Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
File: 0HCWDtmg2hybfiRX6ry2YEeNCK4.mft (raw, json)
Hash identifier: OVWdYkRy0bn8XtAchqonB7GZ1t9C4nBY/5ND19snIRk=
Subject key identifier: 7D:E2:E1:97:DC:10:29:05:76:AE:08:7D:E5:74:ED:0B:84:E3:61:59
Authority key identifier: D0:70:96:0E:D9:A0:DA:1C:9B:7E:24:57:EA:BC:B6:60:47:8D:08:AE
Certificate issuer: /CN=d070960ed9a0da1c9b7e2457eabcb660478d08ae
Certificate serial: 018F8749312796930AFD065733B272EA2219
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
Manifest number: 0257
Signing time: Fri 17 May 2024 16:01:11 +0000
Manifest this update: Fri 17 May 2024 16:01:11 +0000
Manifest next update: Sat 18 May 2024 16:01:11 +0000
Files and hashes: 1: 0HCWDtmg2hybfiRX6ry2YEeNCK4.crl (hash: avdktk/78Pm5gH4Bn37JZnsHwN/UG56qLu2y2skgNjI=)
2: cFXBblys90fFErArMqif0v9AFwY.roa (hash: wLvHSplD3zmQepXMZ09m+imzE5sekdAtcdAkf3hgatM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:31:27:96:93:0a:fd:06:57:33:b2:72:ea:22:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d070960ed9a0da1c9b7e2457eabcb660478d08ae
Validity
Not Before: May 17 16:01:11 2024 GMT
Not After : May 18 16:01:11 2024 GMT
Subject: CN=7de2e197dc10290576ae087de574ed0b84e36159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:14:76:86:e8:b7:fc:72:21:80:c9:a8:3a:af:
46:f8:3f:73:96:a0:f6:a9:a7:b5:67:ca:cd:f0:87:
b0:dd:ec:37:57:97:57:fa:fb:dc:e5:1a:24:93:fd:
40:92:1e:e5:ba:80:c1:4d:ec:d5:e9:c0:15:ba:ec:
4a:17:10:b4:25:e9:42:0a:31:6d:49:87:f2:3b:66:
8f:d1:07:e5:77:39:e6:f7:0b:0e:7f:61:f9:e3:1e:
39:96:a9:4b:01:e9:35:3f:b9:db:71:22:df:80:67:
ee:da:e0:95:02:f4:f5:57:e4:95:bc:82:48:f6:d8:
46:39:65:84:cc:29:c2:a5:67:11:fb:29:39:46:c5:
22:fd:a5:a9:83:3d:ef:62:53:47:9f:63:c8:5b:04:
32:85:73:df:e7:2e:8b:31:e2:59:f9:63:9a:22:37:
63:a0:59:e9:a4:48:24:fd:06:bf:27:bb:a4:9a:ee:
35:8b:1e:83:a2:63:32:ad:21:53:09:11:77:41:e5:
12:7f:41:81:4c:88:60:6f:49:0c:9d:83:da:05:0e:
fd:cc:f9:a5:5f:8c:52:e6:9e:c7:45:8e:16:27:0e:
af:0a:fd:11:45:68:65:ca:4f:9b:b2:03:83:6a:8c:
28:c6:f4:17:c3:e8:9f:75:29:25:cc:22:e5:d7:d1:
98:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E2:E1:97:DC:10:29:05:76:AE:08:7D:E5:74:ED:0B:84:E3:61:59
X509v3 Authority Key Identifier:
keyid:D0:70:96:0E:D9:A0:DA:1C:9B:7E:24:57:EA:BC:B6:60:47:8D:08:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:9a:34:95:e3:a2:9e:e2:5b:89:da:d3:3f:3c:85:42:82:b2:
82:bf:41:f7:37:85:6b:c0:e0:0d:e2:70:d5:86:9f:ab:24:f2:
d1:a5:38:5c:28:02:28:18:37:d4:c3:f9:71:02:39:d5:50:78:
68:f0:64:6d:14:8b:c8:98:89:33:5c:02:65:b1:19:71:74:6f:
f5:08:81:ce:a4:e5:e4:42:ab:b3:d7:d8:08:3f:5d:8e:10:2b:
f1:71:57:44:34:81:58:7e:fb:46:0d:38:2a:db:cf:be:ba:68:
6e:8e:da:8c:eb:98:e1:d2:56:54:5c:1f:4c:1a:8a:f3:6a:c4:
c2:45:77:4b:d0:d4:b1:fa:15:3e:dd:c7:69:4a:f3:d3:5a:e1:
d0:1f:03:9b:89:f3:f7:8e:d8:07:90:f9:cf:9b:d7:f8:a8:77:
df:0e:35:fe:98:45:94:bb:d5:0c:0f:0b:68:4d:88:d6:f8:f7:
a2:42:82:17:97:c1:04:e0:08:28:c8:56:09:b9:58:5a:22:71:
5a:cb:62:f3:d9:9c:f4:6f:be:92:f3:59:5f:bc:b4:21:fc:d3:
81:6a:be:ee:c1:0c:86:ae:8a:8f:4f:bf:58:55:7d:dc:b0:a9:
58:94:8d:b5:51:cb:da:e0:4f:9d:4b:69:7f:54:55:4c:36:7f:
0d:15:bd:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:43:58 2024 by rpki-client on console-fra.rpki-client.org