Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
File: 8HHkN5gsw0b26BfKZIknI-21QZo.mft (raw, json)
Hash identifier: IBmssq7CMRxSuxDIK+UfKemg1uDi20pHhZ+qbn0NMYI=
Subject key identifier: 24:3A:0D:FF:6E:22:8B:BD:1E:6E:B5:98:F4:F7:1E:E3:8F:86:56:F6
Authority key identifier: F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
Certificate issuer: /CN=f071e437982cc346f6e817ca64892723edb5419a
Certificate serial: 018F486A4DEFB539C4C37E2FDA4F3B6A791F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
Manifest number: 0AB8
Signing time: Sun 05 May 2024 11:01:17 +0000
Manifest this update: Sun 05 May 2024 11:01:17 +0000
Manifest next update: Mon 06 May 2024 11:01:17 +0000
Files and hashes: 1: 8HHkN5gsw0b26BfKZIknI-21QZo.crl (hash: YgMtB11GphfV0x3QbQ1pct2NdToKTQ5LhYC+L/MF8ec=)
2: GzW0X6Mgnp35ylXkJIeQycZbrmM.roa (hash: Kw44KpFlBgtl2P1b0maZ6kwZ9czxbTnhk0qb6rD/Wbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:48:6a:4d:ef:b5:39:c4:c3:7e:2f:da:4f:3b:6a:79:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f071e437982cc346f6e817ca64892723edb5419a
Validity
Not Before: May 5 11:01:17 2024 GMT
Not After : May 6 11:01:17 2024 GMT
Subject: CN=243a0dff6e228bbd1e6eb598f4f71ee38f8656f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6c:50:19:ae:cb:4d:d7:53:49:30:58:6c:dd:
53:9e:68:ba:e7:8d:68:6a:2b:43:31:f2:a3:c9:5d:
40:bb:d1:c7:f9:38:da:ea:3c:79:68:95:55:12:81:
38:8d:4f:e8:31:bd:7c:f0:23:de:18:d0:ba:9e:68:
83:5e:33:b7:89:21:59:54:77:d9:9e:32:78:02:6f:
db:b3:87:c3:80:83:ea:7f:a7:ee:01:4e:18:99:e1:
77:21:03:ef:31:20:d5:12:1b:41:b0:c0:c2:79:bd:
73:97:fc:37:36:0a:5e:f4:12:72:1a:6a:3e:62:c8:
df:7c:f3:d8:9e:34:be:1a:d4:d0:6b:73:ba:68:87:
04:71:20:d1:1b:06:5b:3e:23:a0:5f:ac:fd:cc:38:
94:9e:61:95:74:a8:ba:13:2c:06:f5:7f:4e:71:44:
6a:11:fc:3d:ea:74:fe:6b:6b:f6:bd:38:44:e4:7d:
d1:50:b9:f2:53:b0:9d:f4:ce:44:9f:ce:4d:e0:be:
a1:15:b7:a8:6b:5e:68:6d:fc:8b:1a:69:3b:5a:8a:
50:28:a6:b9:a6:a6:0e:ad:01:32:12:c4:d8:10:82:
5a:eb:c4:49:18:32:11:02:b9:f5:29:03:e8:d4:45:
ce:34:3c:c4:92:9d:85:5c:61:be:7f:6b:80:dc:54:
ae:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:3A:0D:FF:6E:22:8B:BD:1E:6E:B5:98:F4:F7:1E:E3:8F:86:56:F6
X509v3 Authority Key Identifier:
keyid:F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:c2:0a:24:ac:87:97:85:0c:4d:78:5f:5b:3d:3d:49:cd:6b:
1e:03:37:20:3f:16:08:56:39:87:91:3b:e0:2a:0f:15:6c:ee:
8c:e1:09:a7:96:01:b1:48:ae:e5:ec:f4:de:97:73:64:77:8c:
3e:b3:39:4a:62:6b:72:40:3c:bf:69:2d:c1:06:d2:ed:96:e1:
97:b1:4b:31:34:91:ef:34:60:c9:90:1c:95:b9:b4:79:f3:58:
f3:bf:4b:87:2e:54:6b:38:a2:28:f2:aa:f2:bd:5b:24:ad:de:
a3:23:f4:2c:72:3e:00:96:9e:b0:26:b4:3a:29:6d:a8:df:91:
92:59:57:6e:d5:be:a9:d4:96:e5:d5:70:e0:e3:76:ec:00:05:
48:33:35:d8:00:fd:1b:63:d7:ff:56:a3:43:87:de:5e:ec:93:
d4:15:76:7b:90:65:09:6b:77:51:65:ca:39:76:be:3e:0a:47:
bc:7d:e2:fe:4e:02:72:40:2f:cb:9d:d3:d0:eb:35:68:ce:52:
43:18:4a:99:5e:55:49:c8:c3:84:b8:d1:5a:fb:8b:39:bb:18:
c8:3c:4d:6c:cd:33:2b:e3:ec:bf:af:57:c2:24:8f:e0:c6:00:
f7:66:13:b1:5f:83:2e:c4:6a:9d:7f:ab:2f:d2:2d:7d:4a:92:
24:c1:79:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 12:28:25 2024 by rpki-client on console-ams.rpki-client.org