Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
File: 4gShwspKTbAzN142DeMjeQumpbk.mft (raw, json)
Hash identifier: 8XHI9sGVsrogAyiKiE3SGQTjZDIOntDXOw3L8xlQXec=
Subject key identifier: 86:99:6B:1B:98:58:77:C7:EF:64:B2:D3:77:A7:BF:0E:2E:BD:B2:4F
Authority key identifier: E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
Certificate issuer: /CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Certificate serial: 018F45A2D4C906DA45B466FE49292D207D74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
Manifest number: 09EA
Signing time: Sat 04 May 2024 22:04:10 +0000
Manifest this update: Sat 04 May 2024 22:04:10 +0000
Manifest next update: Sun 05 May 2024 22:04:10 +0000
Files and hashes: 1: 4gShwspKTbAzN142DeMjeQumpbk.crl (hash: qY+WDCRMuhPQ8Fiy5rXEI0gDaKaHWP7vmA+fyxGonzA=)
2: AtnFp3H26qY3Bd2YsmxYakU92-E.roa (hash: AgO7V1unEntNLV7iGiDPjJmnCCbNPTXtbtAci+ix/WA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 20:58:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:45:a2:d4:c9:06:da:45:b4:66:fe:49:29:2d:20:7d:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Validity
Not Before: May 4 22:04:10 2024 GMT
Not After : May 5 22:04:10 2024 GMT
Subject: CN=86996b1b985877c7ef64b2d377a7bf0e2ebdb24f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ef:53:0e:80:a6:c7:e5:0c:13:cc:2a:75:3e:
a3:96:0e:d3:3e:bc:70:34:6f:6f:81:67:50:c9:2f:
98:74:95:ef:bb:17:95:8d:e8:5a:57:d0:fa:2d:3f:
7b:09:2d:c8:c7:e3:05:1b:7e:1d:5a:8b:e7:18:93:
5a:ee:58:a3:eb:ca:3d:26:99:4e:d0:d4:d7:fd:b7:
f8:a8:83:9e:11:a5:a5:b2:ef:c0:68:ca:86:8d:26:
1d:25:f7:78:36:bf:49:c0:4c:f5:f9:40:1d:d5:e4:
30:df:ce:72:7b:cc:e7:97:0e:a7:68:3d:bd:65:57:
5e:66:44:6e:25:e9:da:c6:05:e8:d7:0c:52:4d:03:
be:0b:4f:1d:5e:02:a1:79:45:97:9d:58:ef:4a:f6:
05:1a:9f:fc:ce:82:a6:04:7f:c1:0f:d6:0d:af:9b:
5d:c7:02:6d:6e:7b:cc:28:c5:28:1d:09:40:19:28:
bb:81:8f:b3:06:ac:04:27:89:c2:60:29:92:67:94:
d8:2e:69:8c:ed:d5:a5:7a:db:1d:69:5e:b4:af:ab:
42:57:3d:8d:51:b9:7c:23:02:e5:e8:92:7f:9d:81:
86:71:6e:52:4b:47:e1:08:d0:38:de:fc:4c:88:91:
58:19:db:c4:a0:ba:60:fa:f4:d7:15:22:44:13:26:
bf:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:99:6B:1B:98:58:77:C7:EF:64:B2:D3:77:A7:BF:0E:2E:BD:B2:4F
X509v3 Authority Key Identifier:
keyid:E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:f9:0f:17:d6:b7:fa:b8:76:6f:53:95:9a:30:8c:de:88:f5:
fa:b8:a2:c7:b3:d2:53:17:4c:26:15:b4:8f:1d:b3:d4:b4:a8:
96:14:ee:65:7a:03:84:29:4c:63:23:c8:66:15:4e:a0:0c:8b:
b2:19:69:c5:e2:01:68:63:af:0f:80:61:b6:38:5b:a3:f8:70:
60:04:13:35:f1:82:5d:36:15:56:13:f2:0d:cd:bb:9f:aa:1b:
4e:dd:a7:8c:3b:ff:e8:82:22:fd:3b:72:46:98:51:de:14:c9:
08:e8:b8:1a:d1:36:2c:e4:2c:30:f4:0f:8b:b2:9b:2c:9a:ee:
b9:81:b0:c0:82:7a:44:3f:2b:00:70:f5:03:a7:94:27:e9:af:
b3:94:9b:c8:09:dc:1d:2e:2e:3b:90:44:8c:80:8e:fb:83:07:
3c:04:f5:a5:18:ae:4d:a0:c4:14:6f:90:8f:13:04:5f:b8:13:
68:57:fe:f2:53:9d:df:38:fd:57:6e:7d:72:55:be:40:a8:7e:
8c:da:49:43:97:99:43:ca:20:87:da:73:63:f2:21:d9:0f:c9:
4c:2e:03:aa:d6:23:a9:4d:13:0a:5f:80:42:a5:4a:b3:ca:aa:
68:63:eb:08:44:60:ab:76:8a:19:f7:33:36:5f:bb:1f:44:6d:
a1:e4:24:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 00:28:14 2024 by rpki-client on console-fra.rpki-client.org