Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
File: 2KVuLWOsXam-012gHL-tIl8EvrA.mft (raw, json)
Hash identifier: RLekezTHk+yw14GRnoNff7azqOe3/aQmojswnOryHKE=
Subject key identifier: 80:46:C3:DF:B3:33:F1:11:E6:0A:0F:23:1E:5F:F7:28:7A:DA:DD:25
Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
Certificate issuer: /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Certificate serial: 018F47FC460FA556F7BBD76947A785A88D34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
Manifest number: 1159
Signing time: Sun 05 May 2024 09:01:06 +0000
Manifest this update: Sun 05 May 2024 09:01:06 +0000
Manifest next update: Mon 06 May 2024 09:01:06 +0000
Files and hashes: 1: 2KVuLWOsXam-012gHL-tIl8EvrA.crl (hash: JBrdHVyTKz+I9KLHbPQf5ppAawPJqMR6JfrIUsInxW4=)
2: E7xku3mxea4E7tDiPaH8IhNND4U.roa (hash: fCt795Ad8rD79d8StSBgkACtHH3FxJ0eL/mqLg3Ov2Y=)
3: h8XPCEl3Vo4TPJ9-ZN_Uy7RRsW8.roa (hash: BEY557N+kqWrh68Nk7TPzU6/hYu4ljswskjP4iClE/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:47:fc:46:0f:a5:56:f7:bb:d7:69:47:a7:85:a8:8d:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Validity
Not Before: May 5 09:01:06 2024 GMT
Not After : May 6 09:01:06 2024 GMT
Subject: CN=8046c3dfb333f111e60a0f231e5ff7287adadd25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:22:1f:a4:11:90:81:bc:c9:85:2a:5a:59:ac:
90:08:28:db:0f:bf:d7:af:3d:48:f7:43:20:00:7f:
54:b6:dc:65:6a:36:e5:d4:41:45:17:20:16:5c:8f:
9b:14:4a:36:73:8b:db:6f:c8:27:87:8e:bd:7f:c1:
92:02:35:65:8b:65:c6:e3:5a:ea:52:7a:41:e4:1f:
be:2b:25:be:ae:d3:2a:a8:0d:bf:37:8d:0d:55:4c:
db:69:d6:cb:73:f7:46:07:dc:59:97:2e:11:56:92:
a0:5c:90:20:10:ae:f4:2e:0c:43:47:78:84:81:df:
40:19:5b:d1:cd:9d:0d:84:a6:80:52:45:1c:2c:5f:
92:fa:21:39:fa:f1:8e:bc:19:bd:c1:5f:7c:b7:3c:
c4:c6:a5:65:e3:1b:83:ae:9a:fc:9b:79:3b:ea:04:
5b:53:fb:57:85:fa:70:5c:6c:35:b2:ef:23:da:38:
eb:11:5d:e9:57:59:51:ae:4b:fe:a9:b2:22:bd:86:
73:c5:b5:e1:e8:4e:50:4e:c1:2c:97:f5:26:2c:7e:
b8:7b:78:a8:3f:51:32:d6:a5:4d:ad:57:3a:e9:8c:
cc:51:66:02:ff:36:24:06:be:d5:a5:f0:4a:78:3e:
7e:81:86:30:cb:d1:fe:02:62:51:52:c4:49:14:a9:
0f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:46:C3:DF:B3:33:F1:11:E6:0A:0F:23:1E:5F:F7:28:7A:DA:DD:25
X509v3 Authority Key Identifier:
keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:5b:56:a0:8c:7a:9e:15:fe:78:3f:65:47:fa:cb:f6:59:26:
ff:60:8e:a6:52:be:a2:01:ee:c9:45:a2:29:1f:fe:0c:93:47:
52:ab:39:94:36:f7:06:99:94:df:1f:83:b6:37:39:ee:56:2b:
db:d4:cf:2b:6c:e3:e4:74:a9:ed:7e:a4:5d:b4:ee:74:8e:5e:
b2:b7:df:27:aa:bd:a1:1a:35:f1:3f:ad:78:5f:68:50:02:ad:
bb:3a:14:b1:c0:12:53:50:e3:90:c4:98:ad:8e:ea:7e:aa:bc:
2c:6a:94:53:44:63:a0:08:85:1e:16:af:c6:22:17:f6:38:48:
d3:4b:eb:60:e5:70:d5:09:44:32:85:b7:b2:dc:79:74:3e:f8:
be:49:ac:f8:77:14:60:2f:b4:86:c6:ee:5d:8c:24:f6:66:90:
44:ee:31:b5:18:fe:93:e4:62:f9:7e:95:a7:7a:d3:0f:48:0e:
9d:17:1f:2e:c5:4a:c4:71:09:88:83:fc:f4:0f:8e:56:58:90:
5f:7f:c2:e6:4c:10:8d:3b:95:2c:72:9b:b8:78:0d:a3:1f:2a:
37:a6:66:1b:88:7d:f8:b1:de:f2:a4:8f:43:27:49:1c:ee:fb:
3e:1b:b6:46:1d:55:80:ac:31:fd:27:8e:e8:2d:ab:be:68:73:
de:79:93:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 12:25:02 2024 by rpki-client on console-ams.rpki-client.org