Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
File: BZ9RaALCYTCaYQSHcubq_VhnqZA.mft (raw, json)
Hash identifier: Ep4scEkiL8yl4ToiLfZw0lvALjrNEl271QVXBdeR4yg=
Subject key identifier: B1:9A:FD:E3:7E:40:F9:AD:7F:DC:3D:0A:C8:05:A5:F6:93:25:5F:76
Authority key identifier: 05:9F:51:68:02:C2:61:30:9A:61:04:87:72:E6:EA:FD:58:67:A9:90
Certificate issuer: /CN=059f516802c261309a61048772e6eafd5867a990
Certificate serial: 018F23EF4CB01FEE90091F5C5AB34BF869C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
Manifest number: 1000
Signing time: Sun 28 Apr 2024 09:00:36 +0000
Manifest this update: Sun 28 Apr 2024 09:00:36 +0000
Manifest next update: Mon 29 Apr 2024 09:00:36 +0000
Files and hashes: 1: BZ9RaALCYTCaYQSHcubq_VhnqZA.crl (hash: Y54VnR060pGWZYKnvV+Oi5Kf6uKHf5gMYqUK/Akm/BM=)
2: YBpOxQVrdrIWGjTQMdeR0s2OHS8.roa (hash: /0LxzTzyDzk5AvMBi9YnlReHZdCH3wLNIyWCejE2CCA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 29 Apr 2024 05:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:23:ef:4c:b0:1f:ee:90:09:1f:5c:5a:b3:4b:f8:69:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=059f516802c261309a61048772e6eafd5867a990
Validity
Not Before: Apr 28 09:00:36 2024 GMT
Not After : Apr 29 09:00:36 2024 GMT
Subject: CN=b19afde37e40f9ad7fdc3d0ac805a5f693255f76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:2b:eb:f3:e9:66:76:2f:38:81:3f:a1:c8:57:
0b:1f:b3:1d:6c:72:e9:df:a1:ee:d9:d2:0f:87:e9:
74:4d:92:1e:38:ca:70:13:9a:ae:b8:a4:db:05:f1:
23:6f:c1:e1:bc:f4:e2:39:55:18:0f:16:7c:c1:bd:
fa:5d:db:8b:ea:72:e6:53:f8:fa:74:ca:f6:ba:46:
f5:20:75:49:66:b6:88:52:0e:a7:88:7d:e9:92:b3:
df:2b:20:3a:02:b5:01:f5:98:6d:0f:d2:67:a2:61:
69:24:f0:af:92:4f:71:5a:0c:52:74:d3:33:fd:1b:
7d:26:e8:54:8c:1b:43:73:33:ec:e4:99:8d:a0:de:
75:7e:35:df:46:6b:bb:27:88:a5:c5:6b:97:c9:e1:
a4:b7:f4:2c:fb:01:f0:f1:f1:91:af:d1:7b:71:dc:
76:14:3b:48:e9:8f:e2:d5:13:96:13:33:d2:49:14:
59:30:46:cd:c4:96:c9:cd:e7:7a:a7:0d:e5:d7:50:
e3:84:76:da:47:b2:18:91:e5:c8:9e:7f:f3:27:e7:
2e:a7:9a:2b:0c:13:70:7c:7f:19:33:6f:08:4b:24:
e5:a0:07:5c:fb:b0:a9:16:62:24:56:77:46:7e:48:
a0:8f:d5:e5:f8:6c:d8:f1:4b:55:e3:7b:a5:61:62:
d4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:9A:FD:E3:7E:40:F9:AD:7F:DC:3D:0A:C8:05:A5:F6:93:25:5F:76
X509v3 Authority Key Identifier:
keyid:05:9F:51:68:02:C2:61:30:9A:61:04:87:72:E6:EA:FD:58:67:A9:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:f1:97:3a:21:33:93:d8:4c:13:a7:6f:8a:cb:c0:70:0d:bd:
ac:fe:91:d8:7a:95:26:c8:6c:a1:ec:4f:97:64:67:02:5b:79:
86:b2:93:b1:4e:7c:4c:a0:b3:0e:8d:ff:4d:54:59:fa:1f:75:
cc:53:eb:8b:79:72:f7:71:39:0a:78:c4:56:2a:99:79:70:01:
16:94:d1:31:bf:f0:3b:91:b7:12:18:10:78:ea:0c:ca:83:77:
03:a7:d9:32:ff:fe:82:28:64:55:d9:46:c4:ce:92:ad:0d:83:
5b:ce:ad:9f:74:dd:6a:96:86:08:66:1a:f3:82:2b:86:5f:22:
e8:01:7f:3d:e4:a4:b2:3a:46:0e:40:d6:ef:db:61:bd:eb:61:
24:cb:c3:0c:5c:bb:55:08:35:a6:20:03:3f:08:ff:e7:12:48:
be:19:3c:77:37:35:59:74:56:a8:38:a6:3c:8a:4c:e9:b0:96:
96:a6:20:80:ff:af:9d:ff:e3:32:b8:d3:c4:84:b7:60:27:82:
70:0a:5a:74:0c:e3:6e:31:d9:25:87:30:77:81:86:7d:61:9e:
71:a5:4b:f7:76:f6:ee:31:71:32:7e:0c:d0:c6:05:92:be:a2:
7c:92:f8:59:87:5f:9c:74:43:90:53:5e:a2:71:bd:ed:4a:ad:
2a:56:f9:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 10:32:19 2024 by rpki-client on console-ams.rpki-client.org