Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft
File: 3AOqmk_p1gxc-FOpJIIiafHMdFI.mft (raw, json)
Hash identifier: wrmDOOvLvhhzNQRKmz12S8XRu8OFRxUoRDcXnHBkoak=
Subject key identifier: D6:64:22:00:B9:D2:38:FF:15:B2:CA:D1:E9:44:94:C5:F4:7A:21:20
Authority key identifier: DC:03:AA:9A:4F:E9:D6:0C:5C:F8:53:A9:24:82:22:69:F1:CC:74:52
Certificate issuer: /CN=dc03aa9a4fe9d60c5cf853a924822269f1cc7452
Certificate serial: 018F20EEC97B566A3EAA63DCBE3FB00DF4F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AOqmk_p1gxc-FOpJIIiafHMdFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft
Manifest number: 06EE
Signing time: Sat 27 Apr 2024 19:01:10 +0000
Manifest this update: Sat 27 Apr 2024 19:01:10 +0000
Manifest next update: Sun 28 Apr 2024 19:01:10 +0000
Files and hashes: 1: 3AOqmk_p1gxc-FOpJIIiafHMdFI.crl (hash: Ln03FjAPzDnoREc79LMVK0gHJWFjx2DI3q8I5tPep/8=)
2: 4kFmoxNQppa9OLwzyebeonTMiC8.roa (hash: Va7gsbw0tb4LnDX/xJTnpmoQ1hgaZ1+HiQ7cNn7uJPg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AOqmk_p1gxc-FOpJIIiafHMdFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Apr 2024 11:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:20:ee:c9:7b:56:6a:3e:aa:63:dc:be:3f:b0:0d:f4:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc03aa9a4fe9d60c5cf853a924822269f1cc7452
Validity
Not Before: Apr 27 19:01:10 2024 GMT
Not After : Apr 28 19:01:10 2024 GMT
Subject: CN=d6642200b9d238ff15b2cad1e94494c5f47a2120
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:93:f6:ec:4b:55:c9:ff:64:f8:ec:78:81:41:
cd:33:d9:1a:30:a9:d1:41:07:f1:20:3f:88:55:c3:
46:45:bd:a7:bd:d2:78:28:3f:28:0f:6b:be:d4:c3:
b8:31:2f:85:e7:16:c9:b3:f4:f9:0f:59:13:89:70:
96:72:a6:35:7f:cb:9d:8f:f5:b5:79:15:df:bf:78:
ef:c8:96:6f:98:0e:91:ae:46:80:99:7e:72:b8:76:
96:72:f2:9c:ff:9e:a7:65:8b:95:16:7c:19:88:04:
af:e4:b4:20:58:55:0b:15:f4:40:68:a7:85:6a:55:
05:50:e8:b3:d7:ff:f0:47:5c:ea:21:dd:99:e0:ed:
78:7b:c0:e2:46:0b:a5:48:94:86:33:fb:32:8c:2f:
71:30:cd:22:98:4b:b9:85:7e:cb:f2:c4:ad:02:fd:
c5:f0:37:ec:72:83:b2:d2:46:86:23:90:b2:c2:74:
3f:4d:6b:03:f3:65:bc:ea:77:eb:6c:73:61:b2:aa:
30:b8:8d:22:f4:ce:7a:64:94:aa:6e:09:b1:89:6b:
6c:6c:2e:83:07:00:b2:b4:60:df:a2:23:d9:50:91:
fd:01:17:7e:e3:8d:44:49:28:06:b9:2e:50:89:b0:
9e:e5:f1:bc:55:b2:67:c9:e6:ab:e4:86:16:06:9a:
c9:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:64:22:00:B9:D2:38:FF:15:B2:CA:D1:E9:44:94:C5:F4:7A:21:20
X509v3 Authority Key Identifier:
keyid:DC:03:AA:9A:4F:E9:D6:0C:5C:F8:53:A9:24:82:22:69:F1:CC:74:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AOqmk_p1gxc-FOpJIIiafHMdFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:63:f8:1f:21:8d:2f:bb:b1:69:3a:72:f3:91:cb:a6:3f:62:
b3:1c:89:3b:1f:46:d1:2c:4d:fc:40:b7:31:4e:a2:cb:4b:13:
b8:93:88:58:3b:6a:70:f9:54:df:5a:ec:1c:fa:09:f3:69:e4:
29:31:ae:18:c2:a5:24:bb:c4:91:d3:79:f0:71:7a:a8:02:9a:
55:84:fd:31:d8:8e:e9:b0:b3:cd:74:26:f6:a5:ac:c5:cf:21:
ac:cc:45:e9:3d:d4:91:30:13:7a:2b:f5:3e:3e:b3:a6:c2:98:
9b:06:de:8f:89:fd:bc:4f:88:89:9c:d1:ac:1d:76:0c:af:63:
4a:3c:49:a1:bc:02:22:ea:b2:0e:95:c8:86:7e:30:c2:78:02:
f7:57:c5:6c:45:3d:5c:c0:a2:6f:f7:b0:c4:c2:0b:d3:df:8f:
ae:70:41:df:9d:94:0e:36:01:45:bf:b8:db:73:54:85:d6:24:
f0:75:82:9f:6c:e2:e7:29:84:a2:7c:63:29:9e:10:38:d9:82:
e0:3a:69:f9:8c:95:78:70:88:57:9d:41:34:4f:65:4e:4a:f3:
6e:5d:a6:da:ee:92:4e:70:e9:6b:0f:44:f5:16:b7:68:e2:a8:
ff:5e:d1:d7:dc:5e:c9:b2:8f:11:04:11:bc:77:41:64:51:7a:
96:92:05:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 20:30:28 2024 by rpki-client on console-ams.rpki-client.org