Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.mft
File: ib1U59acFH1rVvjGognT3q6id90.mft (raw, json)
Hash identifier: Xk0z/rnFFwqaEQD5Clz8kUuzTTyh7h1u4/pTh+s2aG4=
Subject key identifier: CB:B2:41:CD:5E:DF:AD:D0:42:34:02:E2:81:1C:21:5A:32:74:7D:ED
Authority key identifier: 89:BD:54:E7:D6:9C:14:7D:6B:56:F8:C6:A2:09:D3:DE:AE:A2:77:DD
Certificate issuer: /CN=89bd54e7d69c147d6b56f8c6a209d3deaea277dd
Certificate serial: 018F855A1D0C7CB79D8F1E88E7385E9602B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ib1U59acFH1rVvjGognT3q6id90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.mft
Manifest number: 0C24
Signing time: Fri 17 May 2024 07:00:26 +0000
Manifest this update: Fri 17 May 2024 07:00:26 +0000
Manifest next update: Sat 18 May 2024 07:00:26 +0000
Files and hashes: 1: IO35Muv-BryoM0I1ZKBw4gQAssI.roa (hash: /HIdjuk2TTG+JsiNcy4Oe8mhBPP53nj2Gqq6oeor96M=)
2: ib1U59acFH1rVvjGognT3q6id90.crl (hash: /uzFyLFZ3B8U3H3bA67tjw19/l81UYbWBs/5kUUbcpA=)
3: pKI3eBEQp68WDIQEUJhwqRWPYsc.roa (hash: IpOvW8QzxMOVNRrSBlsgKqV3tRaohypVBi9YY6Hpvqw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.mft
rsync://rpki.ripe.net/repository/DEFAULT/ib1U59acFH1rVvjGognT3q6id90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 07:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:85:5a:1d:0c:7c:b7:9d:8f:1e:88:e7:38:5e:96:02:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89bd54e7d69c147d6b56f8c6a209d3deaea277dd
Validity
Not Before: May 17 07:00:26 2024 GMT
Not After : May 18 07:00:26 2024 GMT
Subject: CN=cbb241cd5edfadd0423402e2811c215a32747ded
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a3:f3:0c:c2:5a:ab:f4:8a:42:66:f2:c5:93:
42:aa:c4:45:2a:4f:86:b2:a9:b1:2f:24:7b:4b:6a:
89:40:87:c4:f7:c1:35:15:40:9b:80:1d:e5:ea:20:
aa:c1:4d:4b:70:04:cf:ca:79:df:0b:9e:f1:3f:b6:
62:27:9d:1a:f2:83:0e:fa:a9:da:6c:0f:1f:4a:77:
69:e4:54:a8:76:bf:9b:8b:e1:0b:c4:42:15:77:e5:
84:6a:71:7f:49:a4:ff:fb:1b:d7:e4:17:64:f9:35:
fc:60:bb:9b:09:b6:a1:be:57:64:3b:9c:66:80:bd:
9c:d3:7b:20:44:e3:41:9f:31:ae:97:5b:98:7d:6f:
7a:00:49:8f:fb:34:15:cd:e7:26:37:f0:22:fa:62:
2b:77:c0:f6:9f:cf:77:d6:50:bf:0e:8f:d5:fc:49:
97:9a:1e:b4:f8:e6:95:3f:a8:ca:7b:83:5c:1b:12:
1b:b1:63:f2:13:74:e0:23:3c:37:c3:c9:ed:72:69:
48:21:4d:c4:de:34:dc:73:ab:54:f7:7e:31:9f:56:
32:fd:05:2c:a5:0d:bd:47:99:ce:3c:b8:50:51:a2:
7e:66:75:a7:5b:1a:98:a5:88:85:1e:88:de:76:b2:
52:d3:d7:83:01:32:8e:47:68:e7:af:09:a1:86:50:
a2:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:B2:41:CD:5E:DF:AD:D0:42:34:02:E2:81:1C:21:5A:32:74:7D:ED
X509v3 Authority Key Identifier:
keyid:89:BD:54:E7:D6:9C:14:7D:6B:56:F8:C6:A2:09:D3:DE:AE:A2:77:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ib1U59acFH1rVvjGognT3q6id90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e5:80:e3:65:76:b2:82:8c:55:39:2b:9b:04:e4:59:76:52:66:
f9:8a:bf:be:d5:36:f1:e7:c2:1d:6c:c3:df:6b:54:3d:39:b6:
6a:12:9b:5b:d9:50:f5:32:9c:59:5d:54:6e:de:ba:28:c0:74:
ef:61:48:be:24:de:ce:30:25:bc:75:9a:0a:ef:b5:da:bd:92:
be:16:f6:26:34:b3:90:26:34:46:30:68:87:e1:4e:10:19:ab:
ad:27:8a:ed:e9:2d:4b:61:98:60:d2:6a:4d:05:a6:8f:f3:38:
b3:86:77:8c:f4:76:27:34:89:d8:96:51:61:c5:b1:dd:56:0a:
52:80:da:f1:f7:71:a9:35:e2:c8:84:68:58:9e:b1:2b:86:8e:
fa:d4:e1:bc:9a:9f:17:b8:4a:22:90:ca:58:01:39:92:8b:27:
04:21:d8:80:4a:92:af:85:69:2b:24:2c:04:87:4b:42:f4:60:
57:6e:c6:ac:68:e3:af:ef:9f:76:9b:d1:f9:d3:50:4b:e1:b8:
e1:c3:12:8c:df:a2:18:b0:c2:a9:2a:ea:25:fa:84:10:44:7c:
7b:a2:19:62:1f:14:89:31:88:b2:b1:8e:c4:8a:cf:89:45:6f:
3f:40:05:db:be:8e:7e:b1:cd:00:db:5f:62:b7:22:81:56:50:
09:28:70:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 10:38:35 2024 by rpki-client on console-fra.rpki-client.org