Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.mft
File: IKf8vlkxTDcraPIyIjgoseM6A-w.mft (raw, json)
Hash identifier: PGAM8HXZ5sVrY/jaOBrP1Mcon5+bunmjp8Sx+ERhEEs=
Subject key identifier: 23:C2:98:68:AA:C2:8D:8A:EF:33:9D:09:95:23:02:05:77:48:3C:CD
Authority key identifier: 20:A7:FC:BE:59:31:4C:37:2B:68:F2:32:22:38:28:B1:E3:3A:03:EC
Certificate issuer: /CN=20a7fcbe59314c372b68f232223828b1e33a03ec
Certificate serial: 018F4F49388D9A2CE69BE1478FA6EC4EF6D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKf8vlkxTDcraPIyIjgoseM6A-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.mft
Manifest number: 0DB9
Signing time: Mon 06 May 2024 19:02:29 +0000
Manifest this update: Mon 06 May 2024 19:02:29 +0000
Manifest next update: Tue 07 May 2024 19:02:29 +0000
Files and hashes: 1: IKf8vlkxTDcraPIyIjgoseM6A-w.crl (hash: Wuep4YQeecDmo2g/Z0BUy68vDYcVgMq8GR9tZOnMfUI=)
2: pwc0HJt50lXMqhq3V6lEDOPpy_I.roa (hash: 3o5gd6QuAGxP4X/B56P6LCeXI4Wnx0IcGs6GjDHET+g=)
3: qMagO8BGiVwmg2gzdbvIk9n2SNU.roa (hash: rT4H0kYn7vmFYo+k0IcsziZIg89ISgg772v1uEFu8iM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKf8vlkxTDcraPIyIjgoseM6A-w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 19:02:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4f:49:38:8d:9a:2c:e6:9b:e1:47:8f:a6:ec:4e:f6:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20a7fcbe59314c372b68f232223828b1e33a03ec
Validity
Not Before: May 6 19:02:29 2024 GMT
Not After : May 7 19:02:29 2024 GMT
Subject: CN=23c29868aac28d8aef339d099523020577483ccd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a4:b6:f4:16:2e:65:b6:ae:4d:10:ed:2e:e3:
1b:b7:cb:27:90:14:24:71:85:3b:73:1c:3d:42:87:
ef:c8:d5:d7:1e:c8:47:38:a3:d6:fe:0d:58:12:a2:
aa:79:b9:76:f6:c4:eb:5a:19:51:24:bf:19:e1:fa:
4f:34:40:dc:53:53:4e:07:f4:8a:45:23:af:26:9a:
3b:9d:3a:e8:84:3a:6f:fa:52:cd:78:dc:04:84:eb:
04:54:1d:ba:33:db:91:fa:d0:03:1c:62:5e:1d:e8:
a3:ef:5d:8f:1d:4d:32:b1:5c:e9:c1:49:45:65:ba:
ec:75:44:9c:2a:fa:cc:1f:bc:d8:00:23:12:aa:9b:
1a:d8:45:1e:88:ca:65:bd:26:1f:77:8d:9a:fb:34:
04:0c:a0:6d:a7:0e:4d:2c:cb:e1:a0:6f:d8:93:d3:
72:bb:63:85:b3:1e:e1:45:c5:1e:6c:60:34:76:24:
62:90:a9:14:5b:c9:ac:bd:a5:4e:a9:1c:e2:70:a0:
7a:d7:af:99:90:5d:24:22:f0:e2:d8:b0:16:b1:77:
a4:6e:c5:de:1d:98:09:49:7a:33:22:76:e2:05:2b:
01:ad:88:8e:aa:33:5f:53:d5:53:a2:de:5e:cb:7a:
6d:29:e7:80:c9:39:18:b9:64:f9:6c:cc:e4:08:3d:
d5:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:C2:98:68:AA:C2:8D:8A:EF:33:9D:09:95:23:02:05:77:48:3C:CD
X509v3 Authority Key Identifier:
keyid:20:A7:FC:BE:59:31:4C:37:2B:68:F2:32:22:38:28:B1:E3:3A:03:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKf8vlkxTDcraPIyIjgoseM6A-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:95:62:d4:29:84:bd:02:f3:b6:33:5f:d8:67:d6:3c:b1:92:
c1:c1:63:f6:18:9d:9c:f6:68:34:7c:a5:69:66:33:fa:e7:f2:
ff:0e:44:a8:e3:2e:92:49:3e:08:74:ec:b8:3d:aa:50:db:03:
8f:d1:3e:6a:f0:0a:98:42:7f:e5:c2:56:55:63:35:30:3a:16:
3e:5b:3a:f3:4b:04:4a:30:3f:54:0f:13:32:4a:88:ff:27:8b:
16:1d:7a:9e:88:75:92:66:8b:74:41:28:5e:a7:8e:ce:a8:69:
be:28:63:0c:e9:48:c6:9c:3e:6d:61:3c:08:16:76:a2:73:4e:
bf:c7:bb:1a:fe:dd:41:7d:89:5e:38:57:3d:b0:9a:e8:d3:eb:
42:81:ca:1f:ff:ad:8e:12:2d:e6:b0:3d:b0:26:23:72:eb:04:
8f:d5:3a:67:25:eb:aa:8c:22:55:23:1a:60:9b:cf:85:31:fb:
44:10:a7:ea:01:b3:7e:4e:d2:02:e1:14:e7:fb:08:b5:f2:9b:
9c:5b:54:04:5e:1d:fa:b0:36:89:6e:09:59:29:47:e6:00:cb:
63:f9:8d:66:77:2f:1c:12:0e:68:d1:cc:6c:67:c6:16:01:01:
29:2c:10:21:7c:eb:06:64:ad:53:07:78:45:41:05:2c:e2:75:
04:f4:c4:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 23:18:09 2024 by rpki-client on console-ams.rpki-client.org