Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
File: AIVd2JclbobaPL5plOlM4ulpryY.mft (raw, json)
Hash identifier: X2JRn5x3TFIkV7Brkc5gbRRi7qcx2mmeWNDjW6b6AJ4=
Subject key identifier: D4:9B:F0:82:12:6E:F8:4F:2F:21:5E:7A:61:C0:31:60:2F:56:64:E3
Authority key identifier: 00:85:5D:D8:97:25:6E:86:DA:3C:BE:69:94:E9:4C:E2:E9:69:AF:26
Certificate issuer: /CN=00855dd897256e86da3cbe6994e94ce2e969af26
Certificate serial: 018F3FD6A5EA0F1E9111DF9A950FFB00467D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
Manifest number: 1150
Signing time: Fri 03 May 2024 19:03:02 +0000
Manifest this update: Fri 03 May 2024 19:03:02 +0000
Manifest next update: Sat 04 May 2024 19:03:02 +0000
Files and hashes: 1: AIVd2JclbobaPL5plOlM4ulpryY.crl (hash: vRTyHb+HQ628RWdhCqb1RV38wIJzmUdI4t6KsCToId0=)
2: D2IlFf4s8VcS2i9pgTYbU-XvVKk.roa (hash: rDlz741tQQM9X2bOardgbfhn+LzUVzj7ZAPO2SRIdNU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3f:d6:a5:ea:0f:1e:91:11:df:9a:95:0f:fb:00:46:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00855dd897256e86da3cbe6994e94ce2e969af26
Validity
Not Before: May 3 19:03:02 2024 GMT
Not After : May 4 19:03:02 2024 GMT
Subject: CN=d49bf082126ef84f2f215e7a61c031602f5664e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b5:38:30:0a:27:ab:c2:50:f8:b6:51:dd:7c:
3f:1f:c6:3c:64:f9:b1:96:83:f5:6c:af:d5:f9:10:
10:2c:7d:e3:c3:6b:9d:0b:d9:f9:02:17:32:c8:1e:
ff:30:05:7e:3a:2a:63:d4:17:71:27:01:43:63:17:
c1:01:45:26:2f:8c:ae:b3:d5:41:7b:3a:63:6d:4f:
83:42:29:b2:66:f8:63:83:a6:57:c2:c5:49:37:8e:
df:5d:5b:5d:74:31:eb:28:88:c6:ea:3e:c7:b3:60:
1d:a0:c0:c8:83:85:5f:78:5c:e9:6a:e5:a2:16:89:
ef:74:f7:05:a6:d7:98:af:16:6a:83:87:69:10:29:
ef:3d:b3:fc:a6:bb:0c:59:21:f7:68:10:5f:1a:af:
45:8b:4f:ec:23:83:3e:e6:2b:e4:f2:fc:96:06:19:
70:6f:7f:63:79:3d:fb:bb:8f:f5:17:0c:cd:f2:d6:
77:05:8e:ce:3a:b4:d2:2f:e9:69:84:59:5c:35:f4:
23:c6:68:05:fd:1a:c8:bc:66:03:c7:61:f8:76:a2:
3d:28:82:cf:de:71:de:0d:5b:b2:bb:a5:d9:59:df:
07:cb:92:fb:98:9d:23:c9:5b:13:74:2f:77:e9:5d:
aa:7e:d6:3a:fd:3b:89:b3:95:2d:d0:77:25:ad:71:
07:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:9B:F0:82:12:6E:F8:4F:2F:21:5E:7A:61:C0:31:60:2F:56:64:E3
X509v3 Authority Key Identifier:
keyid:00:85:5D:D8:97:25:6E:86:DA:3C:BE:69:94:E9:4C:E2:E9:69:AF:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:c2:48:c6:42:5c:16:e4:a9:97:f2:61:3a:15:f0:a9:dd:87:
40:74:3f:f2:62:91:cc:1e:fd:31:13:90:4c:9e:c4:4f:c5:91:
c4:8c:4b:67:8a:64:6e:26:03:03:44:9b:39:62:6d:8c:8c:c1:
e5:30:e1:67:03:7f:44:af:d0:cf:6e:74:42:da:04:f3:21:b3:
4b:64:5c:54:80:c4:08:66:bd:bb:e7:95:8d:39:0c:e9:e7:96:
83:cd:c2:f5:65:cc:85:1e:46:ca:d7:55:ad:ab:f7:d9:3d:e4:
ac:2a:1e:ab:b8:5e:d2:bf:b9:3b:ab:d1:d2:30:66:5c:fb:10:
a0:fa:12:b1:e5:38:97:2a:53:f3:5e:54:3f:96:66:36:78:ff:
c6:51:ec:b8:5a:10:5f:75:42:7b:b0:38:69:7d:5d:cc:d4:8e:
ab:5b:68:1e:3d:a3:8e:db:a0:9a:83:88:ab:ad:93:f6:0e:d6:
c8:96:d3:93:6c:29:a1:ab:41:17:c6:6e:bd:d8:e8:e1:b2:c9:
a2:9e:e4:aa:f3:9e:6d:a8:d2:22:23:9a:47:2a:4a:44:97:df:
31:f6:6d:51:4b:9e:6a:2f:c4:f3:17:a6:db:f5:87:c0:b1:60:
5f:9a:d6:bd:1f:92:82:96:90:7b:f0:f7:c9:33:d5:f8:86:59:
2a:60:65:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:49:00 2024 by rpki-client on console-fra.rpki-client.org