Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
File: rS044g8k0OMLhszYJhrAAX8XpaQ.mft (raw, json)
Hash identifier: JJLisWHzAz2tjhwcERchirzYghRJ4k2qpTsQ1YfyTaw=
Subject key identifier: F5:0B:FB:F0:8D:08:F9:06:AB:28:61:7A:27:07:B0:04:6B:53:F1:C2
Authority key identifier: AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4
Certificate issuer: /CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4
Certificate serial: 018F8824328BEB3718B6527E04AC1D852E5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
Manifest number: 0445
Signing time: Fri 17 May 2024 20:00:24 +0000
Manifest this update: Fri 17 May 2024 20:00:24 +0000
Manifest next update: Sat 18 May 2024 20:00:24 +0000
Files and hashes: 1: 9_YiNW7fLxM2xl4RTGuHlD7bgQU.roa (hash: R2Xy7CQEGShLfmm0V/7Hl8oYZmpZneXnlQumj3A+m40=)
2: X1m9vAvIN0DOpD9BTzhuqz4g_LM.roa (hash: MlwmePJhB+oQac3JMcEjRqnJlKLeZ8rgzrP80u1h0lw=)
3: rS044g8k0OMLhszYJhrAAX8XpaQ.crl (hash: 7UqkeJoORryXJi6ngLKcz7vZ+oVmes1xWJNmDCX3rLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:24:32:8b:eb:37:18:b6:52:7e:04:ac:1d:85:2e:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4
Validity
Not Before: May 17 20:00:24 2024 GMT
Not After : May 18 20:00:24 2024 GMT
Subject: CN=f50bfbf08d08f906ab28617a2707b0046b53f1c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:4a:48:7d:d3:60:a0:72:16:77:49:fa:0a:7f:
61:57:0d:de:d3:65:bc:2c:43:84:16:08:a4:26:bd:
db:c5:1a:02:6e:f4:33:63:69:4f:10:54:15:13:15:
4c:16:74:21:03:07:35:98:19:36:14:8d:71:a5:e1:
8a:1c:6e:33:8b:1a:d3:19:0b:49:a6:bb:e0:bc:22:
11:23:16:8c:31:b0:31:de:46:a5:18:5f:c3:44:e1:
17:5b:5e:a4:27:7d:e4:f1:bf:32:9b:b4:2d:2e:0c:
b9:24:e9:84:04:eb:b0:4f:12:9b:5e:be:35:9b:f2:
93:7e:bf:f5:44:2c:c0:30:f3:8b:f0:ba:bb:3b:dc:
b7:58:5a:52:c1:00:64:45:4f:5d:d5:d7:ce:be:ff:
28:0b:f0:3b:aa:32:d5:ec:67:7e:bb:64:73:54:74:
a9:62:c4:f0:13:e9:2a:3a:e3:40:9e:6e:94:26:73:
f3:f8:05:31:22:d2:98:cf:88:2c:8f:1a:1c:54:11:
c2:e8:48:36:cd:5e:b7:34:38:ae:ed:c6:95:32:cd:
3f:df:91:67:84:1d:6c:21:0a:6d:72:26:56:85:96:
be:dc:ce:21:33:0f:3f:04:9d:5f:60:b9:c4:82:b9:
c4:90:4b:6e:9f:c0:5b:09:ac:e6:7d:27:38:1f:c1:
73:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:0B:FB:F0:8D:08:F9:06:AB:28:61:7A:27:07:B0:04:6B:53:F1:C2
X509v3 Authority Key Identifier:
keyid:AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:a3:8b:22:8d:4c:22:13:f9:26:46:4c:aa:d7:8f:50:a8:54:
ef:0c:b0:ac:db:b4:9b:26:f5:71:13:2b:a3:ed:1e:12:75:a5:
96:a9:36:56:c5:f6:77:c7:00:94:c0:d1:b5:bc:5d:e6:cb:62:
52:5b:9e:eb:fe:75:f3:7f:f6:5d:f7:c6:2f:46:3f:e8:ab:ef:
19:37:3f:85:86:75:b9:6f:2e:a6:d0:ed:49:6e:95:0e:a4:bf:
09:ba:40:4c:d7:ae:8b:17:0f:0e:c6:55:6e:d9:5f:56:d3:f1:
b9:52:22:70:29:8d:58:ad:d5:22:5c:dc:74:22:c4:fd:07:ce:
26:56:e3:83:b1:e5:cf:6d:34:0d:de:82:18:c2:9e:38:fb:5e:
c6:f6:8c:e7:63:fb:22:c8:73:58:a9:04:83:00:53:b5:2a:aa:
30:71:37:2f:ad:9c:d1:71:af:f1:15:4e:f1:5e:7a:63:d0:ac:
14:4f:97:d1:b1:8a:74:25:24:d2:ab:5c:be:01:5f:ac:7e:92:
f3:6c:20:05:ba:fc:29:c4:b6:a9:c5:ba:ea:6f:ba:94:f8:8d:
1f:41:3f:d5:65:1d:f8:64:0b:82:b4:ba:85:98:f4:ba:4c:2f:
c1:a5:96:41:12:3c:24:01:99:37:78:11:a7:8a:84:7e:d7:25:
35:7c:50:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 02:06:21 2024 by rpki-client on console-fra.rpki-client.org