Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
File: 0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft (raw, json)
Hash identifier: 3CKdnWDmKiwQFuFVHhN8DtyzGaYz6AJavJoLEPN6EiY=
Subject key identifier: 73:36:D0:2F:3F:12:3B:0D:D4:D5:26:05:E5:AF:40:55:9B:3F:98:35
Authority key identifier: D0:EE:03:89:68:7D:BD:44:5D:E6:F9:23:9C:1D:02:C3:77:0C:F5:74
Certificate issuer: /CN=d0ee0389687dbd445de6f9239c1d02c3770cf574
Certificate serial: 018F595DFEDFC7F2527000D58B0CC2B0E78B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
Manifest number: 1161
Signing time: Wed 08 May 2024 18:01:23 +0000
Manifest this update: Wed 08 May 2024 18:01:23 +0000
Manifest next update: Thu 09 May 2024 18:01:23 +0000
Files and hashes: 1: 0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl (hash: fBoz88ks8mBI4tXPExVSRPBpG1ZpqV2uJkoDB8goQnQ=)
2: hyHtH3rRQScWGmlj_42LL0qXWC8.roa (hash: H5deeQ0BfMEZO6smpLeBRgGRZCnzQfMcAWznZoo8ESE=)
3: j17T50-XIH3-7R7kEYfNbnlEr1E.roa (hash: JBgAaa/0HILQP91bs7dVth9lkFOShJK12GPHw7C+5/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:59:5d:fe:df:c7:f2:52:70:00:d5:8b:0c:c2:b0:e7:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0ee0389687dbd445de6f9239c1d02c3770cf574
Validity
Not Before: May 8 18:01:23 2024 GMT
Not After : May 9 18:01:23 2024 GMT
Subject: CN=7336d02f3f123b0dd4d52605e5af40559b3f9835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:50:98:dc:d3:e7:02:05:2b:2a:50:15:79:8d:
09:ca:8b:10:af:a4:c8:90:2f:27:5d:e8:c6:f9:b2:
51:9c:ba:7a:be:d4:da:8b:c2:62:ac:98:bd:24:8f:
89:b4:a6:2b:bd:78:ab:8a:00:b6:80:16:58:bf:a9:
76:8c:f8:23:65:0a:7b:e5:74:ca:50:d1:3e:74:2d:
0c:5a:d9:af:68:2a:de:76:05:e4:8f:d4:9b:23:2c:
5e:d7:7a:4b:35:d7:e5:7d:b2:78:02:57:e8:f3:6c:
9f:f4:34:86:0d:79:a3:84:8a:5c:6f:e5:fc:62:a5:
da:ab:ac:6c:7c:56:15:06:8d:d8:69:1e:00:ba:91:
06:54:a2:cb:ac:38:88:5d:42:08:c4:a1:1a:bc:85:
ae:b9:e9:2e:2b:e9:5d:ef:95:eb:3b:8a:aa:5a:0f:
2e:0f:5e:d5:a6:49:e3:91:19:e0:06:4c:11:e1:07:
fa:c3:6a:20:fb:14:63:10:72:88:c8:f8:97:df:d6:
da:79:d9:4d:ee:cc:f6:31:5c:5d:c1:f0:f2:fc:a8:
e3:44:b0:02:3a:be:90:9b:33:50:9d:4b:d7:0d:92:
41:d2:bf:81:cf:67:ff:bd:fb:d3:54:6d:c0:12:a7:
24:02:6c:e7:ab:d5:d8:e8:32:69:2e:18:97:9d:67:
00:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:36:D0:2F:3F:12:3B:0D:D4:D5:26:05:E5:AF:40:55:9B:3F:98:35
X509v3 Authority Key Identifier:
keyid:D0:EE:03:89:68:7D:BD:44:5D:E6:F9:23:9C:1D:02:C3:77:0C:F5:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:08:8f:fd:a8:1d:2f:dd:fb:79:52:de:42:b8:59:dc:68:7a:
77:6b:b6:51:68:2d:d3:37:2c:e1:b9:0b:da:4a:a1:3b:37:17:
5f:41:ee:f2:ed:59:91:6f:80:67:2d:af:1f:87:d6:11:36:83:
a5:38:90:d3:da:3e:f9:e8:2d:c9:71:04:42:a5:ef:fd:73:8d:
3e:2f:bc:ab:ff:6f:c6:d3:bb:6a:e2:06:e5:06:b7:78:27:49:
4a:3e:84:56:4c:b5:f4:18:85:fa:c4:60:48:39:ed:5e:15:9c:
29:d5:ff:5f:bc:63:18:5a:2b:de:fd:89:bc:52:bf:5c:b2:47:
26:3c:b5:e4:95:d7:14:56:55:07:54:0a:71:fb:9b:ff:b0:05:
94:4b:da:85:1d:50:84:03:b8:0e:e8:4b:c8:41:42:f8:a6:51:
32:a3:45:7c:d8:75:30:82:ae:1f:15:e9:27:21:74:b1:00:95:
4e:0a:a9:5d:4c:8d:af:4b:c7:0b:2c:3b:07:49:35:99:c8:ad:
98:14:f8:c3:c7:cd:54:81:dd:89:5c:d5:a8:13:f7:09:29:12:
fe:d5:e8:02:68:db:ea:53:dc:cd:41:03:cb:47:1d:e8:2a:3d:
7f:65:97:e1:16:8b:9e:86:b8:58:05:dd:b5:4a:ff:9b:66:0d:
10:2b:1a:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 21:52:12 2024 by rpki-client on console-fra.rpki-client.org