Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.mft
File: GDDmA-nKjAXUwbxisLdue9nRiQk.mft (raw, json)
Hash identifier: kf8zAMepgBp5TJhEqWKFNqR+uou9Vdkmcpdi81Z4aVs=
Subject key identifier: 85:7F:43:45:BA:B6:B4:33:E1:4A:53:C0:74:23:4C:8B:4F:EB:C9:74
Authority key identifier: 18:30:E6:03:E9:CA:8C:05:D4:C1:BC:62:B0:B7:6E:7B:D9:D1:89:09
Certificate issuer: /CN=1830e603e9ca8c05d4c1bc62b0b76e7bd9d18909
Certificate serial: 018F4D5BD3C57C73A8FD0EBE746945A8E93E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GDDmA-nKjAXUwbxisLdue9nRiQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.mft
Manifest number: 115B
Signing time: Mon 06 May 2024 10:03:34 +0000
Manifest this update: Mon 06 May 2024 10:03:34 +0000
Manifest next update: Tue 07 May 2024 10:03:34 +0000
Files and hashes: 1: GDDmA-nKjAXUwbxisLdue9nRiQk.crl (hash: D0sWqMtucgBQzlhRvf66SE6zdjt13i9lQZSbMiKdZHY=)
2: j4tQmSNO_txZVSDWZn63cjYtJXc.roa (hash: 4sFbf7wY9sk8H9Z7lIQg2WrYmQLPwp62M1bcQhWKBTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/GDDmA-nKjAXUwbxisLdue9nRiQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 10:03:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4d:5b:d3:c5:7c:73:a8:fd:0e:be:74:69:45:a8:e9:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1830e603e9ca8c05d4c1bc62b0b76e7bd9d18909
Validity
Not Before: May 6 10:03:34 2024 GMT
Not After : May 7 10:03:34 2024 GMT
Subject: CN=857f4345bab6b433e14a53c074234c8b4febc974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:4e:4b:33:a0:8d:d5:f1:e0:61:f0:3c:e2:77:
f2:2b:93:30:2a:59:01:3a:a5:72:76:23:0b:b6:62:
f9:e9:90:db:60:c6:b7:4a:dc:e2:fe:e0:0f:13:fb:
73:5e:eb:cc:10:5a:23:9c:0e:ac:c8:13:2b:be:c9:
12:53:10:0c:0e:f9:76:05:28:72:70:01:e6:8e:b5:
d5:d4:da:75:d0:2a:78:2f:ce:92:36:6d:23:e3:8b:
bf:b1:71:30:11:66:dd:75:64:9c:49:f3:eb:c0:d0:
d0:58:01:27:41:75:1f:0f:60:65:52:06:9b:a8:7e:
85:0b:46:c7:f2:4c:4b:2c:6b:6c:56:d8:20:b7:87:
a6:16:19:60:60:bc:3d:4a:17:5c:a7:a7:55:f4:fa:
24:b5:e5:47:4b:33:d7:94:74:c0:83:9d:35:f3:d5:
63:e3:65:bc:52:c3:58:d2:92:71:e9:59:b6:33:16:
ce:f3:11:10:d3:31:07:e4:b7:14:f4:c5:f9:ed:d0:
6a:6f:cd:3f:d8:c4:ab:9d:a9:e7:07:22:44:5e:9c:
49:3a:fc:f6:22:60:cb:23:e8:38:52:bb:8e:3a:17:
1e:2d:7f:61:98:bf:4c:b2:06:25:ee:07:96:b1:78:
50:b6:f5:fd:c5:bb:89:cd:ec:b2:d3:80:3c:fe:81:
2b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:7F:43:45:BA:B6:B4:33:E1:4A:53:C0:74:23:4C:8B:4F:EB:C9:74
X509v3 Authority Key Identifier:
keyid:18:30:E6:03:E9:CA:8C:05:D4:C1:BC:62:B0:B7:6E:7B:D9:D1:89:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GDDmA-nKjAXUwbxisLdue9nRiQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:e3:c5:2e:ad:33:41:a5:eb:e4:8b:2e:31:11:72:29:62:d3:
03:c5:b7:a1:c0:87:40:46:e9:30:17:9c:24:a3:61:85:17:93:
95:0d:f6:81:e1:f9:95:e3:c5:85:70:5f:8d:af:f5:02:bb:8d:
db:d6:30:d5:f7:2c:37:9c:70:ce:14:a9:f2:c4:2c:60:46:29:
bf:85:bb:1d:d7:75:f5:71:d0:98:0a:b0:dc:0a:64:10:8b:38:
58:1d:f5:b7:52:43:99:3b:c2:98:96:da:c9:41:55:57:44:92:
4b:23:c0:5d:67:d8:05:89:96:4e:13:32:60:bf:7d:48:50:cb:
27:70:b0:a5:30:f4:85:a9:e1:53:fa:09:cc:b3:fe:3a:b1:b5:
b6:ae:40:c4:24:d9:ea:4d:be:9b:f6:fe:0e:ec:5d:c2:68:af:
05:8e:fa:82:87:11:59:0c:c2:f9:41:27:e2:46:0f:7d:c9:f9:
40:70:96:8f:82:6e:ec:7d:d7:0c:02:47:db:bb:e2:e9:db:b4:
31:09:35:55:c8:9f:9d:b0:50:e8:d6:ea:0e:22:de:10:e8:c6:
fb:a5:a1:ca:df:b4:93:20:31:d4:5c:77:5a:fc:29:f3:bd:ca:
18:c3:2f:31:96:ea:1e:bd:36:48:41:9a:c8:a3:6b:96:72:8c:
c6:b7:96:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 15:46:07 2024 by rpki-client on console-ams.rpki-client.org