Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
File: aM_hqssnjBMjGzEORe5XaTL-m04.mft (raw, json)
Hash identifier: pVQEdAsfQ8jVpg1aB2M1/x+62vgH1xqnJBKMEnMMbwg=
Subject key identifier: 60:F8:A9:3A:88:08:21:6D:4B:2E:EC:3E:E1:B7:87:DE:5A:9E:3E:48
Authority key identifier: 68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E
Certificate issuer: /CN=68cfe1aacb278c13231b310e45ee576932fe9b4e
Certificate serial: 018F88C8C4D294E6108F7224BAA8FF187DF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
Manifest number: 0E06
Signing time: Fri 17 May 2024 23:00:09 +0000
Manifest this update: Fri 17 May 2024 23:00:09 +0000
Manifest next update: Sat 18 May 2024 23:00:09 +0000
Files and hashes: 1: aM_hqssnjBMjGzEORe5XaTL-m04.crl (hash: mpc9tM7veJVgTXKEpRp/vf6Nvn0K4CyuenXSzSuq2bI=)
2: n6uXky1fV8RHYSH2LSSfS7R-PpE.roa (hash: 1N80ZYdKZbS3tAZtkFV5C0AbFj7zkxvnobHKmacyc5g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:c8:c4:d2:94:e6:10:8f:72:24:ba:a8:ff:18:7d:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68cfe1aacb278c13231b310e45ee576932fe9b4e
Validity
Not Before: May 17 23:00:09 2024 GMT
Not After : May 18 23:00:09 2024 GMT
Subject: CN=60f8a93a8808216d4b2eec3ee1b787de5a9e3e48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:7c:4a:d9:46:ac:d2:9e:53:7c:a9:de:7a:a3:
82:7c:28:3a:3d:78:cb:8c:43:32:f7:21:95:7a:3e:
50:0f:1d:7e:34:4c:fd:56:16:4c:33:72:1f:7e:0a:
f2:e3:e9:bb:fd:05:8d:75:67:74:7d:b6:95:ef:f6:
1a:bb:80:3a:7b:9a:99:61:e0:c8:26:55:5e:8e:50:
17:39:57:7d:7f:7f:5f:fa:a5:cc:39:6f:89:67:f5:
e7:30:99:d3:40:86:5f:ba:5d:ae:7d:70:d9:d3:c5:
ed:95:c2:c0:48:ee:2e:f8:07:ea:97:44:68:0b:0e:
c6:57:76:ea:d2:aa:67:fb:ec:14:e6:ce:95:63:e1:
e0:8a:10:e8:37:6d:9a:5b:43:80:45:09:da:2a:16:
ff:77:39:93:d7:6e:fb:c5:b7:57:3f:63:63:5c:9d:
bb:b3:94:9f:48:41:69:54:19:2e:8b:d5:1f:f2:13:
b6:3b:a5:d4:c8:fc:24:d1:35:91:3f:5a:b8:02:5c:
c6:28:e3:a5:c8:b2:b4:87:98:e2:d0:cb:99:cc:38:
22:5a:3f:fd:63:0d:1a:10:7a:52:5d:25:b4:af:c6:
04:05:bb:59:63:f7:bb:4c:fa:06:84:dd:1b:38:59:
9b:d3:19:fd:c2:00:51:0d:2a:79:95:1e:67:7d:ed:
88:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:F8:A9:3A:88:08:21:6D:4B:2E:EC:3E:E1:B7:87:DE:5A:9E:3E:48
X509v3 Authority Key Identifier:
keyid:68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:1c:a9:de:c8:65:1c:75:7a:82:45:4f:f7:34:7a:69:95:fd:
d6:f9:56:c2:c9:1b:67:e3:54:59:33:c6:b3:e8:1b:00:05:82:
9f:a4:48:d3:e5:77:83:a4:6e:6f:2a:54:3d:50:c9:bc:cd:d7:
61:44:8b:22:9c:2f:cb:b0:cc:d9:e2:a8:15:c0:5c:68:79:d2:
8f:16:6f:7b:c2:73:e6:9d:6d:85:3c:d1:8c:e1:d3:34:4b:70:
12:ab:1c:a8:8c:fe:1b:ac:39:11:fd:b5:ac:2d:32:60:32:aa:
03:66:7a:ac:59:d8:cd:3c:6b:b9:8f:a6:cf:c3:f0:8a:87:68:
1c:50:8b:2f:b9:11:5d:0b:6d:01:ef:f5:fc:48:bb:e9:ae:22:
9c:de:fa:62:8c:43:5f:59:39:10:b0:eb:bc:c3:ff:b5:a6:05:
13:43:3e:5c:f8:c4:91:a9:bc:6f:13:d3:5f:d0:ba:ab:fd:6c:
75:e2:5e:4e:bb:87:d9:bc:98:e2:da:eb:d3:91:de:0e:03:b1:
59:14:a3:88:7c:44:41:f1:9c:06:65:19:5d:e5:4c:80:13:bb:
90:ab:1c:3a:8b:8a:b8:d5:e9:79:32:ca:87:8a:36:1a:e0:ba:
4a:43:4a:7b:1c:13:1e:03:f7:43:61:e4:05:57:b1:44:d4:28:
05:20:f1:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 02:05:53 2024 by rpki-client on console-fra.rpki-client.org