Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.mft
File: TfGBHzmXuVCsieQQ6j7wGKZz1fw.mft (raw, json)
Hash identifier: ORpX7KdF5rbHBhM09nv7UxMeE74nyrpLVRtvpqEWKe4=
Subject key identifier: 72:19:87:C9:B8:6F:71:E3:C9:3F:68:20:4D:90:F8:B7:E9:D1:64:C7
Authority key identifier: 4D:F1:81:1F:39:97:B9:50:AC:89:E4:10:EA:3E:F0:18:A6:73:D5:FC
Certificate issuer: /CN=4df1811f3997b950ac89e410ea3ef018a673d5fc
Certificate serial: 018F87498CC2D97B7F4FCFA41C630651F782
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TfGBHzmXuVCsieQQ6j7wGKZz1fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.mft
Manifest number: 0136
Signing time: Fri 17 May 2024 16:01:35 +0000
Manifest this update: Fri 17 May 2024 16:01:35 +0000
Manifest next update: Sat 18 May 2024 16:01:35 +0000
Files and hashes: 1: 0cRicyUmidWBE_djmBXaUftVUV8.roa (hash: dXABuyX9P0JlwXTXdUP6jSuD7WT1eGa315E6Ln6WIa4=)
2: Baezm_8bXkS9o1OGc3Ib3OzxzbQ.roa (hash: J71/TnZdKLOG43ntzIGcfhnOq0LZrZ8hFPCXN2VPbKs=)
3: TfGBHzmXuVCsieQQ6j7wGKZz1fw.crl (hash: eOYUYkqXU8AelkoftwgZs0yhxDldGqqFnblxnY/88nY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TfGBHzmXuVCsieQQ6j7wGKZz1fw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:8c:c2:d9:7b:7f:4f:cf:a4:1c:63:06:51:f7:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4df1811f3997b950ac89e410ea3ef018a673d5fc
Validity
Not Before: May 17 16:01:35 2024 GMT
Not After : May 18 16:01:35 2024 GMT
Subject: CN=721987c9b86f71e3c93f68204d90f8b7e9d164c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:20:b3:44:bf:d6:c3:cc:83:cc:c1:49:e9:a7:
04:08:d0:42:e5:b0:8f:56:db:77:5f:59:32:1f:fe:
a1:ee:16:2f:f1:ed:57:74:8e:2f:25:e3:53:54:42:
eb:36:17:25:9e:13:2c:bb:e4:5a:20:75:4d:46:65:
63:8c:84:3c:5a:9c:36:1d:eb:e3:98:a8:cc:27:00:
3e:ee:80:da:1b:94:91:72:1e:8f:34:10:ef:d4:9a:
80:5a:ef:94:0e:20:bd:c2:81:ce:64:22:43:1c:af:
25:a3:dd:bb:70:01:2a:a4:2b:00:79:1c:22:57:f7:
ff:b0:e6:60:1f:cc:79:a4:9a:6f:8b:bb:fc:b4:43:
3e:1e:b5:49:fc:74:43:d2:81:8d:c4:a6:df:7f:dc:
80:78:24:d1:d9:41:00:b1:10:5b:73:c7:da:86:3a:
8b:3f:7a:eb:da:0b:65:e2:d5:8d:5c:48:da:71:b9:
00:ab:75:b5:bd:3e:da:d0:80:2e:88:17:67:27:c9:
b5:81:22:9f:92:7d:85:c0:3c:27:cc:d6:a6:28:80:
0a:36:81:00:b6:15:42:46:e1:85:5e:d9:08:1b:f1:
f1:57:69:e1:b8:67:c1:ef:0f:b8:87:1c:c5:2b:0d:
05:c4:63:56:5f:21:b6:ab:55:16:64:aa:5f:20:b8:
99:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:19:87:C9:B8:6F:71:E3:C9:3F:68:20:4D:90:F8:B7:E9:D1:64:C7
X509v3 Authority Key Identifier:
keyid:4D:F1:81:1F:39:97:B9:50:AC:89:E4:10:EA:3E:F0:18:A6:73:D5:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TfGBHzmXuVCsieQQ6j7wGKZz1fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:b6:17:06:fc:96:66:cf:13:d8:63:43:29:a7:94:5a:6b:97:
f9:df:e5:ee:66:5b:1a:c5:25:04:db:a0:3c:80:bb:1c:06:91:
ef:10:50:92:50:21:ff:45:3f:5a:d4:42:6a:42:c5:63:eb:86:
57:18:89:f0:5d:e1:d7:3b:90:6f:2f:43:68:30:c0:49:08:db:
dd:ab:7a:ec:53:74:2f:e2:18:72:6c:8c:67:04:75:42:69:3e:
45:94:17:86:68:7c:dd:60:3d:d8:70:78:b8:61:c9:56:fd:0e:
80:dc:2e:03:5d:14:d9:0d:39:37:43:a1:ad:32:18:f6:91:d4:
d0:1d:1c:63:23:28:00:a2:17:c5:a8:94:a8:17:f7:eb:8a:4c:
6c:ea:12:38:5a:66:5b:97:83:0d:84:61:ff:6a:a9:43:a2:a4:
ee:93:9f:34:4a:79:ed:e4:aa:17:57:d6:14:db:81:ed:5f:96:
06:be:23:ef:3b:37:db:6e:0a:75:9e:2e:f0:84:67:b0:9c:6c:
8b:81:eb:fc:d5:a6:4c:7d:6e:c6:6a:57:e6:18:db:65:e5:40:
44:fd:7e:c2:e3:5f:a6:66:78:9b:ab:3a:13:0b:d9:bf:6b:a0:
7e:a7:61:5b:e0:f8:4e:ee:08:8b:1e:20:64:f2:75:7f:2c:63:
fb:a9:d0:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:41:43 2024 by rpki-client on console-fra.rpki-client.org