Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/5c1eec-3700-49bb-bfee-65d373ab573f/1/2BhDAyFk4LYu1tp8Z1V79GiV0PA.mft
File: 2BhDAyFk4LYu1tp8Z1V79GiV0PA.mft (raw, json)
Hash identifier: ZAThXVbYgKpZKzENga46vszmedHgNbv3cMR2v/Lna6E=
Subject key identifier: DB:72:F1:D4:1B:80:1C:F4:EB:EB:ED:4A:9F:4F:DB:CB:EB:0B:7A:7A
Authority key identifier: D8:18:43:03:21:64:E0:B6:2E:D6:DA:7C:67:55:7B:F4:68:95:D0:F0
Certificate issuer: /CN=d81843032164e0b62ed6da7c67557bf46895d0f0
Certificate serial: 018F9A992CA544A38805DAF3EA8F20771771
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2BhDAyFk4LYu1tp8Z1V79GiV0PA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/5c1eec-3700-49bb-bfee-65d373ab573f/1/2BhDAyFk4LYu1tp8Z1V79GiV0PA.mft
Manifest number: 0287
Signing time: Tue 21 May 2024 10:01:20 +0000
Manifest this update: Tue 21 May 2024 10:01:20 +0000
Manifest next update: Wed 22 May 2024 10:01:20 +0000
Files and hashes: 1: 2BhDAyFk4LYu1tp8Z1V79GiV0PA.crl (hash: GTQuha1HlNBMT0GEdNYvjwqHQwBH7tQ6PiPS9pmQBWs=)
2: In5EUE5Wgp24euuNLVNod1QOpz4.roa (hash: /WbAcgDIPg2zPlLoOIWiasf61H6ZgC+y58gsnQzl9Ic=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/5c1eec-3700-49bb-bfee-65d373ab573f/1/2BhDAyFk4LYu1tp8Z1V79GiV0PA.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/5c1eec-3700-49bb-bfee-65d373ab573f/1/2BhDAyFk4LYu1tp8Z1V79GiV0PA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2BhDAyFk4LYu1tp8Z1V79GiV0PA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 10:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9a:99:2c:a5:44:a3:88:05:da:f3:ea:8f:20:77:17:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d81843032164e0b62ed6da7c67557bf46895d0f0
Validity
Not Before: May 21 10:01:20 2024 GMT
Not After : May 22 10:01:20 2024 GMT
Subject: CN=db72f1d41b801cf4ebebed4a9f4fdbcbeb0b7a7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6c:68:55:a0:3d:51:3b:43:85:84:92:81:38:
5f:81:21:f9:db:85:ea:ad:89:92:68:7f:e1:4f:20:
a7:98:44:2c:ea:05:20:f3:81:23:e2:4b:ba:a1:f3:
f3:d4:36:e6:9b:ab:16:a6:f6:4a:6d:ba:95:56:d9:
4f:0f:dd:e7:9f:34:57:01:49:25:24:9b:7a:fe:b6:
e1:f8:d3:1f:3e:a8:e9:b1:d2:65:ab:f0:4c:34:a0:
40:0a:1f:65:bd:44:dc:38:f4:61:ad:fa:51:7e:fe:
d8:a9:f0:04:6c:75:d2:9e:67:06:0b:09:68:af:8a:
30:96:58:12:53:79:b2:dd:e6:09:f1:35:29:99:b5:
66:05:b9:fb:26:9b:76:e0:b0:dc:0e:26:8a:94:a4:
f9:85:e4:36:b5:dc:56:44:fd:97:b9:6a:48:17:92:
1a:fd:73:3f:43:7a:bb:a6:89:13:89:6e:9f:ec:8c:
cf:b8:29:b6:2c:01:7a:77:18:5d:74:dd:33:1c:5a:
30:6b:a4:be:b5:b0:c2:5c:2a:e0:8b:c2:4c:99:ab:
72:1f:ef:d6:8d:2f:45:77:f2:1b:78:09:e0:68:be:
64:cf:3b:b3:6a:f1:45:ec:78:99:af:1a:83:55:4e:
32:87:ac:a9:d2:b7:77:75:7d:78:bd:d5:8e:88:68:
71:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:72:F1:D4:1B:80:1C:F4:EB:EB:ED:4A:9F:4F:DB:CB:EB:0B:7A:7A
X509v3 Authority Key Identifier:
keyid:D8:18:43:03:21:64:E0:B6:2E:D6:DA:7C:67:55:7B:F4:68:95:D0:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2BhDAyFk4LYu1tp8Z1V79GiV0PA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/5c1eec-3700-49bb-bfee-65d373ab573f/1/2BhDAyFk4LYu1tp8Z1V79GiV0PA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/5c1eec-3700-49bb-bfee-65d373ab573f/1/2BhDAyFk4LYu1tp8Z1V79GiV0PA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:0b:16:42:51:ed:2c:4e:34:e6:44:d3:e4:73:e0:10:6e:61:
59:a9:21:92:b2:f9:74:5b:83:27:15:77:2c:27:7d:31:c7:9a:
8b:6f:ed:48:fb:3a:8b:29:3a:fb:fb:6f:53:37:37:ac:55:f4:
64:8b:5a:7c:1e:b4:cf:04:64:85:ed:17:c8:ff:ab:f6:7b:ca:
8e:46:bb:bc:dd:32:4a:a1:81:45:a9:2f:fa:63:0f:c1:41:5b:
00:e5:69:46:6b:55:d8:6b:10:ee:76:ed:05:04:3a:e7:51:b0:
6d:df:4a:a6:7b:77:f9:e7:f4:29:b8:4f:1d:0a:01:2c:af:98:
52:63:9b:38:fa:cf:cb:7b:ad:3c:75:84:bb:16:de:49:ae:0c:
40:7c:f4:ed:ed:95:89:38:ac:a0:ce:c9:32:d6:16:f0:99:ff:
13:a3:e5:61:ce:73:e2:f0:19:8d:2e:20:95:a1:0e:99:fc:01:
de:3a:24:3b:14:e8:2a:b9:61:4c:a5:60:f1:2d:44:0d:f5:bd:
39:ca:dc:27:13:b6:5e:26:3f:cf:18:3d:59:40:62:d5:62:7a:
36:f5:b0:90:e5:c6:24:7f:ba:c1:23:d9:fa:90:f3:56:32:df:
4c:1e:87:a4:d2:44:9e:19:2f:ce:fc:ec:6a:10:80:21:44:39:
40:2a:ba:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 17:21:04 2024 by rpki-client on console-ams.rpki-client.org