Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
File: dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft (raw, json)
Hash identifier: HD2GN4iCaYQ7SPPG4IDb7PgC81bBwPAITY2pTEHt1f0=
Subject key identifier: F7:D2:7C:C1:FC:3B:6C:CB:02:8E:0E:B1:A8:05:B3:E7:27:1A:45:9B
Authority key identifier: 76:7B:C0:2A:58:59:62:3F:56:3E:A8:4A:6B:B0:A2:92:0D:5B:3E:91
Certificate issuer: /CN=767bc02a5859623f563ea84a6bb0a2920d5b3e91
Certificate serial: 018F88240E3EF7EDC75CB5302912CF1E2E1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
Manifest number: 0EC1
Signing time: Fri 17 May 2024 20:00:15 +0000
Manifest this update: Fri 17 May 2024 20:00:15 +0000
Manifest next update: Sat 18 May 2024 20:00:15 +0000
Files and hashes: 1: FBKGAgVmmyUnw3k2kc60d3qLCsg.roa (hash: G4cbv4EDCQUHBu2nNfTjvKBVfiImAxHDQpsUlcpEypM=)
2: dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl (hash: HMrIvZH8kbtUsFWP9aeYPZiXwfBu2NZ6SDLne0X9HVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:24:0e:3e:f7:ed:c7:5c:b5:30:29:12:cf:1e:2e:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=767bc02a5859623f563ea84a6bb0a2920d5b3e91
Validity
Not Before: May 17 20:00:15 2024 GMT
Not After : May 18 20:00:15 2024 GMT
Subject: CN=f7d27cc1fc3b6ccb028e0eb1a805b3e7271a459b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:b3:a9:91:65:67:15:98:e9:cf:52:f7:0b:9d:
6c:af:26:f3:90:ce:3f:87:21:1d:7a:57:d0:93:a4:
98:ab:4c:05:1c:55:ac:7e:2f:62:00:1e:a9:2c:a4:
fb:90:b2:c1:48:7a:69:93:60:d3:fd:aa:bf:18:24:
a2:f6:32:0d:4e:d8:12:e4:d6:e9:7f:7b:e7:31:37:
4f:c3:ac:18:01:a4:29:f5:41:45:de:c2:e3:b2:9c:
2e:64:43:45:ba:b7:a7:c8:04:a6:b6:90:4b:c9:1d:
d8:ad:e6:c0:cf:f6:79:5a:92:25:2e:12:f0:0e:1f:
fb:81:60:f3:a8:80:4a:52:b3:37:1a:70:f6:42:37:
22:09:46:68:b9:17:f4:0d:e0:f3:60:3d:35:01:8d:
4c:58:2c:8c:a9:56:42:09:7c:54:ea:3f:32:5d:3c:
70:58:7f:4b:64:60:00:26:39:2c:27:99:1b:93:a0:
f0:0e:b9:43:c0:08:86:04:08:35:aa:be:15:1f:56:
54:fe:5e:17:97:69:11:15:fd:cc:04:d3:42:54:2b:
58:76:70:07:e2:e7:ae:19:4f:74:66:b4:d9:03:50:
49:d1:de:3b:81:14:3b:8d:98:a5:ab:de:95:5d:f0:
79:fb:6d:14:1f:ad:98:87:68:d2:a2:e0:b3:a5:6f:
9b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:D2:7C:C1:FC:3B:6C:CB:02:8E:0E:B1:A8:05:B3:E7:27:1A:45:9B
X509v3 Authority Key Identifier:
keyid:76:7B:C0:2A:58:59:62:3F:56:3E:A8:4A:6B:B0:A2:92:0D:5B:3E:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:8a:b2:8c:e7:74:3e:d0:3e:f0:bf:9e:79:34:ed:ab:d5:8b:
3b:45:04:0a:53:d8:ce:88:6d:6a:10:97:25:91:81:44:b6:21:
75:d4:29:a0:5f:3a:8a:9d:eb:39:3f:a2:89:bb:83:b9:e1:23:
88:4f:e4:76:6f:86:d9:26:07:b5:23:d1:94:4a:81:0a:91:01:
73:fd:ce:d9:4b:f3:10:ad:a6:45:f7:e0:3a:43:04:d6:9c:9e:
d5:f0:26:a2:20:39:b1:56:0d:75:dd:8e:07:73:32:4c:32:08:
45:aa:fd:cb:99:d2:bf:1e:cf:3c:92:1c:30:13:cf:f8:d6:00:
3e:9e:1e:e4:45:1c:97:01:b4:18:ed:3c:f4:4c:11:9e:34:30:
8b:e3:2f:b8:4d:86:d0:5a:e9:d2:79:a6:f5:bd:1e:bc:b3:72:
ce:18:15:2b:ef:36:01:a9:d3:4b:21:9e:14:ff:65:da:9c:c3:
1f:f0:0d:23:50:27:9b:4b:1e:48:b6:1b:4a:66:5d:a7:87:e2:
60:81:ab:37:ee:3d:22:d3:02:08:7e:61:5a:70:22:45:6a:29:
26:af:d8:f1:45:14:20:d1:dd:dc:de:69:14:77:07:2e:1a:0a:
91:53:ea:e7:73:1f:95:2c:f0:b7:fa:2b:a9:9c:12:0c:25:11:
bd:d5:68:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 00:01:59 2024 by rpki-client on console-ams.rpki-client.org