Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
File: 0aiWnX4yy_knZkstxDa5bnFJpis.mft (raw, json)
Hash identifier: CfufFlDT9VWx3untKVWqbysGhn7tzyiPN+ZDNJVoixY=
Subject key identifier: B7:E3:3F:CF:12:05:1D:31:F2:92:01:DC:B5:8F:ED:58:BA:64:E5:74
Authority key identifier: D1:A8:96:9D:7E:32:CB:F9:27:66:4B:2D:C4:36:B9:6E:71:49:A6:2B
Certificate issuer: /CN=d1a8969d7e32cbf927664b2dc436b96e7149a62b
Certificate serial: 018F38F712FCF5C740D6A8D45AC057A4CD44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
Manifest number: 0A85
Signing time: Thu 02 May 2024 11:01:07 +0000
Manifest this update: Thu 02 May 2024 11:01:07 +0000
Manifest next update: Fri 03 May 2024 11:01:07 +0000
Files and hashes: 1: 0aiWnX4yy_knZkstxDa5bnFJpis.crl (hash: w01SP1u5iNJ0VdOOK11FaZxV+LWfHfQyK0e7xDMcXhk=)
2: J4osEdyK2x45JsCUMJHexFdk2GU.roa (hash: 731kAKS4bSL9/VcQ07rKgFNPzRxbZi54KbWB+hsPPWk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:38:f7:12:fc:f5:c7:40:d6:a8:d4:5a:c0:57:a4:cd:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1a8969d7e32cbf927664b2dc436b96e7149a62b
Validity
Not Before: May 2 11:01:07 2024 GMT
Not After : May 3 11:01:07 2024 GMT
Subject: CN=b7e33fcf12051d31f29201dcb58fed58ba64e574
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ad:a6:70:3e:55:47:1c:bf:42:f2:c4:0e:9f:
24:bd:fe:83:42:b6:b2:f2:ef:f0:d6:49:2b:03:ff:
0c:30:fd:77:70:b7:5d:5d:a7:f4:94:51:2b:7a:04:
8e:dd:d8:55:5e:27:25:c9:1c:59:96:ef:a3:56:41:
4b:f9:c2:82:cf:05:05:79:79:c1:6f:84:c0:4b:63:
10:e2:eb:2d:71:65:0f:9b:f7:e0:10:43:22:9c:8d:
cc:af:2f:8a:2a:b1:7c:53:0d:0f:1a:11:ed:cc:49:
da:a1:2f:d1:95:ed:a3:04:42:23:e1:90:e4:d8:f2:
07:c4:d8:f6:4a:cb:03:93:3c:8a:c0:48:53:a4:0a:
16:53:ea:01:c0:cf:d8:6a:ac:86:a9:45:20:5c:1d:
93:33:5b:ed:82:82:eb:b0:d4:7b:97:67:4d:1f:32:
99:26:d7:42:a2:6e:66:27:bd:d7:f9:0e:6a:a8:13:
25:25:ca:31:bb:e9:19:3b:2f:69:6b:02:91:37:04:
54:59:0f:49:44:a5:b5:6f:a5:14:a0:eb:31:a3:46:
1b:fd:40:d6:c1:04:fb:bb:d9:12:0a:d3:5f:d9:c2:
92:54:84:fc:e8:ce:0a:a1:71:9b:60:38:d4:ac:08:
50:97:b1:38:93:ff:88:24:c1:ef:1a:85:51:4e:26:
a5:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:E3:3F:CF:12:05:1D:31:F2:92:01:DC:B5:8F:ED:58:BA:64:E5:74
X509v3 Authority Key Identifier:
keyid:D1:A8:96:9D:7E:32:CB:F9:27:66:4B:2D:C4:36:B9:6E:71:49:A6:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:8a:d7:ca:27:cb:86:18:6c:02:39:0b:65:26:3f:2f:8f:e2:
23:7d:fc:96:00:dc:22:ef:33:aa:22:97:06:72:01:12:ff:4b:
71:a1:0b:a0:1b:db:48:c5:4c:0f:13:d9:7e:ff:6d:83:30:18:
33:84:3f:19:a3:53:3d:18:9b:df:6b:3c:be:0a:9b:ae:f8:f2:
80:97:72:f4:6a:1a:14:bf:c1:7c:0b:db:62:4b:85:22:7a:d1:
1c:1b:0f:ae:1e:ff:4b:9a:3f:c8:fe:b6:82:06:70:e6:90:da:
48:9c:f9:5c:7d:56:1d:de:13:aa:5e:9b:a5:1d:e2:1f:56:54:
fc:05:05:97:4c:e7:ec:a3:f8:96:8e:5f:9e:8a:b3:79:7b:ae:
3a:10:2f:36:f4:c9:5e:d7:68:62:1c:e3:0d:9d:81:9b:67:26:
b3:57:6c:72:49:32:4b:45:c6:7d:20:a0:14:aa:2e:bf:cb:df:
ed:a5:1b:c1:9b:34:9a:ea:03:74:2a:68:4b:ce:a8:98:5b:3e:
bc:cc:5f:bc:2e:d4:d3:f8:4d:3c:57:60:ec:d3:56:70:7b:85:
be:46:aa:c6:60:c9:2a:ee:e2:9b:a7:a2:77:50:6c:36:c0:92:
f7:c1:ac:a7:fc:69:7d:6d:1f:86:74:de:cc:e2:78:86:a7:b5:
0d:d9:63:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 13:01:45 2024 by rpki-client on console-ams.rpki-client.org