Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
File: 2sedKFW4l0GCCNR7puUUYAFbXXs.mft (raw, json)
Hash identifier: FtDsd61SOY02y3uIfolzn/qjQ9+G3E3XmBCu0PAa7CI=
Subject key identifier: 85:34:BB:1F:C1:86:9E:6F:56:52:1A:6E:3B:76:AD:2D:8C:06:66:D3
Authority key identifier: DA:C7:9D:28:55:B8:97:41:82:08:D4:7B:A6:E5:14:60:01:5B:5D:7B
Certificate issuer: /CN=dac79d2855b897418208d47ba6e51460015b5d7b
Certificate serial: 018FB98047215FCBBFC0D67A985BB6ACF3BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
Manifest number: 1192
Signing time: Mon 27 May 2024 10:02:22 +0000
Manifest this update: Mon 27 May 2024 10:02:22 +0000
Manifest next update: Tue 28 May 2024 10:02:22 +0000
Files and hashes: 1: 2sedKFW4l0GCCNR7puUUYAFbXXs.crl (hash: RgzKH47zJSuQfF3V0glad+XM1BnDJFW37J/o3s7hI1w=)
2: RKWaBJlrRKZLhWRWq8U29Mmn89g.roa (hash: SzuQIGPldwwtZKcKFlwiJQddqi+nsxzZOmIZ2R2bcxU=)
3: ezgTr0JNt3AWLdngxhJQGMv8Kuo.roa (hash: V2Qz1qtTvo3vVmwftQNU0rS8eJ+z5sLzUc8QzMJjRs0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 May 2024 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b9:80:47:21:5f:cb:bf:c0:d6:7a:98:5b:b6:ac:f3:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac79d2855b897418208d47ba6e51460015b5d7b
Validity
Not Before: May 27 10:02:22 2024 GMT
Not After : May 28 10:02:22 2024 GMT
Subject: CN=8534bb1fc1869e6f56521a6e3b76ad2d8c0666d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8c:39:26:ac:8e:4e:a6:db:fc:27:43:0b:cf:
30:76:e6:9e:54:94:12:6b:49:5a:ee:05:88:7d:d1:
6a:23:17:e2:4e:36:ed:a1:de:75:50:e5:ae:7e:05:
04:43:a3:96:a3:f7:2a:8d:4a:08:7e:17:6f:fe:5a:
a3:04:95:2a:b2:2d:e9:3e:3d:df:ca:46:53:00:cd:
65:95:99:16:4b:de:88:42:b8:97:8c:a4:d5:57:d6:
5d:8e:58:38:c0:20:e7:70:7d:03:4b:57:d4:8c:40:
d9:65:0a:ec:90:dd:46:d7:99:e9:95:6b:4c:2b:3f:
54:66:c0:36:03:f3:67:66:8e:f2:6c:49:ef:45:05:
59:2f:bc:ef:9f:98:9c:cc:15:c4:d2:9c:4e:57:ff:
46:d8:12:06:67:28:ca:48:7b:4a:27:ec:87:1f:13:
2d:dd:71:1f:4d:aa:c9:f1:4f:a2:7c:8c:f6:32:dc:
82:e6:10:71:44:af:3f:76:e5:94:96:21:16:52:1c:
75:c9:ed:42:58:6e:38:3a:e4:ef:d3:07:c2:0e:9c:
18:ee:fa:11:cf:2a:2d:0f:ad:f7:f1:44:6d:d5:90:
83:12:d0:9c:47:c6:a0:85:fc:05:3e:96:03:23:91:
f3:66:64:f9:77:03:d8:58:a8:2b:0a:d8:e0:91:da:
68:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:34:BB:1F:C1:86:9E:6F:56:52:1A:6E:3B:76:AD:2D:8C:06:66:D3
X509v3 Authority Key Identifier:
keyid:DA:C7:9D:28:55:B8:97:41:82:08:D4:7B:A6:E5:14:60:01:5B:5D:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:b6:21:ea:60:e5:98:62:1f:86:1f:aa:34:f3:b9:48:71:8c:
83:e1:d9:b2:03:53:9c:dd:af:30:bc:ca:00:ba:c3:f4:5d:d6:
4a:77:a9:d5:27:9e:2a:d6:a5:96:05:64:43:ff:e1:75:31:1a:
fe:09:1e:d8:89:26:bd:84:a5:27:16:f5:b3:3f:e4:51:d1:32:
2d:24:2f:2c:8d:ba:15:06:d1:65:4b:48:09:41:3a:ff:3b:81:
8c:18:d9:40:b0:71:b0:0f:46:31:8f:0c:58:ad:34:42:83:57:
f2:12:5c:2e:4a:e1:c9:4a:7f:81:5d:5c:7a:fa:56:f4:8f:c6:
17:94:57:93:eb:af:cc:78:89:43:ec:d3:93:5f:ff:7f:4a:1d:
01:72:70:52:a2:b7:7d:c4:c6:a1:a2:44:1e:e4:af:ba:ba:04:
e3:f0:68:5f:f2:a2:a3:b2:66:46:b1:11:f2:96:3b:d9:f2:0c:
59:53:65:62:05:84:67:e5:ec:4a:3d:ea:fc:dd:90:55:a0:f6:
20:8b:67:8a:7d:07:a3:19:93:d5:ee:3f:4c:a6:df:7f:22:0d:
ea:ae:8a:36:a4:98:d4:69:fe:f1:7b:f5:2c:b4:ff:c1:ca:ee:
2b:16:36:de:fa:74:28:d4:75:c7:be:2c:57:4e:77:f8:65:ef:
eb:8b:5f:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 12:25:33 2024 by rpki-client on console-ams.rpki-client.org