Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
File: ddoOY-skfZoLE7TLNt1nJJkgu8o.mft (raw, json)
Hash identifier: d659Wbtp5rDpu/Edw7jgH5lDbjVPnT2RqTarFu83I4I=
Subject key identifier: CA:01:C8:9A:2A:6B:0E:66:35:79:EA:DA:47:30:C8:7E:CF:0E:7A:05
Authority key identifier: 75:DA:0E:63:EB:24:7D:9A:0B:13:B4:CB:36:DD:67:24:99:20:BB:CA
Certificate issuer: /CN=75da0e63eb247d9a0b13b4cb36dd67249920bbca
Certificate serial: 018F893777BA2CA7C44BA4CAC8CC760D04A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddoOY-skfZoLE7TLNt1nJJkgu8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
Manifest number: 117B
Signing time: Sat 18 May 2024 01:01:04 +0000
Manifest this update: Sat 18 May 2024 01:01:04 +0000
Manifest next update: Sun 19 May 2024 01:01:04 +0000
Files and hashes: 1: HlXOIbwnlqsiIcAV5W6jHSDRAmo.roa (hash: iF68mxmUle1okW+yaOHPriABfb/+Zsqbh8cB6DT009w=)
2: ddoOY-skfZoLE7TLNt1nJJkgu8o.crl (hash: zahLxXw6sWqC0IQByYxKhJ48sLRZf5Tb1yLs9kDTw5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ddoOY-skfZoLE7TLNt1nJJkgu8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:89:37:77:ba:2c:a7:c4:4b:a4:ca:c8:cc:76:0d:04:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75da0e63eb247d9a0b13b4cb36dd67249920bbca
Validity
Not Before: May 18 01:01:04 2024 GMT
Not After : May 19 01:01:04 2024 GMT
Subject: CN=ca01c89a2a6b0e663579eada4730c87ecf0e7a05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:6e:88:3d:16:de:ea:5f:f7:55:b5:49:e9:6a:
56:96:93:e3:94:5c:03:b9:d3:90:37:ee:b5:7e:7b:
55:17:fe:19:8a:e8:08:a3:92:a4:1b:39:56:77:e7:
de:e9:fa:6e:07:0c:bb:be:ce:86:df:cb:63:82:84:
ef:2c:69:69:bc:c8:76:2e:3b:51:94:f3:3b:db:40:
8b:b6:70:9a:56:f4:f5:ed:44:33:69:64:bb:6d:b3:
47:e5:07:df:55:c9:fa:5c:6e:33:90:b2:61:e7:b5:
e8:72:81:5f:03:26:09:76:1a:4f:ea:d8:44:d1:99:
b4:9b:1f:61:b5:5d:19:c6:36:85:d1:7c:3d:54:ad:
e5:be:f0:2b:96:b6:fe:49:47:02:97:31:b0:1f:dc:
79:c7:b5:cf:43:bd:77:70:94:2c:b6:64:93:4a:cc:
24:b4:a5:2c:0e:24:ef:70:1d:5d:c3:72:7f:91:ce:
65:78:a3:df:f5:b9:a9:02:63:0b:f5:0a:60:01:f4:
ed:cc:6b:ef:b3:a7:1d:45:00:1c:79:6c:41:8d:d8:
74:3d:27:f7:e5:a6:a5:b8:2a:b5:a9:1b:1c:f1:d2:
68:a4:80:8e:a5:df:fa:47:fb:9c:cd:2b:37:c8:58:
c8:62:3c:d2:e5:b4:32:bb:c3:92:99:9c:ee:b9:c2:
1f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:01:C8:9A:2A:6B:0E:66:35:79:EA:DA:47:30:C8:7E:CF:0E:7A:05
X509v3 Authority Key Identifier:
keyid:75:DA:0E:63:EB:24:7D:9A:0B:13:B4:CB:36:DD:67:24:99:20:BB:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddoOY-skfZoLE7TLNt1nJJkgu8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:9f:be:69:02:45:1d:b2:a9:e1:98:c7:77:8d:24:a1:ef:c6:
db:90:50:27:c4:68:79:2f:79:8e:dc:3e:1b:ec:96:ea:45:d6:
eb:c0:40:91:33:b2:0b:99:60:b7:a1:0d:22:ee:4d:7b:4b:9a:
d9:2b:a5:77:80:db:61:02:c1:7d:e3:b4:74:7e:64:cb:f2:aa:
e8:19:41:0f:93:b6:3c:c4:75:c4:2f:98:49:2f:38:65:7c:7b:
64:1d:5b:e0:49:65:b7:f0:ec:6a:33:29:84:b2:73:12:b4:f2:
c1:09:bd:b3:e7:86:e2:c4:75:9b:b1:c0:99:50:89:37:d2:02:
90:36:7f:e6:32:da:ff:10:65:c3:a1:13:3c:38:19:6f:6b:76:
14:c5:b8:23:b8:a9:7d:b7:b2:b4:72:08:fa:6c:47:5f:e1:1c:
af:7b:5d:cc:1c:52:86:da:b8:85:d4:de:d4:e4:48:11:f1:1b:
df:c4:af:91:31:98:8b:82:30:5f:03:c0:f9:33:15:3a:66:11:
8e:a7:ab:b9:a1:06:78:1c:b7:59:3e:03:44:24:3a:38:94:ef:
57:93:0b:ba:48:2f:b0:f8:3e:f6:20:52:9b:af:9d:d8:cc:72:
4f:61:9e:a5:8c:8d:2d:07:a0:48:87:f8:08:f5:54:d9:3a:bb:
26:10:be:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 02:16:31 2024 by rpki-client on console-fra.rpki-client.org