Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
File: zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft (raw, json)
Hash identifier: bcJd9krsZ9lPZCwg2oFsX0sUKpCuFEJyb3W5SLfNy58=
Subject key identifier: D1:11:66:04:32:92:FF:B1:41:CE:90:4B:5B:C8:1B:4F:25:5C:FA:EF
Authority key identifier: CC:8D:F8:80:54:06:0D:F6:85:BB:A9:73:91:23:E8:34:2D:47:9E:84
Certificate issuer: /CN=cc8df88054060df685bba9739123e8342d479e84
Certificate serial: 018F882497A34DCAF32F1F9F336E516F9C88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
Manifest number: 1111
Signing time: Fri 17 May 2024 20:00:50 +0000
Manifest this update: Fri 17 May 2024 20:00:50 +0000
Manifest next update: Sat 18 May 2024 20:00:50 +0000
Files and hashes: 1: Zj80c-jabmgqBmuwT7BHYAk2ltw.roa (hash: nm3tNI/DFrq35tjcjDojC7wNLZ9/058qVzzK6kahNEM=)
2: zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl (hash: ktLvkVYsaBHt0ldIxKEzMumr9utYeVPimrDseyGHb10=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:24:97:a3:4d:ca:f3:2f:1f:9f:33:6e:51:6f:9c:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc8df88054060df685bba9739123e8342d479e84
Validity
Not Before: May 17 20:00:50 2024 GMT
Not After : May 18 20:00:50 2024 GMT
Subject: CN=d11166043292ffb141ce904b5bc81b4f255cfaef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c3:9b:d8:bd:c1:49:0e:a1:4a:e6:1b:23:91:
6b:72:c5:c8:13:97:ff:c0:e4:e2:01:f7:13:f4:5b:
5b:49:cf:76:57:aa:e3:11:ea:fd:49:2e:90:c8:e5:
6d:f2:94:75:83:ff:16:8c:82:39:d9:cf:43:53:ca:
f1:af:a0:06:a7:e6:1c:95:87:8d:3e:ce:77:90:2c:
29:38:69:52:0d:ff:5a:d6:12:27:6a:5c:9f:8d:85:
f0:6c:28:ed:f6:ce:c3:36:33:b1:aa:17:15:3e:98:
6e:37:a9:72:16:fd:60:2b:2a:82:7e:50:ab:83:be:
4a:a5:44:7b:2c:66:c9:d2:27:28:56:46:40:2e:54:
3f:4e:7c:4d:85:b5:17:59:ba:81:22:9d:df:cd:45:
cd:09:52:41:eb:b5:23:5c:28:88:63:29:48:7a:12:
5e:f1:d7:f6:32:c5:5f:1f:26:52:69:68:82:2b:be:
96:f3:40:81:c9:a5:03:ef:ad:11:85:d9:c1:7a:f7:
61:56:92:7e:25:8b:ad:30:14:90:d3:4a:7c:d6:c2:
16:b9:18:57:21:40:d6:d7:6a:4c:0a:14:86:0c:06:
bc:3c:ff:bd:21:ac:44:4e:88:76:8f:22:e7:fb:53:
6f:c6:0a:78:2f:7d:81:67:52:f3:0c:6e:12:33:0d:
c3:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:11:66:04:32:92:FF:B1:41:CE:90:4B:5B:C8:1B:4F:25:5C:FA:EF
X509v3 Authority Key Identifier:
keyid:CC:8D:F8:80:54:06:0D:F6:85:BB:A9:73:91:23:E8:34:2D:47:9E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:5c:b9:11:ab:c9:4d:c0:d0:e4:0b:13:86:6a:ae:27:98:2d:
67:16:ac:80:bc:60:94:e0:94:e1:86:16:9d:d4:f8:43:7d:8b:
0c:f8:58:fe:b1:aa:62:db:ae:77:98:47:78:21:9d:fb:dd:91:
8b:53:8a:56:ce:33:76:bb:eb:c6:2c:02:98:4e:2a:ee:c7:5c:
35:3d:c8:94:64:8b:27:ad:29:82:ac:10:d3:b9:9f:91:cd:e4:
bb:be:29:ae:9c:62:11:e8:e3:dc:9b:5b:85:0c:13:94:22:b8:
1e:39:bc:50:0e:1e:aa:e0:99:14:2f:d6:84:e1:2a:88:3a:f7:
46:05:bb:89:6f:61:2d:8f:d9:b3:20:32:10:34:00:85:99:e1:
cf:86:64:0c:0f:60:6a:65:4c:03:55:4c:9f:fd:de:a9:70:19:
65:84:c4:ec:2e:0d:26:3c:89:30:e7:14:d7:f4:45:a0:d0:e7:
d9:f3:35:69:76:b2:74:29:24:86:d4:7d:6c:5c:f2:51:de:d0:
1f:ea:3a:94:ed:2b:70:af:31:7b:c2:c4:10:b1:01:ff:d7:67:
53:0e:8a:72:d9:58:0b:43:15:02:b8:36:16:62:d5:28:fc:66:
2d:ad:6f:82:10:17:9d:4e:0a:b7:28:b8:1e:8c:8f:4a:72:fc:
65:8e:f4:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 21:13:19 2024 by rpki-client on console-ams.rpki-client.org