Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft
File: UzYQcXlxVgncpCK8B6CYRoxSlFI.mft (raw, json)
Hash identifier: atd/velne30ZP62pccUgDXd2ZOZcjFosjKvcqJLa7aA=
Subject key identifier: 4A:F2:B3:3D:89:05:92:C2:92:CD:C4:4A:B0:92:1F:9B:3B:5C:71:66
Authority key identifier: 53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52
Certificate issuer: /CN=5336107179715609dca422bc07a098468c529452
Certificate serial: 018F885B2BFBE210951D49A58CA987318283
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft
Manifest number: 1185
Signing time: Fri 17 May 2024 21:00:27 +0000
Manifest this update: Fri 17 May 2024 21:00:27 +0000
Manifest next update: Sat 18 May 2024 21:00:27 +0000
Files and hashes: 1: NhDr2KLQCroDxSQCXWksI7eSBwg.roa (hash: oMKGhIYM7Uu/4DtqSZadmurmI1K1Bnhyc8R9Y/b8sBM=)
2: UzYQcXlxVgncpCK8B6CYRoxSlFI.crl (hash: Lag/sEUV9IQhhZr3LvNPxMcvX+so8373tl/iZKAIgEw=)
3: rvOEa3YvvjraROvzr80W8cxp-Mg.roa (hash: HZRsWBsa53tKg1i232WZqhbPWy2xZRxcnPjNGMXuv0Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:5b:2b:fb:e2:10:95:1d:49:a5:8c:a9:87:31:82:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5336107179715609dca422bc07a098468c529452
Validity
Not Before: May 17 21:00:27 2024 GMT
Not After : May 18 21:00:27 2024 GMT
Subject: CN=4af2b33d890592c292cdc44ab0921f9b3b5c7166
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5f:52:bc:16:17:93:15:fe:45:3e:fe:55:3c:
cf:9f:1e:fa:1c:18:95:14:d9:a3:63:11:e0:8b:57:
c2:42:2d:4a:de:d7:f1:28:89:eb:0c:e0:58:a5:33:
bd:f0:22:c5:fd:16:a9:a3:f6:65:2a:86:51:f2:59:
58:74:55:f1:b6:5c:5d:50:3b:a9:35:8c:7e:44:41:
5b:80:94:a6:43:6b:d9:0a:18:18:7d:e9:71:e1:72:
d3:48:a0:48:66:07:21:a2:0b:42:3d:58:e7:43:b5:
43:75:d5:39:25:15:ed:14:62:80:27:c4:a2:99:95:
24:69:7f:87:02:48:df:92:29:fb:c0:97:df:14:e0:
77:1a:3c:9a:8a:57:5a:ca:cb:55:5a:c3:61:f8:09:
53:f7:3a:7d:e3:05:d8:47:cd:a2:6d:a4:42:62:d7:
3f:66:1f:fe:3f:5d:51:fc:be:09:b1:6f:a6:9a:0f:
05:16:b4:32:b3:7c:f3:a0:f1:c6:bd:93:51:e0:af:
2a:e5:30:cf:49:4f:68:46:fa:e1:90:eb:94:aa:ec:
f4:09:e3:8b:75:0c:0a:48:35:77:b0:88:8f:f5:2d:
3e:1e:e1:01:1a:2d:cc:5e:04:13:ec:49:6a:9d:48:
03:68:91:6f:9b:64:58:8f:a2:cb:28:1d:05:8a:93:
6e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F2:B3:3D:89:05:92:C2:92:CD:C4:4A:B0:92:1F:9B:3B:5C:71:66
X509v3 Authority Key Identifier:
keyid:53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:c4:f1:1b:0b:9a:24:c6:22:be:c7:15:04:c5:ad:9e:46:52:
14:bf:24:18:70:2b:6d:2d:81:82:fb:47:65:9c:7a:c1:c3:66:
c8:37:31:81:70:f6:9e:ce:b7:15:e3:9c:9e:e5:ea:eb:61:d2:
9f:2e:99:c2:15:77:c6:13:eb:89:b2:7b:23:3b:c0:4a:09:ea:
9e:72:fe:96:cb:17:ff:71:12:2a:0f:63:4f:d4:59:78:2a:b5:
d6:e3:69:a7:3f:54:84:e7:1c:0c:27:32:2d:e6:a3:dd:02:d6:
79:f5:e4:30:76:33:f4:ac:44:b2:35:a3:a6:8b:56:2f:cb:2c:
4b:32:a0:a4:89:fa:6b:b6:fa:7b:4c:cd:c8:3a:7c:64:51:0c:
8c:c6:db:6b:4f:75:ed:28:bd:af:87:c7:a1:18:2d:8e:ce:a8:
35:bc:1e:7b:4b:c8:84:8c:3b:8e:6f:fe:4d:30:6d:cd:33:62:
fc:e3:61:27:0c:06:9b:de:70:f0:9c:2c:af:eb:05:64:21:88:
b1:a2:05:28:b8:57:fc:e7:54:b0:9f:69:37:ef:4e:e0:4a:cc:
03:36:2b:77:ee:1c:be:5a:fc:e9:30:53:e8:e0:2d:6a:ee:cd:
23:76:e3:d8:30:99:78:21:b5:64:df:cb:48:72:49:42:f9:ea:
99:51:10:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 02:23:04 2024 by rpki-client on console-ams.rpki-client.org