Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.mft
File: CpfAyBiGg3PEAUcVBTra9hrx2h0.mft (raw, json)
Hash identifier: MWOND5+F67gs48Z6RYobX2EXOsvwYZ+GxnwUikr/0z0=
Subject key identifier: 59:8A:BA:38:36:27:EB:69:0E:82:8A:09:8E:E0:EF:16:F8:7D:14:01
Authority key identifier: 0A:97:C0:C8:18:86:83:73:C4:01:47:15:05:3A:DA:F6:1A:F1:DA:1D
Certificate issuer: /CN=0a97c0c818868373c4014715053adaf61af1da1d
Certificate serial: 018F3362BBE8B0CAE981B0272DF695C2FA07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.mft
Manifest number: 114C
Signing time: Wed 01 May 2024 09:00:59 +0000
Manifest this update: Wed 01 May 2024 09:00:59 +0000
Manifest next update: Thu 02 May 2024 09:00:59 +0000
Files and hashes: 1: CpfAyBiGg3PEAUcVBTra9hrx2h0.crl (hash: FINfXmuS2tFRvYyPbb1Bm8B+w7YaaKUClqFgQpYgQPw=)
2: Hkh_qGKppZoXWfA5hvoelEJmXmg.roa (hash: wBt51B9KN5u8/Ub60El17ljTF9Uvdh07C9BukufdT2E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 07:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:33:62:bb:e8:b0:ca:e9:81:b0:27:2d:f6:95:c2:fa:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a97c0c818868373c4014715053adaf61af1da1d
Validity
Not Before: May 1 09:00:59 2024 GMT
Not After : May 2 09:00:59 2024 GMT
Subject: CN=598aba383627eb690e828a098ee0ef16f87d1401
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e3:6c:03:a6:75:90:56:93:54:89:c6:54:b4:
b6:71:b8:84:2b:87:0a:09:05:9d:d2:8b:d1:86:99:
71:eb:c4:cc:7a:29:7b:01:c7:d6:a4:72:01:63:07:
b2:77:95:d6:06:0e:11:98:46:11:b6:81:11:a5:9c:
24:14:32:51:fa:43:1e:0f:57:fb:f2:7d:3f:ac:14:
6f:ee:4e:fb:ae:8f:bb:48:63:89:fc:44:4a:62:55:
96:04:8c:1d:39:2c:f5:7f:84:b5:57:93:3c:0e:44:
88:9b:31:b5:27:e7:ea:a2:e3:b0:24:f1:8c:c6:ef:
9d:cd:3c:a4:61:dd:e8:6e:ab:e9:bf:59:2c:13:0e:
ce:70:6d:03:4e:d9:f6:06:d2:f4:25:06:39:20:0c:
79:1c:79:13:9e:30:4a:a7:70:fa:ff:e6:3a:58:45:
69:a7:a9:10:e8:ac:67:cf:87:b5:b6:a0:22:bf:73:
82:81:fe:b9:c7:8d:5a:72:35:a5:4d:f6:8c:e5:ec:
95:2c:fc:86:86:51:41:31:91:19:fd:31:58:29:e0:
eb:64:ad:c9:54:fa:32:97:81:29:2a:46:31:e7:2d:
89:42:61:28:07:ea:d6:9f:4f:72:22:76:91:b4:73:
d4:c2:11:8d:c0:19:ca:46:e9:4c:1e:3f:6e:28:af:
5d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:8A:BA:38:36:27:EB:69:0E:82:8A:09:8E:E0:EF:16:F8:7D:14:01
X509v3 Authority Key Identifier:
keyid:0A:97:C0:C8:18:86:83:73:C4:01:47:15:05:3A:DA:F6:1A:F1:DA:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:5c:ae:8a:ec:a4:63:10:aa:a8:e0:fb:51:b1:2c:38:50:b9:
a4:b7:60:39:4b:70:17:21:cc:53:88:3a:6a:3b:3f:08:f5:3b:
46:2e:d3:98:98:0f:bb:9a:7c:80:9d:6c:10:3f:07:e2:64:a0:
13:1a:78:42:43:17:97:d3:04:0e:d4:d8:f8:b1:7f:ec:89:82:
3a:e2:66:8a:24:3b:40:96:08:d9:a9:9b:c8:e7:cc:b6:e2:1c:
3b:7b:4c:a2:02:c6:6d:d4:04:a2:3e:3f:f5:15:4a:9e:ef:4e:
8f:1f:ce:21:aa:3c:30:6e:d8:51:9d:7f:c7:10:c1:c6:1d:27:
d4:da:27:b5:3f:25:e0:a8:02:fd:fb:6f:16:20:f5:c7:d1:1c:
9d:72:7e:fd:f5:1b:ff:a7:a2:7f:0d:7e:e2:98:31:fd:ba:56:
dc:9e:36:b1:a9:f5:08:2c:09:01:48:41:a3:c4:38:cf:10:f3:
9e:7e:36:65:9d:6c:58:dc:a4:d5:75:17:74:d7:96:2f:6e:51:
47:d0:3d:38:33:72:9e:9f:45:7d:90:75:e0:14:3e:f8:07:3d:
e5:18:f6:07:49:23:2d:3c:d3:06:67:c6:fa:92:82:2c:5a:23:
15:ae:0a:f2:9d:7d:73:19:2c:51:31:ae:99:91:21:b8:f9:61:
e2:d3:34:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 11:28:09 2024 by rpki-client on console-fra.rpki-client.org