Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
File: XYHR_0WxVHwAqEtG75nsot-9Rbw.mft (raw, json)
Hash identifier: Oo3IG/o0AdbxJcOjPbBYGCaLqxZb5bXfIhY4YxTiPq0=
Subject key identifier: E1:53:30:0D:70:13:43:1F:DC:4D:09:6A:92:A5:20:29:43:C8:5F:06
Authority key identifier: 5D:81:D1:FF:45:B1:54:7C:00:A8:4B:46:EF:99:EC:A2:DF:BD:45:BC
Certificate issuer: /CN=5d81d1ff45b1547c00a84b46ef99eca2dfbd45bc
Certificate serial: 018F87484528C20945D0F46FFDA941616898
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
Manifest number: 117A
Signing time: Fri 17 May 2024 16:00:11 +0000
Manifest this update: Fri 17 May 2024 16:00:11 +0000
Manifest next update: Sat 18 May 2024 16:00:11 +0000
Files and hashes: 1: EWGChI0bHJxCuYsK5zuh_D15l1M.roa (hash: 6NX+ldamI2eLpSqpUVeIF8kZfg57OLrjdgTTnCw8LGg=)
2: XYHR_0WxVHwAqEtG75nsot-9Rbw.crl (hash: Gt2pVl9dsmKEF/nIrJhBeGd0L/SpU9JsMqJx5wo1X8U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:48:45:28:c2:09:45:d0:f4:6f:fd:a9:41:61:68:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d81d1ff45b1547c00a84b46ef99eca2dfbd45bc
Validity
Not Before: May 17 16:00:11 2024 GMT
Not After : May 18 16:00:11 2024 GMT
Subject: CN=e153300d7013431fdc4d096a92a5202943c85f06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a6:be:7d:78:ad:ae:c6:0f:d8:64:f4:70:91:
78:30:59:e4:ed:fe:6d:8f:7b:5a:3c:df:fd:a9:fd:
47:54:37:b0:8d:a3:cf:cc:ff:a2:02:01:67:72:2a:
35:55:29:f7:ed:67:fa:f7:7d:b3:79:61:f5:5f:af:
1d:68:69:1d:81:d2:7c:0a:9c:f2:c2:7e:93:e5:5d:
9a:e2:0f:72:d1:29:5b:ba:ce:94:89:9d:d9:5b:2e:
fa:1f:05:7c:40:fc:e9:29:5c:1a:db:56:59:5a:e3:
11:d7:35:de:e7:56:b7:68:1b:6c:63:44:71:2c:49:
6a:44:15:ac:34:d1:d1:60:fe:4d:48:07:d7:d7:02:
d4:82:42:81:41:ef:33:f7:9b:4f:f7:69:1e:a6:35:
0a:bf:36:95:5a:84:fe:09:fa:79:d5:61:e3:88:36:
d4:d5:46:ed:23:c1:2a:37:f7:48:99:b4:13:da:f0:
84:1d:f5:cd:73:f5:8e:d8:7e:a8:f2:ab:9f:26:dd:
58:ef:a7:5d:72:50:08:bc:f1:fa:38:d4:46:55:9d:
73:04:01:3d:91:3d:ad:93:92:b7:66:e9:0d:bf:43:
12:1c:ef:e0:9b:16:ec:aa:f7:15:c0:7e:84:d2:fb:
c4:c3:d2:c3:fb:04:e1:ec:4f:4d:dd:ad:35:ca:41:
b5:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:53:30:0D:70:13:43:1F:DC:4D:09:6A:92:A5:20:29:43:C8:5F:06
X509v3 Authority Key Identifier:
keyid:5D:81:D1:FF:45:B1:54:7C:00:A8:4B:46:EF:99:EC:A2:DF:BD:45:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:fa:36:c1:da:06:61:d4:6e:25:81:f2:ef:dc:ea:19:ef:1b:
29:7c:07:55:9f:c4:23:74:84:3d:09:82:c9:7b:87:39:5a:f0:
ab:44:81:03:e4:e1:0a:0e:84:77:31:56:b4:27:43:6b:7f:28:
14:79:5c:65:15:4f:9f:d7:7a:ec:25:b9:a9:77:54:97:f7:30:
6c:91:52:af:29:dc:6a:c0:21:29:5f:cd:6f:42:cd:66:58:b0:
bc:44:0b:2d:06:73:00:46:57:1f:6a:c3:23:2a:f9:2d:4c:53:
7e:37:a8:18:9a:a0:05:b2:24:b5:3d:0b:3e:e9:b0:81:4c:fc:
f6:b3:4e:54:82:85:2b:ee:5b:9e:d0:0e:9a:96:6e:5a:61:f3:
21:98:04:e5:36:3f:85:db:a0:e5:b9:97:c9:5d:c2:9c:ae:9f:
c4:47:b1:70:59:4d:de:47:82:21:e9:e7:30:35:0e:49:2a:ec:
fa:d2:36:95:77:b5:43:c7:6b:2d:0f:3c:a1:7b:59:12:a2:87:
a7:b7:1c:3d:47:fc:af:88:44:4e:85:32:5c:b3:0b:eb:8e:59:
d1:b2:fe:06:8a:6a:01:38:ad:bb:2a:f6:30:d4:31:c5:1a:0d:
c4:40:13:79:04:fb:05:dd:0f:5d:74:49:c1:a0:a8:44:3c:65:
2c:38:51:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 23:56:26 2024 by rpki-client on console-fra.rpki-client.org