Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
File: fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft (raw, json)
Hash identifier: UzpIk1dx5fM7uopv9VKRqLNr6nSjQpCGdQaYc1tVYD0=
Subject key identifier: 65:6C:5F:DE:5A:87:D9:5E:13:B3:34:12:51:5A:39:F8:A0:57:DF:28
Authority key identifier: 7E:C6:10:D2:15:D3:89:13:42:BC:32:87:2A:50:F4:D0:CF:A9:DC:9F
Certificate issuer: /CN=7ec610d215d3891342bc32872a50f4d0cfa9dc9f
Certificate serial: 018F93F150FBFD9E40E1148B724F3323AB53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fsYQ0hXTiRNCvDKHKlD00M-p3J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
Manifest number: 117B
Signing time: Mon 20 May 2024 03:00:16 +0000
Manifest this update: Mon 20 May 2024 03:00:16 +0000
Manifest next update: Tue 21 May 2024 03:00:16 +0000
Files and hashes: 1: dawXr6G8e6UzbpgxY9gVgXct-Io.roa (hash: BunXSxBJMMtmtiU0GNFk8sLjO0cdkhUkhLngVYj4NpU=)
2: fsYQ0hXTiRNCvDKHKlD00M-p3J8.crl (hash: IbowDu4yXfPsXZaz7X/kFaZ/wcHXJGGp2sgWkyqOQFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
rsync://rpki.ripe.net/repository/DEFAULT/fsYQ0hXTiRNCvDKHKlD00M-p3J8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 03:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:93:f1:50:fb:fd:9e:40:e1:14:8b:72:4f:33:23:ab:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ec610d215d3891342bc32872a50f4d0cfa9dc9f
Validity
Not Before: May 20 03:00:16 2024 GMT
Not After : May 21 03:00:16 2024 GMT
Subject: CN=656c5fde5a87d95e13b33412515a39f8a057df28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:c8:c8:9d:cf:e7:12:fb:6b:52:26:74:d8:54:
96:e1:11:23:b0:5e:f7:2d:db:37:6a:fe:34:06:1f:
64:f1:8e:13:7e:59:8d:b1:5e:8e:65:d7:71:ee:cb:
d3:88:3d:9a:c5:5d:22:c7:5c:f5:c0:88:28:d1:2e:
5d:3f:fe:0e:a5:b1:34:07:49:1d:57:51:0b:f0:f7:
2b:c5:0c:02:7c:c8:e6:9e:89:c0:cb:73:4f:0c:9d:
fc:ec:b5:a8:63:d0:b6:a5:b8:2c:8b:2e:1e:f0:51:
30:d3:63:c2:ce:88:c5:89:74:6e:05:2e:9f:0e:0f:
5f:f5:d8:96:48:92:b7:bf:d2:8b:b7:c5:fb:66:10:
f8:79:4f:70:b8:05:2c:ac:2c:37:35:33:73:97:96:
d0:08:4f:cf:3c:0b:c4:af:47:cf:4d:6e:07:b1:fa:
ae:79:35:61:d9:46:3e:95:02:38:8c:9e:8c:42:d2:
60:56:92:e1:cd:e0:81:ec:3f:d1:14:2e:6e:28:41:
46:c9:cc:4c:ca:7b:bb:af:78:05:c4:dc:2f:1e:7d:
b6:c4:22:a6:d8:e9:eb:1e:79:dc:4e:da:df:fe:d6:
34:27:34:3d:ea:21:30:4e:38:59:44:5f:6a:5c:2d:
3e:85:08:31:dd:f7:c4:fd:aa:7d:c1:74:63:82:c0:
a5:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:6C:5F:DE:5A:87:D9:5E:13:B3:34:12:51:5A:39:F8:A0:57:DF:28
X509v3 Authority Key Identifier:
keyid:7E:C6:10:D2:15:D3:89:13:42:BC:32:87:2A:50:F4:D0:CF:A9:DC:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fsYQ0hXTiRNCvDKHKlD00M-p3J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:43:05:6a:88:2a:d7:ec:6f:51:84:b0:2a:af:7e:8c:2e:cc:
4c:a0:85:8b:94:e6:68:ae:34:b9:78:95:ac:4d:66:58:ef:4b:
3c:bb:f7:9a:bc:e1:0c:86:1d:41:e8:9b:25:d5:0c:08:67:fb:
82:03:6d:78:4a:54:b0:06:4d:26:89:e1:2b:9c:ae:2a:59:30:
00:68:88:60:08:1a:9b:99:cf:38:ac:d1:bc:8f:7c:86:70:6b:
6e:cb:4d:37:be:e7:f7:0c:25:b8:11:85:e9:0e:52:f0:0d:f6:
b7:b9:f0:38:cd:1f:4f:bb:23:e9:a2:7a:7f:6c:b8:6c:88:f6:
2b:0e:7a:74:36:f2:39:e9:4a:e3:0d:a8:e1:41:c8:f6:7d:0b:
0d:f6:fb:5c:59:c7:c9:f7:3b:0a:f6:d1:e2:a1:d8:22:cb:c4:
e4:f6:cb:0e:e5:46:d8:10:e0:fb:06:9c:0d:82:b3:d4:be:02:
a5:ae:8c:3a:ac:ab:7d:5a:d3:0c:d6:12:ac:12:f9:77:89:38:
61:c1:a8:02:89:34:f8:d1:5e:7f:bc:5d:d4:d2:24:ba:a9:62:
d9:bc:b3:39:0b:6f:1d:c1:4d:3c:42:7d:6b:59:b2:f7:f3:c7:
ff:1a:4e:f7:af:b1:10:10:14:0e:52:56:64:34:b6:1d:e3:b9:
31:fa:43:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 11:42:32 2024 by rpki-client on console-fra.rpki-client.org