Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft
File: czaDy4VtbZ_1jih-ipBdKS3KazQ.mft (raw, json)
Hash identifier: 3sRq9JmAxIXq9bMdozbXeT1AKfHD5tATNv6mamLYm4g=
Subject key identifier: B9:D7:B3:34:44:38:A9:9A:3A:44:2C:AA:DB:48:52:32:F9:2B:4F:16
Authority key identifier: 73:36:83:CB:85:6D:6D:9F:F5:8E:28:7E:8A:90:5D:29:2D:CA:6B:34
Certificate issuer: /CN=733683cb856d6d9ff58e287e8a905d292dca6b34
Certificate serial: 018F99858DCE52A63FABDBFA907F6C9FF3D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czaDy4VtbZ_1jih-ipBdKS3KazQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft
Manifest number: 0DC6
Signing time: Tue 21 May 2024 05:00:17 +0000
Manifest this update: Tue 21 May 2024 05:00:17 +0000
Manifest next update: Wed 22 May 2024 05:00:17 +0000
Files and hashes: 1: czaDy4VtbZ_1jih-ipBdKS3KazQ.crl (hash: 2eDVslF60+ItoYPxTo9K3Ckks2VzC3EbuX6n4DEToH0=)
2: uuP8C8pmmecPaA_3_tnr8ocmk3Q.roa (hash: orNJ9pT3NinT9ZTfi5iQPIBQpMkr3mM83VZErVrX7gM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/czaDy4VtbZ_1jih-ipBdKS3KazQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 22:57:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:99:85:8d:ce:52:a6:3f:ab:db:fa:90:7f:6c:9f:f3:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=733683cb856d6d9ff58e287e8a905d292dca6b34
Validity
Not Before: May 21 05:00:17 2024 GMT
Not After : May 22 05:00:17 2024 GMT
Subject: CN=b9d7b3344438a99a3a442caadb485232f92b4f16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:cd:c4:7d:f7:b6:21:cf:36:20:fd:80:10:d4:
84:ef:36:98:95:d9:be:ff:24:55:bc:86:0d:e3:ef:
a4:32:10:ab:b1:5a:55:39:33:2a:01:9a:d4:a5:4c:
bc:11:6f:eb:56:1a:8a:7e:b4:df:59:e5:a0:a0:24:
52:26:0f:57:eb:dd:79:e0:3d:63:ce:50:ab:d4:08:
4f:cb:a1:92:d5:f5:d1:4d:80:26:56:53:14:08:22:
6e:ee:a4:e0:f6:d1:fb:72:55:4a:2b:57:9a:3d:43:
00:a9:14:5e:39:81:31:34:0a:61:de:cf:b0:aa:6d:
79:90:b6:ff:90:db:42:e1:36:e4:f5:7a:cb:9a:3e:
67:61:c3:d0:de:11:e7:31:ef:54:44:7d:d0:e1:65:
60:e9:d7:04:ba:32:88:85:f3:4d:d6:33:78:2c:52:
ad:a9:c7:10:5e:28:12:22:5d:4d:26:6c:3d:d3:86:
a0:df:9d:0c:3c:4f:da:49:b9:5d:98:b8:a5:a0:f8:
50:67:07:68:de:6d:59:04:b9:0d:44:71:dd:fa:bc:
a7:36:cb:4d:e4:35:cc:03:80:3d:96:96:eb:a4:d0:
ab:63:f7:99:2f:14:47:ff:1c:71:99:93:c6:63:e6:
0a:3f:e6:6c:d5:e0:80:a4:4f:c6:3e:7b:46:30:65:
cd:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:D7:B3:34:44:38:A9:9A:3A:44:2C:AA:DB:48:52:32:F9:2B:4F:16
X509v3 Authority Key Identifier:
keyid:73:36:83:CB:85:6D:6D:9F:F5:8E:28:7E:8A:90:5D:29:2D:CA:6B:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czaDy4VtbZ_1jih-ipBdKS3KazQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:f9:a9:f1:f1:8c:25:11:72:6c:ec:24:e8:80:5f:bc:d2:18:
43:d8:56:93:f4:1b:36:77:39:61:eb:df:6d:53:c2:80:eb:f4:
c3:3d:69:fc:cd:4a:ac:53:65:44:2c:b7:06:12:54:d7:37:c8:
fd:d8:49:bf:7f:31:dd:ad:6f:ad:8e:32:ea:f0:c0:8a:af:8e:
45:8c:14:a3:b6:da:fe:90:82:15:89:14:eb:16:0e:b8:f8:0d:
17:4f:72:23:ff:15:ae:61:f8:cf:5a:ff:30:db:00:0b:14:db:
4e:6c:bd:19:0c:3b:d4:d1:64:46:4d:d6:50:42:30:3d:6d:02:
9c:75:95:08:e6:a6:11:79:ed:51:54:02:69:e0:ef:e9:89:26:
b2:8a:98:3e:f5:b2:df:83:b4:97:f4:da:b3:95:24:25:9f:9f:
db:21:8f:91:e6:6d:ac:bc:07:3f:dc:06:ef:f9:5c:ed:d8:18:
30:a6:a9:ac:5b:a9:82:52:3d:df:10:c5:1c:a0:da:38:89:52:
2a:ab:78:bc:17:8e:ae:9a:dc:a0:9b:00:9e:4a:9f:8b:66:0a:
4d:53:00:8d:cd:18:19:a9:2b:23:9d:80:fc:db:f3:ec:3c:80:
59:c5:91:ea:fe:8e:0c:69:e2:91:f6:aa:97:01:1d:19:e0:d9:
21:5a:4e:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 06:02:45 2024 by rpki-client on console-fra.rpki-client.org