c0:40:47:1b:01:63:55:fd:
47:2c:c9:1b:e4:60:1c:2b:36:11:cb:3d:ed:51:87:18:06:2d:
85:a0:7e:79:87:a4:59:7d:9b:ea:bb:d4:81:bb:84:7b:4b:ab:
0a:38:c6:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 18:17:31 2024 by rpki-client on console-ams.rpki-client.org