Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
File: iBKgqAncPNH72JUaj4D2mSXhGQg.mft (raw, json)
Hash identifier: ZMdQJRG6kXTg5RFR0gpakVFK++Mri6C3y5ulPLgc/xw=
Subject key identifier: 28:D0:4B:A1:52:30:4D:53:98:23:78:B9:3D:E2:E6:CC:D7:AD:F1:4F
Authority key identifier: 88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
Certificate issuer: /CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Certificate serial: 018F874A706108E40CE6EE83902DE60A1B03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
Manifest number: 0C5B
Signing time: Fri 17 May 2024 16:02:33 +0000
Manifest this update: Fri 17 May 2024 16:02:33 +0000
Manifest next update: Sat 18 May 2024 16:02:33 +0000
Files and hashes: 1: QIwEeHs3_07u1iGrO9NiKZeUEMA.roa (hash: i5c6XVbqaGTWI6n1PBcWUqRZ4SnVBESV3EI5zqN31P8=)
2: iBKgqAncPNH72JUaj4D2mSXhGQg.crl (hash: lhEJ6/oj/Ul93RvLEx2ImYO7Cht3unBTfLPnaQ0KTlA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:70:61:08:e4:0c:e6:ee:83:90:2d:e6:0a:1b:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Validity
Not Before: May 17 16:02:33 2024 GMT
Not After : May 18 16:02:33 2024 GMT
Subject: CN=28d04ba152304d53982378b93de2e6ccd7adf14f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e7:8d:03:38:3a:36:2c:f4:19:87:a2:3d:ee:
61:ef:b5:f0:a7:3a:02:8b:1c:62:25:4a:e3:a5:f3:
e1:f0:8d:85:27:b1:91:93:d8:80:98:73:ed:a7:71:
32:6e:f5:8f:72:43:ef:37:c3:b2:ea:00:ea:7b:bf:
54:36:d8:48:84:9f:f6:88:7c:d9:0f:cb:e3:9e:52:
89:08:22:ac:6d:33:f6:7c:87:59:f4:2a:bb:e9:04:
93:1f:b5:3c:45:e4:d4:4e:79:3a:ec:b9:f2:ec:0b:
e6:c3:b9:fd:1a:26:25:f2:77:e5:99:16:ba:6b:18:
18:c0:46:7f:fc:aa:20:1d:7d:44:69:f2:02:d4:11:
c6:d0:03:88:b2:2e:24:4f:2a:04:8e:5c:74:92:82:
6b:46:0b:f9:63:5b:31:58:93:61:39:34:db:d4:fc:
99:e8:b8:8c:77:9e:1b:1c:db:09:22:ab:4b:3a:7e:
01:41:c5:fb:36:0e:19:87:79:47:70:49:64:5e:c9:
27:0c:3f:42:05:49:cb:f8:28:20:4e:ad:ee:e5:e9:
c3:17:08:a5:19:78:46:df:d3:9f:c7:28:f3:0a:25:
2c:02:cf:30:9c:22:51:43:0f:9b:f5:83:6f:46:fa:
1c:47:e7:45:88:18:b0:15:fa:c5:d3:68:bc:9d:a9:
f8:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:D0:4B:A1:52:30:4D:53:98:23:78:B9:3D:E2:E6:CC:D7:AD:F1:4F
X509v3 Authority Key Identifier:
keyid:88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:96:75:8e:c8:cd:26:b7:79:61:10:de:8c:d9:a2:f1:c1:1d:
df:50:ae:93:50:1a:c2:14:e6:72:fb:4f:57:b7:33:4a:47:94:
77:c1:a6:1a:d0:07:b7:c3:a3:35:76:40:ad:01:84:1c:7b:2b:
d1:82:f3:af:f7:8d:8c:f1:c1:a7:8a:33:a8:27:a2:4e:fd:24:
9b:1a:50:f4:d1:1f:8b:4d:d5:6f:a1:24:5e:49:f3:76:6d:51:
7a:d2:e9:c6:1a:65:fb:5e:98:59:21:94:9b:d3:00:eb:5a:11:
01:86:45:04:1b:e6:69:46:77:04:55:86:5a:0f:82:8c:dc:c2:
b4:7a:ec:ef:9a:d7:4d:9e:17:65:0d:4c:68:b1:2e:33:d2:c7:
6a:95:99:09:6b:60:ff:c0:e6:ee:a1:ba:68:4d:cb:e5:d3:e7:
18:48:24:19:bc:e2:78:98:79:5a:83:5e:75:85:cb:72:69:80:
7d:62:45:e5:bf:01:73:95:08:07:9c:d0:f5:70:15:44:bd:eb:
81:54:17:ab:95:f0:f3:cf:0b:a7:ba:7e:e6:3d:01:2a:48:28:
dd:27:e0:f3:74:6a:0c:cb:7b:36:8a:94:42:09:e6:94:63:ef:
ad:de:d7:05:76:fc:46:53:05:fb:83:8d:43:1e:4b:db:5a:e8:
f9:ae:80:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:19:51 2024 by rpki-client on console-ams.rpki-client.org