Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
File: uT2pHx9TY0JyxZEQh85my602FKM.mft (raw, json)
Hash identifier: wZgG+lnqBYc6J+p7AKo6KTfYAPtXYWeo7HjG5FYLPqM=
Subject key identifier: 34:1C:9D:8D:74:F9:B0:7E:D2:2D:B5:72:7D:00:2D:72:15:DB:AF:85
Authority key identifier: B9:3D:A9:1F:1F:53:63:42:72:C5:91:10:87:CE:66:CB:AD:36:14:A3
Certificate issuer: /CN=b93da91f1f53634272c5911087ce66cbad3614a3
Certificate serial: 018F874A97A02C0555D42294C59DA7B8428B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
Manifest number: 0315
Signing time: Fri 17 May 2024 16:02:43 +0000
Manifest this update: Fri 17 May 2024 16:02:43 +0000
Manifest next update: Sat 18 May 2024 16:02:43 +0000
Files and hashes: 1: hsPTOeS_EsTMJg-Ipa6fbLwoNzI.roa (hash: lEfU1q8ogHTnJdVbvZV+N2vIs3+7Xap5j/lK4trCX/I=)
2: uT2pHx9TY0JyxZEQh85my602FKM.crl (hash: x5POYcJXkEYw+a+VxVncsY6i3QkS/uLktslrxAENRjY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:97:a0:2c:05:55:d4:22:94:c5:9d:a7:b8:42:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b93da91f1f53634272c5911087ce66cbad3614a3
Validity
Not Before: May 17 16:02:43 2024 GMT
Not After : May 18 16:02:43 2024 GMT
Subject: CN=341c9d8d74f9b07ed22db5727d002d7215dbaf85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ca:1b:59:0f:db:6e:9c:39:04:32:84:38:60:
5f:b2:2f:c9:02:d1:c7:91:3c:1f:68:11:fe:76:b3:
1c:2d:63:1b:5d:d7:4f:9f:b3:97:46:49:31:0e:1e:
01:ca:6a:c3:6d:d0:bd:95:61:96:5b:f0:43:5c:64:
f4:08:ed:34:39:8d:dd:1c:aa:2b:33:6c:f0:93:86:
ba:4c:1e:95:21:9d:09:b9:6b:d5:33:30:ce:32:0d:
09:ba:dc:bd:43:6a:44:67:20:d5:b4:fc:38:bd:b9:
87:7b:ba:04:34:b0:56:47:f0:e0:82:50:ba:1c:91:
56:cb:16:03:41:50:ca:48:72:bf:68:c7:ca:a3:ab:
db:63:18:d3:28:07:39:e1:07:5f:d7:33:30:03:81:
2a:b9:59:46:49:b6:90:73:44:72:a9:0c:f8:56:1a:
36:10:3f:31:2d:0f:18:ef:fa:20:dd:c0:c4:82:40:
81:cd:c0:50:5a:2d:03:5c:87:19:9e:57:47:9b:fe:
08:f1:3c:9c:37:13:c7:97:69:bc:bc:07:32:37:e9:
e4:be:a0:a3:97:f6:7d:b5:ae:6b:5c:52:c2:1d:c9:
44:50:a4:b3:8a:45:0f:19:1a:d6:60:f9:df:55:ce:
99:38:2b:9c:12:f7:ba:d6:39:34:4f:4d:5b:8c:f9:
24:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:1C:9D:8D:74:F9:B0:7E:D2:2D:B5:72:7D:00:2D:72:15:DB:AF:85
X509v3 Authority Key Identifier:
keyid:B9:3D:A9:1F:1F:53:63:42:72:C5:91:10:87:CE:66:CB:AD:36:14:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:68:d7:a8:3e:20:9f:fe:01:97:28:54:41:10:2b:a6:bf:7e:
f8:0d:0e:09:97:2c:5c:d2:01:f1:e2:8c:b3:9a:4c:36:5a:97:
5b:78:08:5e:3f:61:3a:fd:01:78:30:0c:38:c4:39:36:f5:23:
10:14:7b:49:cc:5c:9a:67:da:1e:af:62:fd:59:0d:b0:cf:86:
17:1d:56:b4:13:6f:11:56:ca:eb:ea:ce:0b:f5:20:40:e9:3f:
a1:62:ea:ec:04:81:7f:c1:6b:d0:fc:50:d2:3d:04:50:59:a6:
31:7f:8c:36:f2:ec:1d:56:61:3a:97:3b:52:20:26:71:04:9a:
5a:b1:4f:fb:16:8b:23:4c:1e:93:8c:c8:ce:38:a0:d0:69:6d:
b3:0d:2b:e9:e3:c9:3c:54:15:04:80:51:f3:e5:e5:29:24:70:
bb:52:ee:65:d0:21:80:73:09:89:16:c8:87:71:4a:07:37:5d:
52:d8:31:ec:8c:b5:cc:59:4d:c8:05:7a:0a:27:87:14:e1:38:
cc:98:1d:dd:87:90:66:0e:13:20:cc:7a:d0:4b:03:36:0f:9f:
8c:9e:3d:fe:5f:0a:7a:4f:db:bc:04:2d:1a:ce:ba:c4:2b:93:
63:33:b0:6a:e1:9f:9e:df:87:ab:7c:ee:24:48:38:18:1a:03:
85:be:38:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:12:16 2024 by rpki-client on console-ams.rpki-client.org