Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
File: YAluN0CSzDAL0LsGxBZAky7Pi0k.mft (raw, json)
Hash identifier: JcQuzlf7CnuqqMfNtVbMNMVpYQ25s6CXEkSLRbCcs+0=
Subject key identifier: CA:D3:25:2F:28:5D:D2:9B:23:F3:DF:34:23:57:3A:5D:87:F2:97:81
Authority key identifier: 60:09:6E:37:40:92:CC:30:0B:D0:BB:06:C4:16:40:93:2E:CF:8B:49
Certificate issuer: /CN=60096e374092cc300bd0bb06c41640932ecf8b49
Certificate serial: 018F8748E0E66CC541A2B715F63D9C90F43E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
Manifest number: 1109
Signing time: Fri 17 May 2024 16:00:51 +0000
Manifest this update: Fri 17 May 2024 16:00:51 +0000
Manifest next update: Sat 18 May 2024 16:00:51 +0000
Files and hashes: 1: YAluN0CSzDAL0LsGxBZAky7Pi0k.crl (hash: lC4NsKjaz/wSHffsS5wqFZscryqhUP59WMIBVa5w4AU=)
2: _1ZIlrcmPohzZFq8Npfban_cZPc.roa (hash: vu8BfLZaLHj/RqkNcQQk53rFUeQkUBhW1N4tKTI+7o8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:48:e0:e6:6c:c5:41:a2:b7:15:f6:3d:9c:90:f4:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60096e374092cc300bd0bb06c41640932ecf8b49
Validity
Not Before: May 17 16:00:51 2024 GMT
Not After : May 18 16:00:51 2024 GMT
Subject: CN=cad3252f285dd29b23f3df3423573a5d87f29781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:2a:d5:f0:98:45:ae:f4:df:da:d2:f8:bb:e4:
ee:ba:84:68:a1:6a:0b:39:5d:36:b9:b0:1f:cf:3c:
16:dd:5c:25:de:54:91:2b:a1:80:e4:c3:4c:d0:d3:
38:74:11:7c:ce:da:2f:5d:3e:6a:41:8a:7e:21:11:
b8:bf:73:d5:3f:d3:03:c3:18:4b:9d:2e:1f:12:98:
02:45:28:a9:60:17:fd:0c:51:c2:d8:d0:4b:7b:e9:
ab:11:ac:8c:28:8a:95:c9:1a:48:45:43:f1:73:ee:
fa:68:38:c7:7a:a7:ab:e8:56:98:77:fe:e3:5c:bd:
06:3f:98:40:d0:36:15:bf:2c:3a:9e:e7:13:d5:3e:
71:c9:d0:0b:52:07:93:f4:32:f4:56:a3:48:81:67:
46:82:70:7e:a6:63:01:0b:f5:6a:e8:d1:08:55:b0:
d2:c8:04:fb:5d:7e:80:e7:8b:f4:eb:03:d4:83:f2:
44:1b:cc:da:72:94:3a:2d:c3:1b:35:77:ac:79:64:
1c:d3:e9:17:23:da:a8:9b:92:26:95:3e:cc:cf:42:
8e:09:71:41:1e:14:0e:a4:39:83:2e:1f:7f:1d:73:
8d:04:90:c0:ba:40:f3:6e:4e:ad:58:af:56:f3:11:
9c:5c:3a:14:fa:d8:4f:5a:ad:61:20:67:f3:63:92:
51:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:D3:25:2F:28:5D:D2:9B:23:F3:DF:34:23:57:3A:5D:87:F2:97:81
X509v3 Authority Key Identifier:
keyid:60:09:6E:37:40:92:CC:30:0B:D0:BB:06:C4:16:40:93:2E:CF:8B:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:ae:a2:e4:e6:1e:57:cc:46:18:bf:d0:1d:a2:7b:d7:3b:73:
50:c6:e6:e3:f4:58:77:68:37:2e:49:22:f0:cc:b4:60:f2:f3:
c0:6f:47:85:a8:6c:be:31:57:4a:dd:7b:58:28:2a:4e:fd:2d:
54:62:de:63:be:90:57:27:57:b1:f9:09:42:23:d1:d1:4a:78:
90:12:b8:5e:07:61:3a:b2:0c:06:a4:a1:30:d8:c9:f0:1f:48:
04:11:f7:4f:41:78:67:cc:69:aa:11:50:d4:fa:5c:95:a0:60:
a6:c0:61:6b:da:00:40:9e:d0:c2:9c:8f:eb:5f:e2:27:b7:a6:
90:4d:14:c2:1e:76:ae:44:9b:06:20:36:79:9b:42:e4:5c:f4:
f1:87:a9:d2:14:98:d1:12:8b:67:cd:c9:8c:b8:f7:63:08:92:
f2:6d:38:05:c2:01:ff:5b:58:3b:46:0e:ac:db:cf:a7:1e:09:
34:dc:25:9c:be:1c:2e:97:e3:22:02:82:3a:6e:5d:a2:03:82:
6a:d9:37:29:05:78:22:89:d7:e3:d3:19:41:d1:ea:fe:fd:1f:
db:0f:8b:06:87:72:95:e6:c1:06:9e:f3:5a:9b:00:ea:46:d4:
bb:71:02:f3:9f:c8:aa:05:08:07:69:67:0e:00:a3:b8:c2:ae:
fb:15:c6:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:18:32 2024 by rpki-client on console-ams.rpki-client.org