Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.mft
File: 9zHDObGGFyK__oZyGDFM4SlcPIU.mft (raw, json)
Hash identifier: W70bBzHJv7a2I66hOpDv4nkvdcZkF5jF9tPDQFPcnkE=
Subject key identifier: 2B:A0:1C:8D:51:F7:F6:36:15:16:AE:63:A6:FB:A2:8F:DA:16:99:08
Authority key identifier: F7:31:C3:39:B1:86:17:22:BF:FE:86:72:18:31:4C:E1:29:5C:3C:85
Certificate issuer: /CN=f731c339b1861722bffe867218314ce1295c3c85
Certificate serial: 01906C05A39D050900FC7289BF8A6D7AC5D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9zHDObGGFyK__oZyGDFM4SlcPIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.mft
Manifest number: 11EF
Signing time: Mon 01 Jul 2024 02:00:27 +0000
Manifest this update: Mon 01 Jul 2024 02:00:27 +0000
Manifest next update: Tue 02 Jul 2024 02:00:27 +0000
Files and hashes: 1: 9zHDObGGFyK__oZyGDFM4SlcPIU.crl (hash: GGKnHIjlhydyuPeHWjdjGGEPXyTYKLW2xQy77neSEXU=)
2: mT_DIrGCLzz_x92heX52XrOVuJg.roa (hash: 1f0prCJ6QvXUd34zCEpoLRKZDMX499ysvBpd2B/XLXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.mft
rsync://rpki.ripe.net/repository/DEFAULT/9zHDObGGFyK__oZyGDFM4SlcPIU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 02 Jul 2024 02:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6c:05:a3:9d:05:09:00:fc:72:89:bf:8a:6d:7a:c5:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f731c339b1861722bffe867218314ce1295c3c85
Validity
Not Before: Jul 1 02:00:27 2024 GMT
Not After : Jul 2 02:00:27 2024 GMT
Subject: CN=2ba01c8d51f7f6361516ae63a6fba28fda169908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:62:d8:f4:52:3a:e5:a9:3f:12:dc:0a:7d:fb:
af:62:72:47:49:93:3a:d0:09:2b:dc:5a:77:2c:94:
ca:98:99:62:25:0f:e9:56:23:bc:12:67:cb:e9:18:
54:f9:13:75:20:50:16:0e:9b:37:95:a2:5f:7e:48:
2f:5d:49:77:58:55:ba:1d:92:a8:5f:e2:c0:07:21:
60:01:c3:cc:4a:76:0e:45:2c:25:83:db:cc:5a:24:
dd:d0:d7:7b:ba:bd:2d:a3:a4:1f:b8:a2:4e:9d:68:
f3:b5:07:54:76:7d:39:11:d1:71:77:d2:a1:43:9d:
9b:6a:19:7e:e3:a0:71:25:0f:83:1b:48:71:5d:25:
87:70:51:66:c9:5c:13:c7:7c:17:0a:11:a1:a1:35:
b6:10:40:8a:8c:dc:a9:6a:3a:5f:7b:9d:97:86:20:
8d:af:18:b8:c8:85:df:0a:e5:9c:0e:f2:3c:38:09:
c6:ad:0e:95:98:c6:7c:57:41:ed:87:09:d7:fa:92:
52:b3:d4:cf:b9:6b:d5:48:ab:22:14:40:76:2e:36:
13:e9:f7:c5:89:65:92:fa:2e:31:cf:cd:f6:5c:72:
bc:8d:23:7a:6d:3d:29:dd:bc:43:f6:ca:64:4d:4c:
c3:e1:f7:c5:7e:e1:e6:1a:29:96:6f:4f:55:1c:2a:
40:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:A0:1C:8D:51:F7:F6:36:15:16:AE:63:A6:FB:A2:8F:DA:16:99:08
X509v3 Authority Key Identifier:
keyid:F7:31:C3:39:B1:86:17:22:BF:FE:86:72:18:31:4C:E1:29:5C:3C:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9zHDObGGFyK__oZyGDFM4SlcPIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:5b:ec:24:8c:8d:03:bb:2c:a6:8d:75:66:12:2a:82:0a:e9:
f5:28:51:3b:55:99:6a:0f:28:0f:8b:62:7b:11:7b:8d:7b:05:
98:9a:aa:18:87:61:1c:17:76:dd:e0:c1:7c:21:5e:20:1d:0d:
93:d3:a7:ee:b1:a1:8e:c5:58:c0:d2:22:b8:3f:8b:e2:82:4e:
e6:a2:cf:d1:85:dd:c3:c3:ad:42:55:b6:b0:33:96:e3:f7:14:
f6:c8:ca:cd:90:a7:16:2f:ea:03:7f:71:70:aa:a8:5c:30:9f:
07:b6:e8:01:c0:f0:e3:e0:c4:47:e0:dd:44:f2:bd:ca:8c:88:
c7:57:d2:f6:18:f8:d6:16:33:dd:8f:49:fb:e9:4e:4f:08:a6:
29:35:50:c5:b1:a8:74:c0:f9:73:ec:99:e4:93:d1:e3:a5:d5:
bf:5c:6c:c3:07:62:a6:d4:6f:c9:62:cc:2b:53:36:9f:4f:65:
0f:bd:9a:a0:43:b7:bd:2b:67:cb:16:6a:23:c8:86:80:24:1c:
9d:b2:53:c8:9b:65:69:46:46:f3:7e:e8:71:fc:1e:81:f6:5d:
ca:f7:53:cc:34:21:7d:37:f5:50:4d:f8:70:9d:14:ea:86:f0:
fc:cf:99:6a:86:6b:22:73:ac:cf:1a:c0:33:64:a3:d0:7e:f1:
f7:40:a0:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 10:37:18 2024 by rpki-client on console-ams.rpki-client.org