Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
File: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft (raw, json)
Hash identifier: iPYVxUU7Bek+188VCT7kXn66YFsTCNFZq9PftFi5q+k=
Subject key identifier: 63:0A:91:75:0B:64:B9:6C:29:AF:6C:2D:0A:C0:5A:15:34:08:12:35
Authority key identifier: FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
Certificate issuer: /CN=fad7e14a262560191c66576998e9c69b89c3c136
Certificate serial: 018F3C9D5932B3B7B503C5B334E0931E9CFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
Manifest number: 05E0
Signing time: Fri 03 May 2024 04:01:35 +0000
Manifest this update: Fri 03 May 2024 04:01:35 +0000
Manifest next update: Sat 04 May 2024 04:01:35 +0000
Files and hashes: 1: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl (hash: JbtHWAc0PoK8VZk2dLGriToAOXTI6Zm4NoeuMfavD74=)
2: ezpf81mVA8Mo_HZd5p_y-ACnwiI.roa (hash: 1orCjUx7Ph7+5zaHZUemCVHHGpabpE+hgxYJxFIsd4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3c:9d:59:32:b3:b7:b5:03:c5:b3:34:e0:93:1e:9c:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad7e14a262560191c66576998e9c69b89c3c136
Validity
Not Before: May 3 04:01:35 2024 GMT
Not After : May 4 04:01:35 2024 GMT
Subject: CN=630a91750b64b96c29af6c2d0ac05a1534081235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ac:50:ec:a7:98:99:d1:9c:cd:c0:a2:ac:76:
ae:24:f2:14:ba:91:ca:0f:e2:09:fc:7b:16:05:cb:
8d:b3:64:c3:52:00:7a:2e:56:29:80:2b:9e:1d:aa:
45:ee:b0:e0:9a:a8:b1:ea:37:d4:a3:74:db:07:7b:
18:43:e9:5a:18:32:ba:b9:1b:51:9a:0f:ac:7c:74:
2b:bd:9b:1d:62:1a:ce:02:5c:ba:6e:2b:b1:9c:0c:
d9:78:26:da:73:10:42:15:ed:a4:ba:ce:74:a3:2b:
2b:ee:fa:4d:41:1a:ff:07:bc:a4:a1:ab:64:18:68:
14:c2:83:27:47:8f:7d:1d:48:3f:5b:2f:b7:0b:f9:
08:84:0c:1f:70:ea:4d:74:6c:8d:a3:b7:1b:95:0f:
bb:43:30:29:b7:3d:28:a1:1f:aa:3a:67:0d:6a:24:
2e:11:e2:d2:66:92:48:62:4f:3c:d2:ed:41:43:3a:
3a:88:ea:5a:6b:58:31:19:c9:52:ec:5a:47:9b:27:
4a:5f:54:44:0b:2a:91:1d:ee:41:65:a7:0c:c0:94:
f1:77:20:e2:4e:83:01:74:95:d5:19:f8:26:1d:2c:
a0:bd:3a:77:3c:88:a6:be:03:37:b8:e4:af:bc:7c:
a8:6d:a2:d5:a5:7c:74:7c:36:23:67:6b:2b:a0:78:
94:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:0A:91:75:0B:64:B9:6C:29:AF:6C:2D:0A:C0:5A:15:34:08:12:35
X509v3 Authority Key Identifier:
keyid:FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:aa:fd:48:5f:cd:51:aa:64:16:0a:62:f6:f5:39:c0:45:24:
78:2b:f1:b2:2a:06:38:d0:a9:7e:83:e9:7c:5b:60:ed:32:b1:
e9:64:ee:64:8b:c3:c2:28:b1:0b:2c:d3:cd:bf:76:08:e6:e5:
3a:88:c2:1f:c2:31:89:b9:49:4a:8f:95:f4:65:d2:9c:a8:15:
19:3d:b9:33:bf:5e:dc:ea:1a:d1:65:e2:c6:54:67:05:7c:ed:
38:70:17:5a:fb:8f:26:3c:32:3a:bb:7b:d1:a2:3a:bb:56:3a:
a8:e6:34:16:f8:3a:12:33:d9:ae:29:74:c5:f2:95:f8:51:f0:
46:2d:57:da:d3:92:a2:19:8a:06:d6:b2:13:cb:49:c3:01:49:
dc:55:59:fa:66:d8:dc:12:a2:e6:86:72:1c:9e:ea:f9:2b:6a:
29:84:bc:7f:2e:7e:97:ac:9b:2d:e8:7f:dd:83:64:c6:20:28:
1f:77:0b:a5:4d:a7:55:2e:8e:79:d1:68:77:65:e0:58:e3:a5:
db:43:40:4c:7f:13:2f:09:d4:35:b0:40:60:6d:ca:5c:9e:7d:
fe:c0:7b:94:99:4a:c8:22:4b:b7:ec:7d:26:2b:37:84:27:f9:
a0:5b:dd:52:e5:3a:bd:72:90:0a:8d:d0:47:26:8b:fb:44:61:
94:d4:51:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 11:21:03 2024 by rpki-client on console-ams.rpki-client.org