Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
File: UsSOG7ZyzaaEZADov41taWg1178.mft (raw, json)
Hash identifier: P+iJ+m5SUjaMmB18kafvvHWA13w6KtvXXya1S+YwFCU=
Subject key identifier: C3:06:4B:9B:F8:CB:6A:8B:32:91:09:F3:DF:01:14:45:64:2A:B4:BC
Authority key identifier: 52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
Certificate issuer: /CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Certificate serial: 01906184696A615743A8B8B1493C11F46C1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
Manifest number: 041F
Signing time: Sat 29 Jun 2024 01:03:05 +0000
Manifest this update: Sat 29 Jun 2024 01:03:05 +0000
Manifest next update: Sun 30 Jun 2024 01:03:05 +0000
Files and hashes: 1: HWiuP6zDYjPF1mMjPRlxB4mqEJo.roa (hash: s2eXi+z5/8HTT0JJLrOMI8VgNdEi1unFI0vaBJusKAo=)
2: UsSOG7ZyzaaEZADov41taWg1178.crl (hash: VB98LXkp5w9XOx0xjl0PUkT7UtXOR+KKgr5QGx49iks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 30 Jun 2024 01:03:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:61:84:69:6a:61:57:43:a8:b8:b1:49:3c:11:f4:6c:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Validity
Not Before: Jun 29 01:03:05 2024 GMT
Not After : Jun 30 01:03:05 2024 GMT
Subject: CN=c3064b9bf8cb6a8b329109f3df011445642ab4bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f7:3d:44:43:05:a9:25:48:30:fc:38:ba:8e:
6f:40:b3:1b:3b:be:39:05:ff:f3:1d:d5:69:ef:aa:
e1:68:1d:eb:f5:05:a0:b1:d7:7c:cf:a2:e2:e7:df:
98:6f:58:90:d8:fc:12:c2:33:d7:08:13:9b:b5:55:
13:d4:94:a4:34:7f:0c:a3:74:cb:bb:46:5d:40:9b:
97:e1:2f:6b:05:0a:f0:05:81:69:75:d6:35:5d:ba:
48:19:c7:7c:c9:61:09:e5:29:8d:bf:6b:3d:77:42:
ac:a2:62:7c:c2:17:6d:ff:aa:9a:ae:10:ad:4d:e8:
55:ad:c0:ee:ec:00:d6:34:88:57:04:5c:36:60:b2:
99:e4:96:f8:bd:19:ac:10:26:3f:6b:58:f2:20:d2:
28:ce:ae:e2:60:05:93:4f:21:8a:02:a0:50:62:f3:
62:9a:eb:72:cb:f3:d8:6b:69:34:2c:67:62:85:ad:
0f:df:b9:32:75:6c:b1:12:82:81:20:93:2a:57:f2:
db:8b:19:50:47:39:05:9d:30:11:83:52:00:8d:17:
60:a0:8b:e0:c4:3d:5b:f7:3f:18:e9:76:fb:a4:de:
82:34:e3:a2:39:4e:1d:2b:41:95:81:a8:51:62:48:
f8:46:a2:0c:4e:14:ba:cd:07:e6:dd:64:f6:f4:73:
56:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:06:4B:9B:F8:CB:6A:8B:32:91:09:F3:DF:01:14:45:64:2A:B4:BC
X509v3 Authority Key Identifier:
keyid:52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:10:04:25:42:50:f2:27:a0:1a:14:f8:77:97:45:c2:bb:99:
d0:68:01:0c:6c:e9:97:00:e9:4f:e3:76:b7:df:a6:8f:6c:82:
f7:bf:4c:18:b7:a1:e1:1d:5c:fe:4a:e1:04:64:1a:c4:ae:33:
bf:82:ef:88:f9:2b:61:96:ee:f6:53:de:95:48:f3:f3:c7:08:
2d:55:fc:70:0d:1d:85:f6:03:fb:95:b4:5a:cd:0a:3e:a1:cd:
95:92:0e:23:b4:28:e3:6f:c8:14:0a:e0:ea:ac:30:0a:ca:8d:
5b:c7:55:7a:47:c4:7d:3e:c8:11:76:4a:17:18:60:21:e9:97:
c0:46:40:0c:78:ad:3c:98:d3:d7:78:f6:51:2b:9f:a4:44:ed:
ad:65:64:15:93:5e:b1:4b:d5:d8:98:cc:a9:70:20:65:d5:f5:
dc:a5:e2:2c:90:4a:51:79:49:71:91:0f:5f:5d:c6:f4:26:90:
7c:d5:d2:4c:cd:9d:92:12:12:97:80:8f:ce:a1:d4:7b:86:86:
14:b4:34:e0:0f:6d:b1:16:ad:cc:b4:bd:36:df:0b:a2:85:8b:
c7:df:88:fa:cf:10:22:ca:27:6e:ee:ea:94:1c:84:10:87:0a:
33:d4:88:6e:fa:0d:25:91:3e:27:e6:4f:26:e9:4d:ca:f4:4b:
55:c7:78:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 29 07:54:10 2024 by rpki-client on console-ams.rpki-client.org