Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.mft
File: IOagEH1ompNwtiKVGkSWRsw4tZA.mft (raw, json)
Hash identifier: lNx+FRslxCY92pLmRoDJlXNSW7hWXWVMgumQy9HxWaQ=
Subject key identifier: 75:EC:B9:A9:72:30:76:D2:6B:5A:74:74:C0:C3:12:CD:3E:3A:11:02
Authority key identifier: 20:E6:A0:10:7D:68:9A:93:70:B6:22:95:1A:44:96:46:CC:38:B5:90
Certificate issuer: /CN=20e6a0107d689a9370b622951a449646cc38b590
Certificate serial: 018F324FFCA35CEBE6554AA253BB3FB4016D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IOagEH1ompNwtiKVGkSWRsw4tZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.mft
Manifest number: 0CCB
Signing time: Wed 01 May 2024 04:00:53 +0000
Manifest this update: Wed 01 May 2024 04:00:53 +0000
Manifest next update: Thu 02 May 2024 04:00:53 +0000
Files and hashes: 1: IOagEH1ompNwtiKVGkSWRsw4tZA.crl (hash: f2wW4zpWFYP+eFT2JByVYJSJqj2jrwtEPXng/lVwCZw=)
2: JOfthZq066qDLVrfs367kPMm9Xk.roa (hash: vFjM9t10yd/W/kA1FoYlqFqqbk/LSbuXSA6THvEE+Bc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IOagEH1ompNwtiKVGkSWRsw4tZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 May 2024 22:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:32:4f:fc:a3:5c:eb:e6:55:4a:a2:53:bb:3f:b4:01:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20e6a0107d689a9370b622951a449646cc38b590
Validity
Not Before: May 1 04:00:53 2024 GMT
Not After : May 2 04:00:53 2024 GMT
Subject: CN=75ecb9a9723076d26b5a7474c0c312cd3e3a1102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:06:8c:30:b4:70:11:80:dd:40:0c:f9:79:00:
4d:b3:bf:52:53:ec:ad:1e:d6:e2:1d:8f:dd:78:b3:
21:fc:38:73:cd:79:38:f1:0e:bf:55:9b:8a:b9:d5:
b3:f1:48:a8:e3:61:b8:2c:ef:f5:f4:a6:96:76:5f:
be:d4:0d:ae:69:7f:09:c1:8a:b4:04:23:4c:55:0d:
3f:da:9c:76:e8:6a:7a:d5:47:12:df:5b:3e:c6:e3:
30:03:b6:de:86:e5:ee:94:c3:6d:4c:e5:80:8d:67:
98:61:f8:69:89:d6:64:4d:2f:59:fa:08:06:33:f6:
47:43:db:37:44:6c:a9:3d:f5:8d:40:89:43:ab:ad:
59:c8:e4:df:17:12:44:02:6c:c3:e7:66:dc:e9:fa:
79:00:da:2d:58:c0:ef:5e:dc:3e:96:65:2f:51:3e:
91:3b:2f:c7:79:67:7b:49:d9:7e:17:d5:e3:6d:ba:
26:29:8c:cc:3a:7d:0a:40:1a:62:c6:14:5a:4e:40:
6f:92:a0:f9:ea:a0:99:51:d0:3e:75:18:aa:1e:3d:
06:0c:65:db:75:ec:b3:f4:ad:d0:46:d1:7d:66:6e:
c1:b0:04:c5:66:6d:42:38:06:a0:06:1c:65:0f:d7:
76:92:3f:80:61:d3:e0:92:1c:87:e7:dd:c1:91:8d:
e0:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:EC:B9:A9:72:30:76:D2:6B:5A:74:74:C0:C3:12:CD:3E:3A:11:02
X509v3 Authority Key Identifier:
keyid:20:E6:A0:10:7D:68:9A:93:70:B6:22:95:1A:44:96:46:CC:38:B5:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IOagEH1ompNwtiKVGkSWRsw4tZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:dd:eb:a0:54:51:22:38:c0:be:62:7f:6a:7b:74:23:23:33:
15:45:f4:b1:b4:5e:0c:c6:36:90:89:63:6e:16:ec:a1:07:82:
bb:90:45:55:77:05:a1:7f:d0:92:e3:83:30:b5:c7:fa:f0:99:
87:99:89:ac:cb:17:96:9d:f0:29:9a:ec:30:be:3c:23:1e:ac:
d5:b9:95:1e:2a:4d:73:7e:d2:e1:c3:b7:6b:d1:34:43:bc:d2:
1f:3a:14:2d:90:95:48:13:7f:7c:db:40:d5:bf:c4:7c:d5:f2:
24:0a:97:5b:76:9a:28:7b:63:80:f5:d3:17:a5:a7:06:93:60:
83:4e:96:81:db:16:85:0b:15:fe:20:9d:ba:a6:fb:3f:73:8c:
56:0f:27:6d:fc:3c:0b:d6:f2:dc:28:37:c7:72:ce:eb:86:e7:
a3:e3:98:03:d5:c1:20:18:46:f3:2e:ca:f0:68:89:16:14:18:
ff:0a:95:41:08:ee:c9:0e:d3:d5:53:a6:de:1c:ef:e5:01:a2:
a0:47:8f:4c:13:57:75:46:6b:5c:c1:36:47:d3:ff:99:3f:49:
87:4f:0d:5c:97:8b:de:0e:89:64:c4:28:04:71:c0:30:9b:9f:
a5:c6:8b:99:9e:22:eb:47:67:8d:7b:c3:9f:57:01:d1:24:45:
dd:93:99:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 04:58:33 2024 by rpki-client on console-ams.rpki-client.org