Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
File: 2OnkD_n7tigNo26XLyDTElAMGFw.mft (raw, json)
Hash identifier: xICc1g+8YJtXl1nfsWdCzeGx50JUYaCj2PzrwDSedUc=
Subject key identifier: 23:51:E4:DD:86:45:38:C9:27:61:C5:DB:B8:60:20:D4:41:8C:33:6B
Authority key identifier: D8:E9:E4:0F:F9:FB:B6:28:0D:A3:6E:97:2F:20:D3:12:50:0C:18:5C
Certificate issuer: /CN=d8e9e40ff9fbb6280da36e972f20d312500c185c
Certificate serial: 018F45A1D6BEA2CA18B47E03154D3DAAD431
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
Manifest number: 0E3D
Signing time: Sat 04 May 2024 22:03:05 +0000
Manifest this update: Sat 04 May 2024 22:03:05 +0000
Manifest next update: Sun 05 May 2024 22:03:05 +0000
Files and hashes: 1: 2OnkD_n7tigNo26XLyDTElAMGFw.crl (hash: N4Yu2Apsk5/gThR1Or3yHVXtnujqOuydjImz2CIs45A=)
2: Jvh8LJ6-crAmSSGHbF76HnQ8ckA.roa (hash: xBzHxL0oPrHMNhUclCuAc5KWEywe3q4PYCKOdY3Wp/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 20:58:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:45:a1:d6:be:a2:ca:18:b4:7e:03:15:4d:3d:aa:d4:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8e9e40ff9fbb6280da36e972f20d312500c185c
Validity
Not Before: May 4 22:03:05 2024 GMT
Not After : May 5 22:03:05 2024 GMT
Subject: CN=2351e4dd864538c92761c5dbb86020d4418c336b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ff:77:6f:57:a9:fc:07:c4:85:fa:06:8f:b8:
70:a1:f3:00:7a:d7:15:58:d5:c9:8a:ed:76:39:d5:
6d:9d:0c:e7:db:e8:2d:7e:b2:6b:20:1f:cf:12:f3:
49:b4:25:2f:14:07:b4:db:c2:7f:2b:3c:ef:c1:e3:
05:9f:85:a9:4a:c6:04:60:a6:d2:4a:c7:ba:5f:1a:
1c:ed:f3:c9:af:02:f2:7d:f0:37:ca:33:1c:35:43:
a8:f3:30:38:d7:cb:8f:4b:d9:19:4f:57:96:c1:8b:
59:5f:7e:90:dd:02:06:50:1b:ba:1f:ed:dd:5a:9c:
9d:75:ba:e7:42:d7:ae:13:7f:43:d5:88:56:95:4e:
68:2c:d4:e0:90:88:07:a4:25:4f:15:f7:28:ec:fa:
1c:50:b9:72:b3:e0:bb:75:26:84:3d:5c:97:f1:fc:
f3:bd:43:01:ff:5e:e6:17:5e:9d:5d:6d:7f:cc:30:
da:71:a6:3a:af:8e:6c:46:f1:9c:b9:cd:38:fd:40:
cb:4b:7e:fa:ef:85:5f:e3:67:af:64:4d:70:4b:bf:
25:cf:1f:f2:66:3e:a1:89:20:7f:ea:70:fd:30:ad:
b8:3f:b7:f8:94:6a:26:b4:a8:c6:5d:da:56:ba:ef:
22:11:14:67:7c:3e:15:aa:87:41:84:79:3d:bd:41:
ec:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:51:E4:DD:86:45:38:C9:27:61:C5:DB:B8:60:20:D4:41:8C:33:6B
X509v3 Authority Key Identifier:
keyid:D8:E9:E4:0F:F9:FB:B6:28:0D:A3:6E:97:2F:20:D3:12:50:0C:18:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:f1:b1:b4:ba:0d:94:cb:ab:85:f1:38:4e:a5:ee:d0:2f:2d:
f4:39:3a:c6:55:97:3c:cf:88:36:ec:db:44:d9:5a:b0:4a:18:
dc:cb:c0:0a:42:2d:a4:eb:33:50:15:a4:db:57:ad:5e:60:90:
27:93:34:a6:92:e3:42:a1:44:77:7c:2a:ae:72:27:8f:04:b2:
ba:e2:37:00:1c:3b:5b:bc:22:65:98:28:e1:7c:98:ef:4a:ed:
aa:a4:43:28:bb:fd:4b:67:b0:c0:a6:f0:36:7f:63:79:cd:62:
2f:9c:12:be:63:86:ba:7b:aa:99:56:5c:00:7e:1a:83:d5:6d:
15:40:b6:75:bf:db:6e:04:00:da:ff:01:0c:65:3c:d2:32:f1:
e3:5b:57:75:2c:af:78:b2:49:6a:17:8a:5d:6c:0c:46:44:89:
8f:96:b4:f3:fc:df:5a:f2:28:bd:d2:5b:c3:45:d7:cf:30:85:
33:96:83:0b:df:ce:d0:92:af:07:57:a3:8c:ee:15:0a:f5:2b:
8f:ae:b8:12:e0:80:bf:67:02:5a:93:b8:4f:76:be:2e:b4:3c:
b0:dc:73:9c:a9:90:e2:f0:59:76:19:16:13:11:93:ca:9b:64:
f5:93:16:7f:cb:be:32:52:34:1c:dd:82:a9:f8:4b:a4:8b:d2:
d2:ac:0b:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 00:22:29 2024 by rpki-client on console-ams.rpki-client.org