Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
File: CKkhe9gwYnyz5lfAuQY8giNN28s.mft (raw, json)
Hash identifier: hSzQaig4rgZswDJ98QodCtV2OPGpZ/I+NY2z+S42+Bw=
Subject key identifier: 34:E6:78:F1:71:BD:65:00:C7:AD:FE:ED:FE:1B:31:B6:2F:43:CF:85
Authority key identifier: 08:A9:21:7B:D8:30:62:7C:B3:E6:57:C0:B9:06:3C:82:23:4D:DB:CB
Certificate issuer: /CN=08a9217bd830627cb3e657c0b9063c82234ddbcb
Certificate serial: 018F5437614DFB390DE087E9E9518F74D4F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
Manifest number: 1160
Signing time: Tue 07 May 2024 18:01:06 +0000
Manifest this update: Tue 07 May 2024 18:01:06 +0000
Manifest next update: Wed 08 May 2024 18:01:06 +0000
Files and hashes: 1: CKkhe9gwYnyz5lfAuQY8giNN28s.crl (hash: UPIfn0CdgP49cyAKmc1AKl/D/y8bEX+1yUReFqctMUE=)
2: apILGtQflvaLcBidaVY8RkDjP8M.roa (hash: 6v45IYxoAxgdE3XcrDJdNAI6e1uPTMz7j1Gkkd6Nr6s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:54:37:61:4d:fb:39:0d:e0:87:e9:e9:51:8f:74:d4:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a9217bd830627cb3e657c0b9063c82234ddbcb
Validity
Not Before: May 7 18:01:06 2024 GMT
Not After : May 8 18:01:06 2024 GMT
Subject: CN=34e678f171bd6500c7adfeedfe1b31b62f43cf85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2f:07:f1:9f:31:e8:16:7e:02:40:c3:fc:1c:
40:f1:97:38:fd:22:09:a3:3d:99:53:e3:0f:08:54:
74:4b:08:9c:0c:89:49:e1:8f:34:fe:d2:63:d8:8f:
11:2e:8d:a6:5c:1f:35:3e:91:03:47:f5:7e:2c:de:
40:5e:7d:fb:d1:e5:38:bd:01:88:2f:8e:bf:49:ef:
0d:3b:72:56:93:26:8f:d9:99:11:4a:07:e9:01:3f:
c6:ec:70:35:76:68:eb:a5:1c:62:f8:f7:00:03:50:
ea:85:ae:28:6d:bb:d3:70:f7:41:90:b2:c8:57:f7:
07:40:7a:23:ce:a6:b0:3e:37:fc:17:35:3e:d9:88:
9f:0c:ef:ac:ed:e7:78:1c:c2:30:88:77:73:d9:cd:
7c:74:e5:c2:96:66:23:1d:20:98:00:84:ef:60:a8:
56:95:5f:65:92:25:dc:98:a5:af:40:9c:f4:52:25:
4f:35:01:c0:5b:fe:4e:89:4a:59:19:0b:d4:32:87:
34:66:0c:b6:07:e7:63:c9:02:94:a7:48:9e:3c:17:
a5:cd:54:c1:42:25:f5:e4:fe:b8:ef:50:a4:04:21:
9a:f2:72:42:52:27:5b:7b:a8:57:da:1f:61:ff:50:
ab:80:86:76:77:fd:5a:9a:86:b5:fa:0d:d5:39:4f:
76:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:E6:78:F1:71:BD:65:00:C7:AD:FE:ED:FE:1B:31:B6:2F:43:CF:85
X509v3 Authority Key Identifier:
keyid:08:A9:21:7B:D8:30:62:7C:B3:E6:57:C0:B9:06:3C:82:23:4D:DB:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:e1:bb:86:f4:40:88:25:6a:bd:fe:97:86:30:4b:5d:0f:76:
d1:5d:68:c2:c6:71:d8:ed:7d:46:0e:62:72:dc:f7:1d:83:f3:
ba:e1:bd:91:3c:57:d1:a7:73:5c:a1:92:75:50:9b:46:eb:a2:
61:00:43:1f:d0:03:93:7c:ab:17:42:37:c8:f0:1e:fd:61:fe:
58:e6:29:f9:b8:63:bf:40:fe:6b:36:a8:c3:ae:36:22:1f:b6:
66:0f:e4:b6:17:09:a7:48:aa:d2:50:b3:73:f1:7e:c3:32:9f:
26:93:de:85:11:d3:09:da:74:59:af:c6:a2:cc:cf:12:f2:69:
b3:a5:c7:c6:89:8f:1e:5e:0f:1b:ff:fa:34:57:16:c0:9f:e1:
4c:02:87:b8:96:04:a3:93:d6:00:7c:ab:92:cb:17:8d:fd:0e:
fe:84:d3:c2:be:22:67:26:3c:c9:31:1c:01:c0:bf:13:2f:1a:
85:ec:7d:a8:44:bc:63:4f:75:31:2c:6a:0c:19:8c:27:c0:af:
86:0c:c6:31:63:6e:47:13:dd:95:53:b2:ea:ff:78:26:e3:9c:
d4:56:22:dc:aa:b7:4b:bd:4d:4c:4d:0a:ed:9b:33:5d:1e:40:
f0:4d:6e:3e:8e:94:24:e5:73:1f:22:03:7e:b4:0b:ae:14:eb:
d6:73:e8:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 19:59:06 2024 by rpki-client on console-ams.rpki-client.org