Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
File: CEGOlpDQ-3Eavzh04cUApidpPAo.mft (raw, json)
Hash identifier: D2YeZ+5S4IIgp9KEWJtMscg1lpRCuK8uaS6yy9NChxs=
Subject key identifier: 4A:A4:AC:76:3D:38:AC:DC:C7:C1:E9:9C:DE:54:8A:B7:64:B4:C0:AA
Authority key identifier: 08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A
Certificate issuer: /CN=08418e9690d0fb711abf3874e1c500a627693c0a
Certificate serial: 018F1DB633CE32E5E0BFF10B08E909FB3B55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
Manifest number: 0A54
Signing time: Sat 27 Apr 2024 04:00:31 +0000
Manifest this update: Sat 27 Apr 2024 04:00:31 +0000
Manifest next update: Sun 28 Apr 2024 04:00:31 +0000
Files and hashes: 1: 5HWRva5iyxcfuLMntGPqSdoHh5Y.roa (hash: SnZWswcta6QtsV9aXgVm14IVLWYZPNK0FxJf7I2YmdQ=)
2: CEGOlpDQ-3Eavzh04cUApidpPAo.crl (hash: /2CGH+q+9kmPOWVqQKtWSuuIkVD2sCAsTTlF01KqUb0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Apr 2024 02:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:1d:b6:33:ce:32:e5:e0:bf:f1:0b:08:e9:09:fb:3b:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08418e9690d0fb711abf3874e1c500a627693c0a
Validity
Not Before: Apr 27 04:00:31 2024 GMT
Not After : Apr 28 04:00:31 2024 GMT
Subject: CN=4aa4ac763d38acdcc7c1e99cde548ab764b4c0aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:04:29:42:78:56:b8:42:89:7e:f8:07:cb:58:
a7:3a:f9:77:a1:6e:57:a6:39:33:19:eb:38:d9:35:
21:3e:a9:b3:8f:2e:4e:4c:2f:1e:53:8c:33:1e:23:
c3:0b:3c:7a:0e:f9:d8:c0:72:8d:fe:ae:f3:70:32:
6b:6d:1a:f4:35:72:2a:1e:39:0c:f8:08:60:82:12:
66:55:cf:22:a1:aa:a7:5b:b6:63:99:75:5b:e4:48:
ee:5c:73:a5:6f:80:fb:4f:3f:95:bf:db:4e:e7:eb:
e6:3f:cd:8d:03:ac:ab:e8:2f:0f:28:bf:4c:45:46:
28:f5:66:c3:5b:7d:51:12:7c:9c:7c:1e:b8:7c:87:
46:3d:74:22:50:c7:77:59:57:e6:3b:0c:18:bd:3d:
c8:12:fb:62:00:03:f4:a8:eb:27:7e:0a:44:c2:2d:
71:26:ce:65:7c:78:5c:6d:d7:96:1d:cd:23:bf:c5:
0d:ae:a2:c8:3c:fc:e3:6a:d7:32:9b:3f:c4:0a:0c:
e2:d9:1c:c4:7e:c6:3a:0e:48:b5:44:cc:73:ac:9d:
94:d9:53:ed:05:36:2a:8f:87:74:5a:52:da:be:1d:
32:1c:b4:a5:f8:f0:f6:7a:c4:51:64:06:a3:3b:b7:
90:10:07:8b:74:1c:ea:83:e1:ae:d8:ba:d3:15:4f:
dc:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:A4:AC:76:3D:38:AC:DC:C7:C1:E9:9C:DE:54:8A:B7:64:B4:C0:AA
X509v3 Authority Key Identifier:
keyid:08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:34:46:90:ab:6c:32:59:70:ab:ec:da:f3:18:f9:5e:13:9a:
de:fd:ef:77:54:d3:7d:57:6b:82:01:08:00:e8:83:8c:43:07:
93:00:e2:83:d2:c4:15:3d:45:10:41:93:92:41:e9:33:81:f1:
68:bb:6f:8e:a5:1e:21:53:39:e3:a3:d4:ee:66:0b:9b:93:61:
42:50:a6:f0:33:a6:ee:18:73:2e:ad:6d:fc:8d:0b:39:df:56:
25:bd:cf:d3:b3:27:2d:8f:bc:cf:5e:4c:1f:27:68:cc:49:04:
1f:38:07:db:d1:cf:2d:bc:15:64:d0:23:f0:5e:44:e1:fd:40:
95:3a:77:45:41:3a:58:22:fb:19:80:d3:72:c9:2d:d2:9a:eb:
8e:0f:c1:ca:86:8c:fe:5c:f5:90:b4:b9:09:1e:f7:e2:dd:57:
fa:cb:7c:fd:c9:c1:75:15:ba:f7:47:00:43:73:78:f3:cd:ca:
94:8b:83:45:e7:19:49:19:8b:8f:3c:c8:b9:75:9d:37:84:ae:
87:c2:2d:71:f3:b8:91:b2:c4:d3:40:97:4c:29:82:e2:d1:08:
e7:b4:7a:94:54:2f:7d:8a:1b:e3:d4:5f:dc:65:fe:85:d0:08:
00:85:e3:2b:0a:74:1a:04:f0:58:d8:5f:ab:01:4d:c2:d4:b5:
cf:56:6b:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 11:11:56 2024 by rpki-client on console-ams.rpki-client.org