Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
File: 2YtaX7E4aD0ajMcBn3iXC65ngig.mft (raw, json)
Hash identifier: TXOJC0Bc/Msxie4Wsb9SjWd9lOB0rPzKG1w1RwDg21c=
Subject key identifier: 25:5F:C9:8E:15:07:A3:1B:86:A9:91:11:E6:0C:BE:44:C4:C0:14:7C
Authority key identifier: D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
Certificate issuer: /CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Certificate serial: 018F4C106CC2CA82C8E6DE6161FBD13D27EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
Manifest number: 0A82
Signing time: Mon 06 May 2024 04:01:35 +0000
Manifest this update: Mon 06 May 2024 04:01:35 +0000
Manifest next update: Tue 07 May 2024 04:01:35 +0000
Files and hashes: 1: 2YtaX7E4aD0ajMcBn3iXC65ngig.crl (hash: Q7rtqZ9CjPYanLgKk41w8O5x5p5pTQPY5BbDgooB9mY=)
2: 3MSaG7hcBaNhLWLmCXBm8AFMmAI.roa (hash: O71nJyu+c2o8rR8t+0ioErmdS7NwkIBtBxYMlAH4yWY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4c:10:6c:c2:ca:82:c8:e6:de:61:61:fb:d1:3d:27:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Validity
Not Before: May 6 04:01:35 2024 GMT
Not After : May 7 04:01:35 2024 GMT
Subject: CN=255fc98e1507a31b86a99111e60cbe44c4c0147c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:62:2a:45:9a:7a:76:22:56:9c:73:33:87:be:
14:56:f5:bd:2e:b2:2c:65:06:2d:d8:03:16:57:45:
be:1c:49:03:96:42:9a:b0:2c:e3:2f:d4:b9:54:ab:
5e:9d:c1:ec:8c:2d:80:22:7d:eb:6f:74:4c:9c:cc:
e1:ac:b0:d8:31:b2:cb:9a:4f:c3:9f:a0:10:6e:c6:
bb:ee:f6:9a:68:38:84:a5:44:14:41:08:0a:11:51:
1f:70:48:49:96:2d:d3:dd:53:42:d8:2f:0c:2f:23:
62:4f:2e:79:0e:cf:a8:f9:c0:cf:55:b9:b9:84:bb:
dd:c4:db:cf:4a:e2:ae:7d:4e:e9:21:6a:a7:ec:41:
d3:33:e3:e1:0c:c5:23:76:ca:14:c1:ed:cb:28:55:
e4:6a:7d:2e:08:7c:94:85:26:83:02:85:de:6a:48:
0a:ea:63:8d:ae:64:d1:f4:20:bb:af:22:5b:b3:ac:
f6:29:3c:33:57:d0:63:4c:19:4d:08:f1:7d:c2:95:
22:af:19:16:04:0e:9c:d3:c9:fa:7e:62:67:88:ac:
f6:b4:e1:4d:15:53:59:70:bb:f6:72:e0:ca:30:0a:
c0:79:b7:6d:d7:06:a0:c3:97:0e:0d:52:42:76:5c:
0f:ab:d5:b3:22:96:c5:48:fc:a5:75:6f:42:b7:e9:
fe:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:5F:C9:8E:15:07:A3:1B:86:A9:91:11:E6:0C:BE:44:C4:C0:14:7C
X509v3 Authority Key Identifier:
keyid:D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:b5:fe:6b:d5:4b:e0:6d:23:1f:31:37:e3:0a:f7:6e:ae:53:
15:57:54:ee:8c:d2:8a:25:b1:31:28:fd:f4:7d:66:0b:62:c8:
79:94:71:d6:88:8d:2f:34:ef:53:4a:26:8d:5f:4d:e8:db:88:
c4:26:92:3f:6b:1c:70:98:ed:cc:85:32:8c:7e:3f:fb:93:fd:
c3:07:8d:90:8e:0d:e6:e1:d2:ec:51:c6:cf:5e:a5:27:0d:d7:
85:31:0b:72:7b:d3:ec:05:01:38:db:bf:7f:ec:74:18:51:cb:
3b:74:67:49:1c:74:54:2c:26:75:c0:e3:b0:30:4a:e7:c4:4a:
01:32:7a:8a:aa:fd:53:a6:b9:8c:55:54:6a:09:c5:82:04:ac:
63:67:dd:61:db:34:db:06:b8:ad:e7:4c:7b:13:47:68:1c:d4:
f4:f3:7f:f7:ba:54:f5:15:66:bf:09:4e:da:fc:06:bd:57:52:
3d:0a:83:b7:7e:b5:ed:08:5d:a7:21:8c:66:38:ab:75:26:a1:
f2:c9:0a:cb:29:d4:af:a6:c9:d1:d8:41:80:78:65:46:c2:38:
31:16:2c:84:33:1e:ae:58:43:ee:bd:a4:89:c3:0a:f6:8e:28:
0b:b2:6b:71:8a:70:02:7f:f4:63:8e:20:4c:75:ca:3d:78:09:
13:1a:1f:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:47:07 2024 by rpki-client on console-fra.rpki-client.org