Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
File: zTwRDf139XdXORwPrt7r42CGVx0.mft (raw, json)
Hash identifier: B1oDT20GbLpPJriBQl3dppnClMrApQaXIz/d3WZ+kEM=
Subject key identifier: 29:F1:DA:A9:BB:B0:8B:00:9A:94:C4:F3:52:3B:1B:80:75:31:48:B9
Authority key identifier: CD:3C:11:0D:FD:77:F5:77:57:39:1C:0F:AE:DE:EB:E3:60:86:57:1D
Certificate issuer: /CN=cd3c110dfd77f57757391c0faedeebe36086571d
Certificate serial: 018F8749406852E0107983E3DD12C5886734
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
Manifest number: 0993
Signing time: Fri 17 May 2024 16:01:15 +0000
Manifest this update: Fri 17 May 2024 16:01:15 +0000
Manifest next update: Sat 18 May 2024 16:01:15 +0000
Files and hashes: 1: N_qYUkaIb2FHrvhvuqZlAeCEGA0.roa (hash: XQGUSq+Gh7zamrvtmNUUJYmXfatCTQeJbPQVl12rKK8=)
2: zTwRDf139XdXORwPrt7r42CGVx0.crl (hash: WIy0GujU0fRVW9lDQrpd40OM4vvT6JgYbzRX6L0jSPY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:40:68:52:e0:10:79:83:e3:dd:12:c5:88:67:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3c110dfd77f57757391c0faedeebe36086571d
Validity
Not Before: May 17 16:01:15 2024 GMT
Not After : May 18 16:01:15 2024 GMT
Subject: CN=29f1daa9bbb08b009a94c4f3523b1b80753148b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d4:15:33:dc:fa:73:00:79:cb:1b:95:c9:5b:
0e:80:a6:54:62:c6:77:5d:ae:ce:88:9b:ec:77:42:
68:68:c8:a4:8b:59:44:ac:1d:5c:97:9e:ec:a6:ea:
11:02:b6:ac:a2:2a:f3:ce:b5:b1:c6:f8:16:77:c1:
1c:f1:48:12:2e:74:1e:ea:e6:41:05:fd:39:00:64:
af:b8:73:28:dd:a7:f0:bc:53:f6:2b:26:77:39:29:
32:71:30:47:91:8d:21:93:f9:43:69:9d:04:ee:83:
92:26:45:ae:81:0f:38:c1:c9:32:cd:33:a0:98:bd:
4c:cf:28:0e:75:06:c8:13:32:76:37:36:3b:a9:d8:
d5:95:fd:a7:b2:9f:bb:8d:4d:15:b9:2b:1f:b4:21:
5c:a0:32:c6:d5:86:b2:b4:e3:fd:0e:8c:7c:69:2e:
84:92:cf:16:ea:2d:46:61:53:97:14:be:1b:8c:44:
aa:a8:48:4a:ba:0f:e3:75:30:1a:d4:8b:1f:2e:2f:
43:06:88:af:3c:c6:cf:b0:bf:a2:7e:ac:ff:19:ae:
8c:31:0a:ff:5e:b8:a6:2d:34:80:82:5d:bf:c5:68:
2f:02:f8:d6:2e:80:b7:cf:2d:72:ce:2b:56:cb:fb:
d8:5b:bd:2a:01:6d:35:69:76:4f:e1:c0:2f:34:85:
45:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:F1:DA:A9:BB:B0:8B:00:9A:94:C4:F3:52:3B:1B:80:75:31:48:B9
X509v3 Authority Key Identifier:
keyid:CD:3C:11:0D:FD:77:F5:77:57:39:1C:0F:AE:DE:EB:E3:60:86:57:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:1f:76:c9:dc:2f:cc:3c:01:0e:00:88:0d:1e:75:31:7e:d3:
98:83:5d:b6:0a:20:8f:03:87:95:5f:9b:c0:53:5a:25:d9:c2:
6d:5e:4f:d3:9b:3e:d8:d4:35:5b:6b:80:a5:37:ed:14:48:e6:
c1:77:cd:b9:02:d6:3b:3b:18:83:9a:82:66:82:8d:aa:33:ed:
29:53:7d:92:ee:10:74:e7:aa:9c:0e:61:50:d8:80:a2:d5:78:
00:cb:87:c3:40:3d:14:72:24:98:0e:a8:a7:d8:0f:f8:3d:38:
c4:10:a8:96:ad:fe:3c:20:fe:31:c6:9e:f7:f1:a4:31:08:b4:
83:78:48:46:5b:00:1f:54:00:20:76:1d:70:77:c3:7b:99:f1:
a2:77:b1:32:a2:6d:54:20:64:6b:d6:87:fd:6e:66:d6:8a:c3:
5d:82:28:4b:3c:db:31:e3:78:2f:16:66:d8:83:9e:bd:c3:eb:
fd:b1:2e:7c:22:66:30:c1:2c:39:39:8e:22:b7:61:fa:a7:04:
e5:e6:70:b1:ef:d1:d7:f4:09:80:0b:13:c7:e5:99:5e:77:0e:
27:87:52:07:da:bc:60:c2:f6:0b:e5:4e:6c:2c:93:f6:18:a4:
9f:4b:69:5e:14:be:e7:51:ee:2f:b4:14:50:2e:b2:c8:ee:0b:
1e:d5:7d:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 02:13:55 2024 by rpki-client on console-fra.rpki-client.org