Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.mft
File: tu1iBVpRkcAuxREulRgaiawGDOs.mft (raw, json)
Hash identifier: 8Rufy71o/h2XNoqzNzplh+B+IM15YpU3bm4kvyqT2Kk=
Subject key identifier: CC:ED:4A:29:47:51:83:E7:0C:C9:4A:31:41:2C:82:FC:82:D9:64:47
Authority key identifier: B6:ED:62:05:5A:51:91:C0:2E:C5:11:2E:95:18:1A:89:AC:06:0C:EB
Certificate issuer: /CN=b6ed62055a5191c02ec5112e95181a89ac060ceb
Certificate serial: 018F8748304FDC8D734D0CC2B011EEE09036
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tu1iBVpRkcAuxREulRgaiawGDOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.mft
Manifest number: 06D0
Signing time: Fri 17 May 2024 16:00:06 +0000
Manifest this update: Fri 17 May 2024 16:00:06 +0000
Manifest next update: Sat 18 May 2024 16:00:06 +0000
Files and hashes: 1: RpJsg19K8GU2-1YJYQKgWnDtgLc.roa (hash: 1CoYzcD0hdW6Kycd5AAvfGrQdNjyrICAOc9z4ugEDxU=)
2: tu1iBVpRkcAuxREulRgaiawGDOs.crl (hash: FjN9xI5zm2qXxXg3S1pn9dcebt03432chZ9qjr/DsM4=)
3: w0zHKVLTDrjBm5fg1HiIsXedcN4.roa (hash: g0XxHtNzym0s4Q6P7/KwAOI1mADiTKssknlsKbZ1Ct8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.mft
rsync://rpki.ripe.net/repository/DEFAULT/tu1iBVpRkcAuxREulRgaiawGDOs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:48:30:4f:dc:8d:73:4d:0c:c2:b0:11:ee:e0:90:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6ed62055a5191c02ec5112e95181a89ac060ceb
Validity
Not Before: May 17 16:00:06 2024 GMT
Not After : May 18 16:00:06 2024 GMT
Subject: CN=cced4a29475183e70cc94a31412c82fc82d96447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:87:fc:4b:ec:a7:3c:b8:74:e0:51:be:17:3a:
d2:ad:14:54:a2:ce:05:ea:db:9e:38:b6:65:fd:f3:
bb:67:6a:bf:67:1f:3e:25:e5:f1:65:0b:88:87:73:
cd:96:04:4a:59:b9:ad:a6:81:e9:87:af:6f:15:af:
99:83:bb:13:86:df:89:d4:0b:eb:50:7c:86:d0:6a:
42:2f:29:b1:a7:48:d2:8f:50:35:f1:40:67:53:66:
4e:c6:e0:12:44:0e:fa:bf:06:b0:5e:1f:80:04:bf:
0f:29:f2:5e:d4:ab:6d:0b:c4:25:c4:c7:d2:10:49:
17:59:f5:fe:1f:4a:ca:39:e7:d4:11:a5:22:54:9b:
f6:5c:cb:18:a4:cd:29:0b:86:21:08:02:da:79:36:
0d:79:98:fe:88:79:84:60:18:94:3e:d4:bb:63:87:
a9:ec:c3:06:0a:b9:e0:e5:ba:42:7e:5a:95:d7:89:
32:09:a7:b6:f7:f0:1e:12:fe:f0:2d:11:b8:e8:5f:
0b:4f:93:48:44:b8:a5:d6:96:8d:31:f5:0c:e3:c9:
ec:f7:8f:cb:93:fe:b1:68:6f:16:52:dc:e9:ee:0a:
21:68:f3:b8:0c:6d:7d:21:5b:59:16:0e:6f:42:df:
e6:23:1f:25:7a:96:94:e0:a4:ba:73:74:35:c2:e6:
a9:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:ED:4A:29:47:51:83:E7:0C:C9:4A:31:41:2C:82:FC:82:D9:64:47
X509v3 Authority Key Identifier:
keyid:B6:ED:62:05:5A:51:91:C0:2E:C5:11:2E:95:18:1A:89:AC:06:0C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tu1iBVpRkcAuxREulRgaiawGDOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:7e:0d:11:85:d5:1e:30:ed:7a:fc:d2:a0:c3:74:ff:74:75:
46:8d:5d:ea:93:8e:46:b7:a3:f4:bb:48:4f:15:e3:64:f7:42:
c2:23:63:c9:a5:f2:97:11:19:9b:16:d2:b7:9d:d8:dc:15:e4:
14:41:e7:e1:96:8d:08:2c:37:40:f0:dc:31:ac:ee:7b:d1:aa:
a4:80:ee:4a:4c:2e:b4:d0:a9:d3:0a:13:80:86:7d:2f:4f:c6:
ea:3f:ca:db:e6:bd:8a:be:1f:9b:c7:a8:69:0d:c2:c1:f7:7f:
94:3f:7c:3e:55:b5:f7:cb:61:7c:bb:71:c0:8b:5e:70:57:f8:
d8:4a:2d:66:d5:82:29:aa:24:a3:b6:b6:a5:8f:ce:b5:07:08:
87:57:e4:0a:eb:8a:d9:61:d1:6c:c3:b5:cd:ba:0f:5b:7e:0e:
13:3d:13:3b:fa:4a:37:67:d1:18:f3:46:2d:ff:de:17:9a:10:
f6:6d:7f:3d:d8:dd:98:50:b8:58:1a:cf:19:3e:c8:e5:f6:77:
75:7b:d1:e2:0b:bf:e1:6a:61:71:e3:b8:16:89:39:d2:5c:02:
7e:8c:a3:eb:c3:7d:0d:46:7b:8a:3b:ae:a0:c0:b3:59:83:4d:
32:30:d9:3b:06:01:3c:70:0e:6a:ad:c3:b5:34:28:d7:31:ce:
65:45:1a:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 00:00:28 2024 by rpki-client on console-fra.rpki-client.org