Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
File: zTu8GVzaflgkWmHLMLlv5XL9eBE.mft (raw, json)
Hash identifier: 3HsOpYBGVpjk3sX3ki13NdH2ZH0dUm5cpmB415b/Mx8=
Subject key identifier: A9:C6:E1:04:4C:9C:A7:7C:68:83:E2:D2:B3:A4:71:24:CA:73:3B:E1
Authority key identifier: CD:3B:BC:19:5C:DA:7E:58:24:5A:61:CB:30:B9:6F:E5:72:FD:78:11
Certificate issuer: /CN=cd3bbc195cda7e58245a61cb30b96fe572fd7811
Certificate serial: 018F87498E70A2BBAA052F732E6031E91746
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
Manifest number: 0ACA
Signing time: Fri 17 May 2024 16:01:35 +0000
Manifest this update: Fri 17 May 2024 16:01:35 +0000
Manifest next update: Sat 18 May 2024 16:01:35 +0000
Files and hashes: 1: Kmlt2OnDfyr-xvUq2wtLaJFFd2Q.roa (hash: WbhRtVuWF6be/CtAbJTFROvLmiN5iCcmflupCqioaKQ=)
2: zTu8GVzaflgkWmHLMLlv5XL9eBE.crl (hash: 0HPj6AD0zrigy1AP0ADbyLKM5MwJRZLUV/aHShpRh9Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:8e:70:a2:bb:aa:05:2f:73:2e:60:31:e9:17:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3bbc195cda7e58245a61cb30b96fe572fd7811
Validity
Not Before: May 17 16:01:35 2024 GMT
Not After : May 18 16:01:35 2024 GMT
Subject: CN=a9c6e1044c9ca77c6883e2d2b3a47124ca733be1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:cb:97:4e:0f:f5:51:d8:0b:8a:ac:5e:28:0a:
ea:1b:5e:4d:aa:ba:d4:f6:ea:55:da:e3:c0:e8:e5:
06:7f:38:f0:85:c7:8b:57:9c:e4:86:37:0a:02:0c:
00:6a:5e:71:c8:c4:c6:70:0f:30:22:93:ae:51:19:
99:d4:b8:a2:db:6c:2f:23:d9:74:6a:4a:e4:b4:69:
d4:6e:2a:cc:59:a4:21:9e:0a:26:92:d3:fe:f1:09:
01:45:cf:39:d6:b3:89:a1:3d:94:1e:3f:c6:00:06:
67:f4:fa:6b:31:09:7f:49:ca:c9:46:2a:b5:0f:76:
57:4e:24:ab:a5:f7:0f:b2:d8:ae:b1:e9:5c:af:56:
ab:a9:d8:73:87:44:fe:ea:6c:ff:b5:bf:b7:68:8a:
68:f5:e3:df:35:99:ca:2a:e3:c6:b7:91:a2:59:53:
bd:c2:3f:8a:86:1c:83:82:f8:46:ef:39:99:7d:0d:
34:85:d3:a0:73:d1:e3:4b:0f:3f:d7:4a:28:df:aa:
d0:a9:59:42:6c:55:b9:00:13:70:ef:4f:04:09:c3:
2f:0c:39:e5:f3:bf:83:f6:04:db:c3:77:59:bd:93:
8e:a7:d9:ad:5f:ff:c9:3a:5b:96:bd:47:72:71:6b:
2f:45:8c:8e:35:4a:ff:3c:c5:8f:f7:c5:4e:0e:e5:
2c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:C6:E1:04:4C:9C:A7:7C:68:83:E2:D2:B3:A4:71:24:CA:73:3B:E1
X509v3 Authority Key Identifier:
keyid:CD:3B:BC:19:5C:DA:7E:58:24:5A:61:CB:30:B9:6F:E5:72:FD:78:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:e9:c7:26:70:8f:e6:36:c3:de:20:3f:8b:72:e4:c3:46:33:
82:0f:96:37:21:f8:c1:43:d3:b3:ea:48:c3:9e:75:ff:7d:c8:
6c:d6:56:eb:0a:23:3e:59:fe:b3:5e:e6:fe:79:e2:c4:31:8a:
a1:14:9e:5c:a6:47:8d:4c:98:58:0a:95:03:b7:33:47:c4:ee:
59:6b:d9:b9:53:49:10:d5:d4:93:0e:d4:66:74:12:32:fe:96:
fb:fa:ea:91:59:ef:51:c5:af:4a:3f:e2:f5:36:ad:80:d9:c1:
4c:5b:73:39:21:44:5e:42:80:bb:67:8c:18:77:8e:15:12:d4:
88:c6:94:11:06:73:8c:f8:02:4d:2f:f1:b8:ba:63:1d:aa:72:
5d:43:2c:0a:28:86:46:c2:79:2b:9c:a5:15:0c:39:f5:4c:37:
71:21:c7:85:14:30:4d:1d:44:b1:98:d2:04:71:5b:ee:20:58:
68:09:31:db:41:49:6b:25:e4:d1:a0:2d:34:08:80:6d:43:3d:
73:99:49:0d:98:ae:21:ca:9e:0a:6f:44:61:83:38:80:bc:29:
25:0f:7b:fb:82:be:c0:73:1d:c5:8a:8d:8b:91:20:d7:08:91:
00:6d:2c:8c:e0:56:b7:4c:f8:5f:b9:4f:cc:cb:57:3c:e1:cb:
f9:56:16:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:42:30 2024 by rpki-client on console-fra.rpki-client.org