Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
File: XaWsO7omBTjDM-bIYPI2ASyYZ10.mft (raw, json)
Hash identifier: BpVZrcaPbRH2Kak6QYdCCquIFOEWuaZ/P+r7at6Mj8M=
Subject key identifier: A3:48:43:4B:66:C2:27:8A:DE:97:AA:88:3C:45:10:C6:42:CF:17:40
Authority key identifier: 5D:A5:AC:3B:BA:26:05:38:C3:33:E6:C8:60:F2:36:01:2C:98:67:5D
Certificate issuer: /CN=5da5ac3bba260538c333e6c860f236012c98675d
Certificate serial: 018F8823F3FA0CF695CDA2F598434BD93C9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
Manifest number: 0BD2
Signing time: Fri 17 May 2024 20:00:08 +0000
Manifest this update: Fri 17 May 2024 20:00:08 +0000
Manifest next update: Sat 18 May 2024 20:00:08 +0000
Files and hashes: 1: XaWsO7omBTjDM-bIYPI2ASyYZ10.crl (hash: D1204wCBP3tScap23JKjTt9a4Vd+2lrxYHUpcn377/Y=)
2: tKNUM5qYHnLmUR_Pemx-ThQw-tA.roa (hash: PvbyW/VbJHhyrOY57u29lJ/JOLB46v3gw1/XUwhCPkg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:23:f3:fa:0c:f6:95:cd:a2:f5:98:43:4b:d9:3c:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da5ac3bba260538c333e6c860f236012c98675d
Validity
Not Before: May 17 20:00:08 2024 GMT
Not After : May 18 20:00:08 2024 GMT
Subject: CN=a348434b66c2278ade97aa883c4510c642cf1740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:29:f6:8d:6d:e8:b3:8c:92:f8:ff:fd:da:78:
19:a9:ec:95:c2:3b:66:af:f5:6c:53:44:dd:03:5a:
e3:96:81:88:60:ab:a0:e1:ef:36:f2:bc:2f:75:a7:
76:af:67:29:46:b9:6c:d1:e6:71:df:e0:f4:99:d2:
a3:c8:90:eb:e1:9d:3f:9b:96:96:65:a9:0d:05:2f:
da:ec:23:ba:00:d0:5a:eb:46:ae:1c:31:b6:61:df:
3b:7b:bc:1c:4b:cf:76:26:ac:8d:2a:62:2d:bb:eb:
56:83:40:05:cb:58:63:65:30:ed:40:2b:d3:e6:8b:
92:a9:66:c4:06:30:bb:33:f4:99:c3:00:9e:87:2d:
9a:69:0d:05:ec:a8:07:af:cb:ae:cb:6c:a9:4c:9d:
c5:a5:cc:79:52:15:40:f6:a5:bc:62:7f:f1:cb:a2:
f5:31:41:06:b4:34:32:b0:6d:b1:87:b6:5e:4e:f1:
52:3c:7c:4d:d1:56:93:42:11:d1:74:ac:40:49:8f:
2a:a2:49:87:eb:29:7e:a4:21:7b:65:3b:96:0c:37:
d2:36:26:87:f7:cf:6d:15:3c:4e:9b:f7:f1:9b:38:
9f:54:cc:e2:a0:df:94:6d:25:63:7e:b1:77:5c:e4:
50:bf:1d:b2:56:34:ff:f6:4a:f3:5c:d8:e3:2d:80:
fa:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:48:43:4B:66:C2:27:8A:DE:97:AA:88:3C:45:10:C6:42:CF:17:40
X509v3 Authority Key Identifier:
keyid:5D:A5:AC:3B:BA:26:05:38:C3:33:E6:C8:60:F2:36:01:2C:98:67:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:d5:d4:97:67:ef:f4:78:b3:64:b1:5e:df:35:6e:cc:48:e2:
cf:d6:87:94:65:a8:ef:52:dc:53:b4:9c:33:e7:82:bf:52:e1:
71:2a:ef:7d:70:ec:0f:b7:28:e2:0a:0f:0b:12:de:0e:95:52:
88:ac:fa:02:15:17:5e:0a:81:0e:6b:2f:d9:27:41:91:6f:b1:
a2:7f:33:05:62:ea:3d:47:fe:36:8a:06:b5:be:14:b3:60:a7:
0b:c8:e4:0d:50:a3:65:3c:85:0f:df:3a:d8:f1:92:0c:3b:8e:
2e:5c:79:27:8a:b8:66:ba:b2:1f:37:f3:e3:88:57:99:0c:b4:
a0:21:63:b1:9f:0b:21:f2:d0:a0:82:40:b4:92:f8:ad:56:95:
05:36:ea:2a:b9:5e:5a:46:78:47:5c:aa:69:14:06:e5:c2:37:
5a:54:84:13:6f:bf:6f:c3:b9:5c:22:9d:7d:d9:b7:d2:74:42:
c5:b7:24:57:e0:b1:56:db:3c:38:6e:8c:05:93:ac:ae:42:98:
22:f9:33:4c:df:9a:f4:97:fa:d6:5c:55:f4:83:08:1f:67:3f:
c0:bd:02:f4:b7:49:71:0c:dd:92:2b:66:11:4d:1d:d8:a9:b1:
8d:94:fd:4e:d1:0a:90:fb:25:b7:4e:75:fb:ab:36:c5:09:49:
75:0c:4a:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 21:12:59 2024 by rpki-client on console-ams.rpki-client.org