Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
File: fD2KpDg1BKMa_0sAaBCga88DBa4.mft (raw, json)
Hash identifier: czBSmMmHe4+6T6Tk1y3WppgVjtxPCFTfMFuQ0/fsy9s=
Subject key identifier: 5A:F8:30:3A:C2:8B:23:DE:D5:E1:79:42:31:E2:43:D9:6B:5E:00:4F
Authority key identifier: 7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
Certificate issuer: /CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Certificate serial: 018F88243954914D54C18BD41C2D3F38182D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
Manifest number: 0D53
Signing time: Fri 17 May 2024 20:00:26 +0000
Manifest this update: Fri 17 May 2024 20:00:26 +0000
Manifest next update: Sat 18 May 2024 20:00:26 +0000
Files and hashes: 1: fD2KpDg1BKMa_0sAaBCga88DBa4.crl (hash: +ESh/CpAsxjrvRxVHYQCXrgdtd9w33WMjRTVZI+ciPM=)
2: hnRzRLzc-5CxEo9D5FmeYAys5AA.roa (hash: icldKDzh3hx+/R6KGwTOvdGHoYprSQ7MBGewiswZ3KQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:24:39:54:91:4d:54:c1:8b:d4:1c:2d:3f:38:18:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Validity
Not Before: May 17 20:00:26 2024 GMT
Not After : May 18 20:00:26 2024 GMT
Subject: CN=5af8303ac28b23ded5e1794231e243d96b5e004f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:74:d0:8a:78:ff:73:f5:cf:ef:61:14:e9:83:
d8:e7:95:b4:98:e2:20:48:ae:10:af:45:43:d3:0a:
5a:dd:44:5c:3c:e1:b0:6c:c3:d0:f5:9c:49:e5:58:
34:47:ce:17:ec:5f:80:c4:c4:67:d0:ef:7f:fb:25:
ee:d6:36:85:94:a6:c0:eb:24:22:1c:ae:25:14:8c:
11:12:96:68:f6:43:d4:5b:53:6b:21:93:75:57:9a:
c1:97:9b:1e:6b:61:30:7e:7c:d1:bd:1f:dc:09:4b:
0b:f9:75:34:cf:e8:64:61:ca:e8:d9:dc:ac:6b:37:
23:73:3a:28:1e:99:c2:ca:e9:f6:df:9e:15:0c:49:
6e:81:c3:17:16:50:44:ca:da:1b:8a:42:d9:e3:81:
41:51:7f:a3:7b:cb:49:d0:41:25:fb:93:a0:7c:74:
45:8a:5a:13:7f:d6:e0:1c:72:b6:1d:56:df:a7:42:
7a:53:0b:29:6e:b8:19:37:8b:0f:9b:90:79:85:11:
53:8d:cc:51:bc:e8:73:14:d2:29:d2:3e:5d:68:d8:
a2:4b:6f:5a:47:31:22:70:d0:f4:2c:ac:50:e1:e7:
ef:96:7d:04:04:49:3e:76:38:2a:42:25:39:f0:71:
fd:78:0e:8d:7e:3a:0f:dc:08:e1:18:61:28:65:c1:
60:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:F8:30:3A:C2:8B:23:DE:D5:E1:79:42:31:E2:43:D9:6B:5E:00:4F
X509v3 Authority Key Identifier:
keyid:7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:2d:e4:44:de:5f:bd:74:c9:70:2b:44:0b:56:6d:ce:05:9d:
10:1d:c9:0c:90:f5:12:ef:d6:92:be:ed:a7:2d:5a:85:28:63:
10:63:40:38:7c:dd:53:fd:01:4e:07:a8:47:5d:ea:70:87:db:
a6:9a:a0:b5:c9:a2:22:a3:9e:b7:11:c0:f8:41:f7:5f:93:54:
78:1e:33:76:53:a1:d0:1b:fe:dd:5a:88:10:c9:2e:9b:2a:f7:
ae:55:66:0a:4a:3c:9b:dc:06:b3:85:6a:99:d1:99:1f:28:ec:
b0:e1:28:eb:1d:91:f7:be:72:72:1a:8d:4b:77:25:fc:c2:f3:
f7:2b:a8:1a:52:59:c0:76:ca:1a:75:1f:d9:bd:95:44:20:13:
13:b2:45:69:0e:bf:14:67:1c:78:bc:42:a1:20:b6:bb:c6:45:
98:69:7d:4c:45:35:0b:79:8a:81:ac:22:7e:59:14:54:37:82:
79:f5:17:fe:41:d0:71:6a:a4:89:ed:ba:cd:3c:41:7a:25:c5:
b6:62:5a:74:7c:a3:ef:c2:78:2e:60:e2:cf:5b:23:38:26:38:
ae:96:f1:30:ee:84:80:c3:be:78:12:2d:ea:20:6f:56:87:76:
a7:ec:8a:47:50:9a:76:89:2b:19:f1:1c:ca:1b:f8:38:e0:99:
50:b5:3d:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 21:13:29 2024 by rpki-client on console-ams.rpki-client.org