Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.mft
File: y2CCAfiK6ulIa5-ocYnXlsVAJ90.mft (raw, json)
Hash identifier: QnXPlOTmcAItr1Opr/NnoaMMJ14Vv9gMXT31AzzoLe8=
Subject key identifier: 3B:C1:A4:A6:F1:75:2A:A3:AA:7B:7D:B6:7F:66:50:0D:14:F0:2E:5E
Authority key identifier: CB:60:82:01:F8:8A:EA:E9:48:6B:9F:A8:71:89:D7:96:C5:40:27:DD
Certificate issuer: /CN=cb608201f88aeae9486b9fa87189d796c54027dd
Certificate serial: 018F86A42DCB20B88DA98E5F2907C0AAA0A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2CCAfiK6ulIa5-ocYnXlsVAJ90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.mft
Manifest number: 01FB
Signing time: Fri 17 May 2024 13:00:57 +0000
Manifest this update: Fri 17 May 2024 13:00:57 +0000
Manifest next update: Sat 18 May 2024 13:00:57 +0000
Files and hashes: 1: 2vkMSOgDFNc_tLuEc7xV1zzKLDs.roa (hash: vLYZDqHxrGCzcMRalBQeP+HYtwXvxJK49TFQOzbIfTI=)
2: y2CCAfiK6ulIa5-ocYnXlsVAJ90.crl (hash: V1f4w6/TRBMSMprxv0H9zYrssU2IgCo57nzPxg3mSxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2CCAfiK6ulIa5-ocYnXlsVAJ90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 13:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:a4:2d:cb:20:b8:8d:a9:8e:5f:29:07:c0:aa:a0:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb608201f88aeae9486b9fa87189d796c54027dd
Validity
Not Before: May 17 13:00:57 2024 GMT
Not After : May 18 13:00:57 2024 GMT
Subject: CN=3bc1a4a6f1752aa3aa7b7db67f66500d14f02e5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:18:00:3e:ed:b2:1f:3c:17:58:5e:09:89:4a:
a6:ae:27:94:c6:21:f2:6f:c8:2e:c7:88:a9:8c:6d:
ff:8f:48:dd:10:4b:bc:60:ba:86:a7:07:35:4d:5b:
f0:cc:ca:92:79:04:7b:81:ae:09:68:33:7a:28:7b:
57:b4:c0:d1:d6:ce:d9:49:d4:77:0d:55:45:84:63:
00:5a:7a:75:90:7d:80:47:65:e2:dc:be:47:a9:fe:
b2:9d:8a:6e:b1:79:f5:bb:9e:29:ec:8d:50:6f:e4:
db:0a:8b:18:06:3a:5a:e6:5b:41:ac:10:63:5a:97:
a4:da:cb:d2:98:b5:19:88:55:dc:c4:1c:22:03:1f:
2b:8f:41:85:5a:0e:98:b5:3c:9d:d0:d5:19:14:75:
4f:d9:90:ef:18:05:77:c2:29:f3:05:88:ba:7b:5e:
00:6c:cc:70:0f:13:e5:7b:42:7f:fe:0c:39:bc:d4:
9f:ce:14:af:fc:04:dd:a1:6a:ad:33:58:6f:5a:5f:
03:f2:ac:83:7c:5d:b1:45:65:3a:35:f0:59:3b:ee:
9c:59:3f:80:6e:9e:10:08:e0:02:43:9f:af:4a:34:
8b:6f:b9:93:a2:16:fe:64:7d:e5:fa:8c:75:e2:fd:
c4:cc:61:2e:91:c5:c7:95:c3:b3:0f:29:3f:72:bb:
43:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:C1:A4:A6:F1:75:2A:A3:AA:7B:7D:B6:7F:66:50:0D:14:F0:2E:5E
X509v3 Authority Key Identifier:
keyid:CB:60:82:01:F8:8A:EA:E9:48:6B:9F:A8:71:89:D7:96:C5:40:27:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2CCAfiK6ulIa5-ocYnXlsVAJ90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:7a:e9:e0:fb:53:0b:d3:48:f1:b2:ee:71:5d:4f:ac:5e:b5:
b9:d4:9b:eb:a7:df:60:7b:7a:37:58:74:9a:11:ee:cc:ae:3b:
2d:fe:5e:bf:6b:7a:4e:49:d4:01:bb:bc:f2:99:2f:5a:51:08:
fd:c5:57:18:f0:40:41:35:67:a4:d8:fa:0c:e4:0b:bb:b9:c1:
bb:2c:e9:77:4e:5e:7b:6a:25:ee:1a:17:1d:21:11:00:94:4b:
0d:6e:e9:0b:b3:dd:e8:3d:5a:e5:b0:51:15:a6:ef:44:40:c0:
61:cf:90:89:46:98:3a:5a:3a:1f:61:80:b4:9e:0d:42:23:ad:
19:e6:b5:d9:0a:98:53:a0:49:cc:07:50:22:97:50:22:a5:9e:
28:0f:e9:76:b0:c7:e9:c7:3c:8e:57:b8:f1:f3:90:e8:79:ce:
3a:df:dd:fb:4e:5a:87:91:c8:71:b2:56:a9:91:c7:5c:40:e8:
48:54:d9:7f:8f:09:4f:3e:50:2c:f2:ce:67:b4:b3:fc:19:4e:
65:9a:c0:5c:d4:d0:6c:49:87:02:80:72:c3:f8:f8:84:27:e3:
85:f4:90:fa:2f:9a:09:52:38:98:61:ce:b3:aa:51:12:d8:9e:
74:20:ad:1f:c1:d8:9f:ac:2c:d9:57:7e:9f:fc:06:d0:b3:c5:
fd:35:b5:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:43:18 2024 by rpki-client on console-fra.rpki-client.org