Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/a2fe68-761d-4e6c-9dcd-594c1acd9daf/1/P-XZqjR4a6oW1Fa9857K-12XMPg.mft
File: P-XZqjR4a6oW1Fa9857K-12XMPg.mft (raw, json)
Hash identifier: hxMc6KbCMbY9jMdCna70nNjozbV+qPKVIfQsYHiXlvM=
Subject key identifier: 8E:7C:91:03:3B:14:E5:F5:A4:A3:B6:EB:07:23:D2:8F:86:95:A1:85
Authority key identifier: 3F:E5:D9:AA:34:78:6B:AA:16:D4:56:BD:F3:9E:CA:FB:5D:97:30:F8
Certificate issuer: /CN=3fe5d9aa34786baa16d456bdf39ecafb5d9730f8
Certificate serial: 018FDC41FFE9B49ABC71EA22D427A623BFA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-XZqjR4a6oW1Fa9857K-12XMPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/a2fe68-761d-4e6c-9dcd-594c1acd9daf/1/P-XZqjR4a6oW1Fa9857K-12XMPg.mft
Manifest number: 11A2
Signing time: Mon 03 Jun 2024 04:01:03 +0000
Manifest this update: Mon 03 Jun 2024 04:01:03 +0000
Manifest next update: Tue 04 Jun 2024 04:01:03 +0000
Files and hashes: 1: P-XZqjR4a6oW1Fa9857K-12XMPg.crl (hash: hl9XSHYp5NYi+PY0RgDtPMaUoGJoonc41eek61mzuPM=)
2: T5RTRdlsyKxw-dkPhgesI4422Sw.roa (hash: k10Z7HSk0cdZquKf1POAL7mEfa7RwaGHLLIUinifABU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/a2fe68-761d-4e6c-9dcd-594c1acd9daf/1/P-XZqjR4a6oW1Fa9857K-12XMPg.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/a2fe68-761d-4e6c-9dcd-594c1acd9daf/1/P-XZqjR4a6oW1Fa9857K-12XMPg.mft
rsync://rpki.ripe.net/repository/DEFAULT/P-XZqjR4a6oW1Fa9857K-12XMPg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Jun 2024 04:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:dc:41:ff:e9:b4:9a:bc:71:ea:22:d4:27:a6:23:bf:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fe5d9aa34786baa16d456bdf39ecafb5d9730f8
Validity
Not Before: Jun 3 04:01:03 2024 GMT
Not After : Jun 4 04:01:03 2024 GMT
Subject: CN=8e7c91033b14e5f5a4a3b6eb0723d28f8695a185
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:46:b1:7a:f4:99:8d:b6:bf:75:9b:d8:c0:c0:
b5:4f:8a:6e:5c:a1:5d:be:af:c3:94:d9:6d:95:b2:
cf:43:c3:10:9b:2b:c6:fa:15:6f:35:58:69:b6:69:
96:3c:ed:90:72:49:e9:2a:39:8c:1d:15:a7:6d:68:
b9:52:a1:7f:d2:cf:88:5d:a3:18:96:62:e4:5a:34:
00:22:1d:28:c1:8c:f5:88:b7:7d:5a:34:42:28:1d:
d6:5c:29:58:97:c9:f2:32:fd:6f:46:4d:1b:4e:fa:
ce:65:72:52:be:61:5b:fc:28:77:3e:3f:05:96:fc:
37:e4:0b:5b:2c:5f:d8:0f:fe:85:d2:52:8e:b5:b8:
d6:ba:35:4d:47:f9:a5:41:85:3b:f5:54:47:fe:89:
a3:58:db:1e:66:08:a3:39:d8:5d:49:a9:2c:9a:81:
44:db:04:16:97:10:f7:90:d4:1f:4e:bf:37:d9:6a:
fa:ea:ef:51:d6:0f:1f:36:3f:70:65:36:05:42:ef:
97:40:b8:1a:44:12:5b:f4:32:0d:f5:a7:32:49:22:
34:4f:15:1d:23:3d:e1:a3:d1:cd:ed:d9:47:1e:47:
38:3d:71:cc:9d:19:1c:ca:3a:b9:23:cf:46:5e:30:
85:ec:b3:c1:b0:0c:64:13:41:48:ca:34:ef:62:24:
2c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:7C:91:03:3B:14:E5:F5:A4:A3:B6:EB:07:23:D2:8F:86:95:A1:85
X509v3 Authority Key Identifier:
keyid:3F:E5:D9:AA:34:78:6B:AA:16:D4:56:BD:F3:9E:CA:FB:5D:97:30:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-XZqjR4a6oW1Fa9857K-12XMPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/a2fe68-761d-4e6c-9dcd-594c1acd9daf/1/P-XZqjR4a6oW1Fa9857K-12XMPg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/a2fe68-761d-4e6c-9dcd-594c1acd9daf/1/P-XZqjR4a6oW1Fa9857K-12XMPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:4f:62:fb:5c:8a:06:25:6e:55:30:13:71:e1:63:29:1d:2f:
61:ec:e4:af:ff:a2:77:5e:bf:ef:d5:2c:74:a7:16:f5:78:47:
b1:a5:cb:0e:de:21:c3:94:96:e1:89:1c:ab:db:bc:a2:48:c9:
71:a9:8e:d1:0e:41:da:2a:a3:de:2f:81:5a:f1:cc:5c:0c:25:
78:26:f9:fa:43:11:be:20:05:1f:81:a7:15:74:6e:fe:75:af:
40:8a:4b:4f:df:f8:c7:33:82:30:51:ff:e8:d9:b0:57:6d:75:
e0:14:0b:72:4d:96:fe:5f:68:51:ae:87:77:cd:7b:5f:df:43:
c3:ad:7a:a3:eb:14:47:b4:05:d4:af:a3:f1:98:8a:76:92:d6:
08:23:39:bc:b3:b4:c4:c8:fb:0f:41:2a:ff:5a:ab:a2:1c:02:
41:a1:a7:25:89:46:57:cb:d6:8d:a3:31:30:68:60:7c:98:fc:
cd:29:aa:f6:70:f7:7e:d9:e0:bf:45:3e:f5:a4:e9:6f:20:8f:
35:19:93:71:82:e5:e4:5d:51:cc:27:a3:c2:41:c6:00:0b:4c:
a8:d7:5f:f3:e1:e6:1c:93:f3:f9:be:8d:fd:13:c8:c1:d2:c1:
72:ed:8b:3e:a9:0b:b1:d1:07:55:32:dd:82:8c:d5:bd:2c:83:
ec:c9:c6:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 3 10:33:31 2024 by rpki-client on console-ams.rpki-client.org