Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.mft
File: h9OLoS9GKcITH8YOiVDWwwO-fSI.mft (raw, json)
Hash identifier: v5TT7hroVZSKyp/8ddqPFpUJvo/csGfilIlBVcoZoic=
Subject key identifier: 0D:75:AC:9B:47:8F:87:46:BE:68:77:E8:40:5F:DC:94:57:B5:9D:48
Authority key identifier: 87:D3:8B:A1:2F:46:29:C2:13:1F:C6:0E:89:50:D6:C3:03:BE:7D:22
Certificate issuer: /CN=87d38ba12f4629c2131fc60e8950d6c303be7d22
Certificate serial: 018F885AE78EA425EB953C7A9D014CC3E8C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9OLoS9GKcITH8YOiVDWwwO-fSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.mft
Manifest number: 02DA
Signing time: Fri 17 May 2024 21:00:09 +0000
Manifest this update: Fri 17 May 2024 21:00:09 +0000
Manifest next update: Sat 18 May 2024 21:00:09 +0000
Files and hashes: 1: LzdpYqSug1P5xsnQBNEIzRTo23w.roa (hash: Uh8gVDakNEe4ugoos9sjo1R6fmcSAS3U1Q/E0+m4KG4=)
2: h9OLoS9GKcITH8YOiVDWwwO-fSI.crl (hash: ATpC4+3iEAZm4EWVduPTKu0UbMZED5yNE45WEhQcLeI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9OLoS9GKcITH8YOiVDWwwO-fSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:5a:e7:8e:a4:25:eb:95:3c:7a:9d:01:4c:c3:e8:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d38ba12f4629c2131fc60e8950d6c303be7d22
Validity
Not Before: May 17 21:00:09 2024 GMT
Not After : May 18 21:00:09 2024 GMT
Subject: CN=0d75ac9b478f8746be6877e8405fdc9457b59d48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:9f:d9:b6:d8:56:71:7c:80:3d:08:dc:c1:38:
b5:c7:a3:f6:c9:b3:09:8f:aa:13:16:7e:06:36:13:
c6:3d:4c:a5:ee:bc:fb:28:90:a8:37:29:f4:c3:2e:
84:b9:72:99:da:7a:c2:68:af:04:05:69:10:f8:ce:
c8:6b:21:51:c1:40:69:40:6a:98:2f:f1:12:17:70:
7c:d5:01:5d:de:b1:fe:46:f9:e7:bf:30:23:d7:7f:
f3:38:c8:32:e6:7d:03:ae:b9:cc:43:14:bf:c9:be:
81:5b:1f:7e:d7:96:36:0d:ce:2d:36:a3:8c:e8:a7:
ab:2c:c9:cd:26:aa:65:cc:23:5d:8e:e4:c2:7c:42:
f7:56:e5:32:fd:05:e0:0d:cc:a6:bc:c5:23:af:35:
58:02:06:21:af:4c:6e:d8:60:c1:88:b8:56:7d:6d:
82:e5:44:7d:b5:2f:c1:ac:97:78:68:3c:63:7b:ed:
f7:c6:df:d5:c3:f2:61:2f:24:e8:7a:aa:40:0f:00:
0c:5e:c8:49:d1:3e:07:3a:d4:c3:89:fe:e1:f7:9e:
34:1b:cc:3f:eb:29:e4:08:17:27:4b:87:36:41:28:
ce:42:56:b6:be:9b:e6:8a:71:81:8d:dc:3c:aa:a2:
c1:7f:88:88:7d:83:43:f0:7d:8b:f9:45:fc:64:72:
46:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:75:AC:9B:47:8F:87:46:BE:68:77:E8:40:5F:DC:94:57:B5:9D:48
X509v3 Authority Key Identifier:
keyid:87:D3:8B:A1:2F:46:29:C2:13:1F:C6:0E:89:50:D6:C3:03:BE:7D:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9OLoS9GKcITH8YOiVDWwwO-fSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:0b:5c:cb:ef:91:cf:8b:07:3c:13:dc:c1:40:02:0b:72:a1:
05:67:c3:d6:f3:ac:22:4b:9a:69:6f:65:ef:5c:7a:0c:96:ff:
0d:7e:d2:a2:f2:76:fc:94:7d:fb:69:7f:7b:12:fc:03:21:34:
69:b8:ed:75:d1:9c:fc:00:32:71:0b:c6:b8:e1:5d:1d:cd:9a:
5f:24:b1:b1:29:58:8e:95:1c:98:64:a6:87:38:4f:6f:21:0f:
ac:ae:6c:90:22:df:36:c2:df:a6:17:f0:78:f6:95:85:df:86:
12:4e:f9:c0:7e:44:02:df:18:86:90:58:a5:75:8f:b7:ff:77:
89:8b:36:47:c4:e9:2b:35:ca:a6:9b:84:cd:46:db:b4:84:44:
b1:45:e5:53:ef:bc:ca:ea:cb:37:d4:60:a6:72:e8:bf:85:1a:
00:94:50:94:08:16:51:55:b1:5f:fe:e3:28:7b:73:ae:b3:49:
a7:a4:4f:b0:82:66:f7:bd:46:7f:bd:bb:1d:fb:05:2e:9e:81:
82:5d:5d:99:9a:a0:db:0b:e5:3b:92:52:d9:a3:8b:db:21:e7:
00:b7:49:66:d6:84:a8:d7:29:aa:b0:1e:10:20:0b:ca:67:28:
15:ac:2b:bd:a1:9b:6b:b6:8c:63:91:ba:16:14:10:b3:19:92:
5d:04:09:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 22:06:07 2024 by rpki-client on console-ams.rpki-client.org