Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft
File: ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft (raw, json)
Hash identifier: FkuhGMBviA88U5G8XPXTjsb7OzNXP+0Ez34REmcosA8=
Subject key identifier: DC:64:98:91:32:6D:68:AD:41:29:91:4B:BA:95:B7:9A:91:6B:03:DC
Authority key identifier: 65:22:6E:E5:EA:04:06:59:2D:F9:75:C6:F4:C8:4F:10:F1:4D:15:CB
Certificate issuer: /CN=65226ee5ea0406592df975c6f4c84f10f14d15cb
Certificate serial: 018F874953C6F9E79CB6976CAB7D9DD01340
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft
Manifest number: 10B7
Signing time: Fri 17 May 2024 16:01:20 +0000
Manifest this update: Fri 17 May 2024 16:01:20 +0000
Manifest next update: Sat 18 May 2024 16:01:20 +0000
Files and hashes: 1: GzqRtDDKSigSQGTkzO7kLQcKEG4.roa (hash: 03/TecBc40aE3BA2l63d5VNjSK4fACqCPLwywuzCdfQ=)
2: OSSPrQPOpqbgx35iBml80U_qaIo.roa (hash: rvz697EpNg0I7O8ZrVj64HruzTMcwtQf6gBpab/eHyY=)
3: ZSJu5eoEBlkt-XXG9MhPEPFNFcs.crl (hash: tu+82Pm5KHs1t9KnfR1TXTlvRY/ld5DEjA4nSGmdXR4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:53:c6:f9:e7:9c:b6:97:6c:ab:7d:9d:d0:13:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65226ee5ea0406592df975c6f4c84f10f14d15cb
Validity
Not Before: May 17 16:01:20 2024 GMT
Not After : May 18 16:01:20 2024 GMT
Subject: CN=dc649891326d68ad4129914bba95b79a916b03dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9a:72:f0:fd:84:cb:09:8f:a3:b6:07:c6:0f:
c9:eb:ce:dc:ca:44:cd:a1:21:8d:7a:2a:a0:96:55:
a0:fa:a7:79:7e:78:58:78:77:62:e8:5f:90:b8:5f:
89:dd:2b:77:39:84:83:85:b3:fc:40:97:cf:d4:ab:
09:8b:f9:28:84:83:2d:68:e1:ac:f5:eb:d6:24:62:
e0:47:90:93:0a:f6:ed:e3:76:d7:92:3e:8a:8d:bf:
07:f0:20:9a:c1:a9:a6:18:06:0b:80:c8:c5:81:24:
97:2b:29:33:05:de:9e:78:f3:b9:e2:5d:d8:01:e7:
5d:f6:36:ed:07:d8:ba:c0:0f:53:01:75:66:af:46:
b1:3c:b3:55:d5:00:e1:c7:f1:13:68:fe:c9:9e:19:
4f:6b:bb:2f:69:c9:4d:61:dd:76:52:2f:d4:74:e4:
39:06:af:e0:25:fa:5d:48:cc:ae:4c:9d:1c:fb:01:
62:4b:74:4c:67:dd:2c:27:11:be:97:e3:1d:7a:78:
ee:eb:4d:0b:14:90:9b:be:3d:28:8b:7e:2b:70:31:
48:45:82:c7:6c:16:f2:2b:d8:7e:d6:a9:e4:83:e8:
c4:8e:b2:86:2c:75:48:bd:f7:f1:02:82:c7:c4:a1:
58:06:59:e2:02:76:02:39:e6:36:0d:c3:65:83:48:
ce:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:64:98:91:32:6D:68:AD:41:29:91:4B:BA:95:B7:9A:91:6B:03:DC
X509v3 Authority Key Identifier:
keyid:65:22:6E:E5:EA:04:06:59:2D:F9:75:C6:F4:C8:4F:10:F1:4D:15:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:4d:d5:0c:48:a0:f7:8a:29:ab:9f:95:bd:2f:54:df:ca:69:
d4:21:ae:4f:b8:dd:54:a4:4f:8b:8a:81:db:66:cb:de:d1:86:
23:a2:25:ab:64:fc:3d:40:76:bf:63:c4:96:3b:5d:96:bd:24:
6d:a8:01:4d:83:b0:83:d4:9a:6c:26:72:cf:dc:54:d8:0b:3e:
e7:b8:a5:51:54:ba:db:42:13:6a:9a:b7:48:f9:4e:12:4f:fe:
a6:e5:21:64:f9:ed:b7:4b:c9:09:50:4a:13:9e:f4:6f:2c:5c:
d0:73:46:72:1d:78:a5:7d:10:e4:07:f1:a3:32:8a:cf:8c:a8:
b0:4b:84:b0:46:ce:68:e8:85:bb:c6:ea:2d:82:8b:54:08:e6:
93:0d:21:ba:5c:a5:24:3b:ec:0e:6d:6c:36:94:5f:c6:e9:df:
3e:a4:4a:73:86:7c:81:96:03:54:54:d1:b6:ca:ef:26:03:15:
f4:60:96:72:bb:c8:e1:c5:40:0b:3d:12:a1:ae:37:0b:45:92:
a0:78:81:fd:50:b9:a8:d7:54:7b:78:0f:2a:0a:fb:73:10:67:
02:b9:e8:b6:3d:0d:80:ac:ae:38:87:b4:1c:3d:7a:6b:03:c2:
e6:cb:50:d7:b8:0f:c6:06:31:44:6a:66:fc:16:35:96:6d:e8:
07:0f:f3:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:23:03 2024 by rpki-client on console-ams.rpki-client.org