Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft
File: gCNZN6302riSXVgEWjNxgWyYBTE.mft (raw, json)
Hash identifier: GImUzi+sljXek3VxMdq3qh89htUSr2Uz9jPgxiowOQQ=
Subject key identifier: B4:5C:AA:9E:CF:68:AB:18:C9:AC:57:6D:8D:BA:F5:E8:61:C7:06:20
Authority key identifier: 80:23:59:37:AD:F4:DA:B8:92:5D:58:04:5A:33:71:81:6C:98:05:31
Certificate issuer: /CN=80235937adf4dab8925d58045a3371816c980531
Certificate serial: 018F874A7F2E8F9E96632A7F9B287573C7DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gCNZN6302riSXVgEWjNxgWyYBTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft
Manifest number: 035C
Signing time: Fri 17 May 2024 16:02:37 +0000
Manifest this update: Fri 17 May 2024 16:02:37 +0000
Manifest next update: Sat 18 May 2024 16:02:37 +0000
Files and hashes: 1: gCNZN6302riSXVgEWjNxgWyYBTE.crl (hash: uepxqpnZYM3fXRza5ylbOvXgJzJ3Fp3MzU8LPnekTlM=)
2: lj8LVt751eRyTmZHHGOfbsnpA84.roa (hash: w7F+TMRe+BYQ+TCt9Vr7tSQY0fM7RQbF/AlSUylDg9o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gCNZN6302riSXVgEWjNxgWyYBTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:7f:2e:8f:9e:96:63:2a:7f:9b:28:75:73:c7:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80235937adf4dab8925d58045a3371816c980531
Validity
Not Before: May 17 16:02:37 2024 GMT
Not After : May 18 16:02:37 2024 GMT
Subject: CN=b45caa9ecf68ab18c9ac576d8dbaf5e861c70620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:dc:5f:2f:d6:32:7c:f9:2d:c0:fe:38:1e:4b:
4f:47:73:d7:b0:91:9c:20:66:39:61:ac:67:61:2b:
4e:76:ff:5b:bc:5b:64:c1:0f:91:3d:b2:dd:c9:98:
73:54:3b:f7:e4:30:29:19:28:58:cc:0c:31:f7:94:
fb:7b:bb:39:b1:a1:a3:74:b8:23:77:e3:3b:f7:03:
f9:c4:6c:c8:b9:40:53:11:79:2e:a5:a4:0d:cf:d1:
cf:4a:19:cb:14:40:96:b0:e4:20:58:12:38:fc:35:
81:4a:f4:da:85:b2:53:71:9b:ed:75:97:e4:f7:90:
81:fd:ee:ac:18:6e:dd:60:06:2a:05:ba:06:b8:39:
a2:b2:f8:fe:f0:ac:dd:5a:ae:cd:4c:ce:3f:bd:ee:
2c:92:0d:79:01:f8:2b:f5:6c:65:7e:d6:9e:2f:8f:
0f:bf:1e:f0:ae:42:bd:45:b1:98:b2:69:e7:2b:5c:
80:67:dd:5a:cb:16:f9:30:7c:d2:b2:19:f2:18:79:
e1:0e:ec:b1:d2:a0:e8:66:34:81:76:bf:6a:03:07:
e5:f6:ce:e1:c3:8e:27:94:f5:b9:b8:50:51:b6:f3:
9e:56:87:86:f1:41:3a:5f:cd:b3:1f:cf:12:65:16:
88:3f:15:1f:48:06:6c:c9:e2:8e:84:80:59:e4:f1:
b2:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:5C:AA:9E:CF:68:AB:18:C9:AC:57:6D:8D:BA:F5:E8:61:C7:06:20
X509v3 Authority Key Identifier:
keyid:80:23:59:37:AD:F4:DA:B8:92:5D:58:04:5A:33:71:81:6C:98:05:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gCNZN6302riSXVgEWjNxgWyYBTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:85:e7:4b:13:5e:ea:c0:49:30:14:50:c6:08:c9:6f:f9:ec:
d7:a3:a8:59:76:32:72:fc:4c:d3:bf:49:c4:79:ba:92:bb:94:
30:ef:0c:de:6c:38:cc:50:08:48:19:b1:33:1b:b2:e5:64:ac:
a3:b6:14:2a:4f:84:a2:60:5b:f0:f1:bd:9d:d8:0d:13:29:52:
3f:c3:38:b2:18:14:63:d2:eb:4c:84:e0:5c:ff:be:36:94:88:
33:9e:3d:c4:84:42:3a:90:0b:5c:ae:c8:df:35:c6:6a:e1:b1:
84:27:c6:d5:c6:89:de:33:5c:3a:1b:83:8f:d2:4d:8b:b4:1b:
9f:11:d8:e6:28:d4:55:da:c0:c5:73:60:6a:85:7b:cb:ba:1c:
e2:7d:43:c6:15:a3:35:0f:a5:55:8e:26:0e:e0:62:df:f4:f2:
52:d2:88:f5:c0:9b:22:08:37:49:68:fb:ae:27:c6:6d:52:ef:
15:a5:90:da:84:fc:67:aa:9a:72:b8:bb:5c:ad:95:a8:6f:7e:
c0:21:15:17:45:18:3a:e4:35:18:ff:a7:7c:0d:32:95:95:9e:
1c:61:08:17:74:d3:12:fa:d0:a6:48:f1:57:db:ef:ad:9a:21:
c0:2c:7a:7a:07:ae:aa:3d:30:2a:a0:eb:0a:ba:59:97:4f:1d:
9c:f9:44:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 23:56:59 2024 by rpki-client on console-ams.rpki-client.org