Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
File: 3XGhKciwiZWUIZnqbRsigmU1DQs.mft (raw, json)
Hash identifier: 0SIq4HI0RvTrtWSbUh1SXMG+jE56tEQVGKVYfqhhCI4=
Subject key identifier: 23:1C:CB:00:78:13:6B:F3:A6:E2:07:BE:AD:15:30:14:19:C6:14:C5
Authority key identifier: DD:71:A1:29:C8:B0:89:95:94:21:99:EA:6D:1B:22:82:65:35:0D:0B
Certificate issuer: /CN=dd71a129c8b08995942199ea6d1b228265350d0b
Certificate serial: 018F46B30D20E84C711B3704798735FD8B3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
Manifest number: 1155
Signing time: Sun 05 May 2024 03:01:30 +0000
Manifest this update: Sun 05 May 2024 03:01:30 +0000
Manifest next update: Mon 06 May 2024 03:01:30 +0000
Files and hashes: 1: 3XGhKciwiZWUIZnqbRsigmU1DQs.crl (hash: WkgOrxPMFcIkLcgIytmpzGCKdyn41ZlCnMnWSmbbnIg=)
2: e_Ed3LwhkDHRwMKUQb_N5zvaQIc.roa (hash: h3l+N0HtWZqmqwC/wqbbMS4p79kBL6l9EF4xQzVAW14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 20:58:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:46:b3:0d:20:e8:4c:71:1b:37:04:79:87:35:fd:8b:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd71a129c8b08995942199ea6d1b228265350d0b
Validity
Not Before: May 5 03:01:30 2024 GMT
Not After : May 6 03:01:30 2024 GMT
Subject: CN=231ccb0078136bf3a6e207bead15301419c614c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:cd:72:22:73:9f:94:30:03:e9:33:4f:99:95:
8d:a6:63:6b:ee:60:e7:72:2e:55:3e:15:a0:9e:99:
74:70:a8:b2:6b:8a:c5:b1:0c:2e:79:99:f7:7c:da:
54:14:64:7f:90:d9:08:a6:a4:a9:24:4a:ea:54:88:
1d:43:86:40:33:5d:90:b1:42:23:25:54:df:a9:80:
4b:78:f6:85:2f:8a:df:ff:6e:46:d1:54:50:42:6f:
a4:b0:03:eb:39:f3:84:78:f9:16:d8:ad:db:80:8b:
ad:ec:33:23:f1:c0:8c:3e:14:a4:e0:29:0e:ee:77:
56:46:6f:ea:86:97:77:dd:c3:b9:64:61:e2:69:5f:
16:c8:fa:f1:5f:eb:af:28:4f:b8:4c:d6:0a:2e:51:
79:38:92:22:21:b8:96:1b:47:08:6c:4d:ab:06:7a:
cb:18:8b:0c:e1:73:e9:73:41:e0:06:bc:ca:cc:0d:
f1:9f:83:a5:11:a3:b5:bc:f9:a7:35:33:a2:04:54:
7a:9f:e3:6f:ce:c0:8e:03:f4:46:7d:be:7f:05:9c:
1b:1b:b0:77:b5:ae:cb:cd:f6:54:2a:28:a6:bd:1b:
16:f0:4b:34:ba:e7:78:56:7b:0e:86:62:64:c7:87:
20:f5:d3:63:4e:f4:39:31:a2:a0:6d:5b:76:c4:1b:
29:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:1C:CB:00:78:13:6B:F3:A6:E2:07:BE:AD:15:30:14:19:C6:14:C5
X509v3 Authority Key Identifier:
keyid:DD:71:A1:29:C8:B0:89:95:94:21:99:EA:6D:1B:22:82:65:35:0D:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:6d:f5:0d:b9:b2:e5:c0:c6:5b:59:bb:87:b5:9c:ea:3b:3a:
99:d0:f1:12:a3:46:7e:ab:5d:90:5e:94:d9:0e:f3:ff:18:7e:
ff:f5:6f:b9:87:ee:a8:87:0d:db:dc:c3:21:28:50:35:d6:75:
fe:4e:fb:70:85:c6:ce:67:83:a4:3e:db:e4:33:8c:69:42:38:
a8:0c:5d:4f:fa:99:a5:02:74:92:7b:77:58:3b:70:9d:be:2c:
0e:9b:60:4c:ba:b8:88:c3:34:53:0f:d7:fe:8f:3e:fd:ae:fa:
09:72:dc:5f:bc:24:c2:17:b1:ae:3d:3a:1f:7b:e5:de:d3:43:
f9:cb:81:23:6f:6b:f2:3a:bb:85:3b:46:df:16:5a:37:12:e3:
ed:f0:5d:91:c1:c0:ad:53:2d:90:c0:2c:8c:2e:7c:41:4f:fe:
ec:7e:02:89:0f:3e:ed:cc:17:1f:e7:39:66:60:5a:a8:9e:bd:
0e:61:72:a4:e9:60:01:9f:ae:ae:de:a7:e0:9e:24:51:63:eb:
8e:bd:fc:d6:9a:ac:7c:ed:29:5e:89:26:cd:58:78:96:6c:87:
df:bd:0d:3f:36:82:35:ac:56:22:3b:61:dc:76:e8:2b:30:5e:
8e:26:36:08:b9:84:db:55:92:06:21:51:32:ac:23:50:c0:c8:
8f:71:2c:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 03:51:53 2024 by rpki-client on console-fra.rpki-client.org