Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
File: rKKhlS5xiUSkBDSg6-__2iv-7V8.mft (raw, json)
Hash identifier: SPxraTSof/c4esZ1D95ie+Uv3PghYZMFwGQliE+vfzM=
Subject key identifier: 7F:90:30:33:BB:78:D2:B6:E8:17:53:C4:30:DD:05:D2:FD:28:F7:58
Authority key identifier: AC:A2:A1:95:2E:71:89:44:A4:04:34:A0:EB:EF:FF:DA:2B:FE:ED:5F
Certificate issuer: /CN=aca2a1952e718944a40434a0ebefffda2bfeed5f
Certificate serial: 018F86A383BF88F38B97FE816C9F9546DFDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
Manifest number: 0E34
Signing time: Fri 17 May 2024 13:00:14 +0000
Manifest this update: Fri 17 May 2024 13:00:14 +0000
Manifest next update: Sat 18 May 2024 13:00:14 +0000
Files and hashes: 1: CoDL1rMPxfdpffPEynRQx35TTeE.roa (hash: avC24JYivQmLLY5PTdyHs5JB4u57qa8JMZhWXR86DI4=)
2: rKKhlS5xiUSkBDSg6-__2iv-7V8.crl (hash: e/9WwuoSqq1Vs5DIzadyXDTu1FKj3++n0AQ8xP75k/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 13:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:a3:83:bf:88:f3:8b:97:fe:81:6c:9f:95:46:df:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca2a1952e718944a40434a0ebefffda2bfeed5f
Validity
Not Before: May 17 13:00:14 2024 GMT
Not After : May 18 13:00:14 2024 GMT
Subject: CN=7f903033bb78d2b6e81753c430dd05d2fd28f758
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ec:a4:66:92:d5:4b:fe:43:1a:79:c4:78:a3:
4b:27:07:f2:03:e0:92:e1:69:63:91:d5:96:8d:b8:
7e:e1:73:54:d6:82:02:4f:2f:33:74:39:f2:63:a7:
b8:99:4a:fe:5b:96:55:4f:67:2d:75:54:0e:05:a1:
8b:51:ca:91:bd:7c:f3:cd:86:cb:ee:c1:9a:63:ca:
1e:01:6b:bc:f8:75:07:00:22:12:a9:7c:4d:df:03:
74:d9:ef:54:28:24:a6:51:bc:49:2d:c8:31:7b:04:
31:74:e0:5f:7c:d6:ec:eb:0e:a0:a5:28:34:50:c0:
35:4d:d5:bf:9f:6e:8c:8b:85:5a:28:df:c1:a5:11:
7e:8b:c8:cc:44:95:0f:2d:19:fb:df:0d:ff:8f:d7:
a0:a4:a2:29:a4:3c:a1:7d:4c:7a:5c:92:01:4f:a1:
99:37:fa:dd:6a:26:a0:6e:c0:c3:0e:9a:0a:c4:88:
7a:da:9b:ae:2a:60:fe:33:c0:09:da:07:90:47:4f:
57:40:fc:ac:2a:17:0b:8e:81:15:40:40:db:6e:aa:
6e:75:77:b4:2d:43:24:55:db:9c:33:87:da:7d:98:
28:19:be:1d:47:d8:23:82:c0:92:bf:17:70:40:18:
70:75:f3:20:6a:ea:22:1d:a1:6f:cc:e6:32:af:0b:
ae:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:90:30:33:BB:78:D2:B6:E8:17:53:C4:30:DD:05:D2:FD:28:F7:58
X509v3 Authority Key Identifier:
keyid:AC:A2:A1:95:2E:71:89:44:A4:04:34:A0:EB:EF:FF:DA:2B:FE:ED:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:1b:12:ae:a7:24:47:c1:3e:43:f0:cc:85:5e:71:e4:3b:c2:
8c:b9:65:a0:c6:49:2e:e6:db:30:13:3a:c1:bd:cd:86:39:b4:
18:61:97:24:40:6e:59:b0:36:46:b4:d4:d0:bd:88:29:35:20:
0f:d6:05:59:dd:31:fc:38:6d:db:83:06:f8:69:9d:52:ad:ce:
01:78:21:49:da:ab:ed:0a:e8:15:f6:e9:a4:ec:09:31:26:97:
f1:62:e3:8d:71:54:56:cc:0e:eb:a8:24:d4:4a:a5:b3:1b:40:
a2:ed:18:09:e0:56:54:23:47:f2:94:47:f2:1f:b6:ed:a3:b4:
fc:fc:1f:ab:09:94:a7:34:8e:1f:1b:66:29:22:7c:51:90:91:
d0:e8:72:b6:fc:2b:55:8b:12:6c:1b:06:a1:c6:b1:86:f9:db:
dc:b2:8e:db:d0:bb:8c:b6:d5:1e:48:a0:78:82:c1:ce:32:1c:
69:87:3d:ee:97:c0:c8:ed:2f:84:ef:64:78:b9:10:44:77:b4:
2c:32:71:22:5f:c5:8f:25:37:ef:02:32:30:e1:93:fa:ea:01:
fc:0a:11:e3:d0:e2:60:68:50:12:a0:f9:46:44:06:b1:cb:c1:
28:4a:06:6f:0b:d5:38:88:e6:3c:dc:eb:45:fe:32:c6:2a:91:
d7:b4:31:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:36:44 2024 by rpki-client on console-fra.rpki-client.org