Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.mft
File: u3zLGm47yrYxnTF_YsdL8eH0FHM.mft (raw, json)
Hash identifier: W7Z0McsKuM1YdBhCSEa+Fuesbutn7DN/XhelXWsvO5Q=
Subject key identifier: 08:21:E7:15:16:1E:14:6C:4C:D2:46:BF:AC:8A:5C:05:FE:24:01:5F
Authority key identifier: BB:7C:CB:1A:6E:3B:CA:B6:31:9D:31:7F:62:C7:4B:F1:E1:F4:14:73
Certificate issuer: /CN=bb7ccb1a6e3bcab6319d317f62c74bf1e1f41473
Certificate serial: 018F87ED7B9F5D16D35AD43AF70C93D73C9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u3zLGm47yrYxnTF_YsdL8eH0FHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.mft
Manifest number: 0146
Signing time: Fri 17 May 2024 19:00:38 +0000
Manifest this update: Fri 17 May 2024 19:00:38 +0000
Manifest next update: Sat 18 May 2024 19:00:38 +0000
Files and hashes: 1: Bu7lq8FtXBJbQjVd2Wf7XIBZfqM.roa (hash: LMUabBiuXnZuG3CS/xa+LvUg8/Y6y8ybNHdis+hWxK8=)
2: u3zLGm47yrYxnTF_YsdL8eH0FHM.crl (hash: +clj1DmtB+9cLILxylYXGrzGx9UrX8hfuMCXGfaKsaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.mft
rsync://rpki.ripe.net/repository/DEFAULT/u3zLGm47yrYxnTF_YsdL8eH0FHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:ed:7b:9f:5d:16:d3:5a:d4:3a:f7:0c:93:d7:3c:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb7ccb1a6e3bcab6319d317f62c74bf1e1f41473
Validity
Not Before: May 17 19:00:38 2024 GMT
Not After : May 18 19:00:38 2024 GMT
Subject: CN=0821e715161e146c4cd246bfac8a5c05fe24015f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ee:46:9e:e6:09:2b:1a:20:de:ec:3b:70:4e:
68:61:f5:60:40:84:cd:e4:fb:62:a7:fb:68:c8:35:
1a:35:f2:a7:2d:e9:59:53:8b:62:5d:62:66:10:8f:
47:7c:7c:76:c4:41:96:b7:19:9f:19:fe:7c:f2:34:
0f:41:df:94:e4:1d:23:28:29:4f:58:26:dc:bd:bb:
5f:9b:e8:11:8f:8c:6f:17:94:77:86:b6:63:ee:1b:
39:31:56:8f:c6:e2:97:f3:21:e0:4c:c9:b8:a3:21:
6a:b4:e2:67:a9:96:25:f7:37:d0:3f:77:75:b8:d5:
59:59:bd:30:4f:d2:dc:91:f2:b2:34:4a:96:63:ab:
9f:b8:3f:54:05:0a:9b:5c:cf:f7:09:6e:a3:f5:25:
ac:30:13:bf:1c:77:25:d0:10:92:f3:97:1c:e9:db:
61:f4:2f:60:ce:56:93:bb:9a:1a:c4:3a:bc:f4:95:
37:bc:39:3d:b7:6e:f4:89:14:8c:27:99:69:7d:98:
d5:62:62:f8:30:f1:98:fe:28:a6:58:ff:10:aa:ce:
8e:89:ef:36:5d:bd:de:7e:cc:0e:52:77:ee:14:b8:
f2:ba:29:ac:27:58:ec:db:e8:93:5e:14:23:a7:b2:
45:70:64:22:e7:72:df:b4:de:f0:a4:8c:fd:d5:7d:
b6:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:21:E7:15:16:1E:14:6C:4C:D2:46:BF:AC:8A:5C:05:FE:24:01:5F
X509v3 Authority Key Identifier:
keyid:BB:7C:CB:1A:6E:3B:CA:B6:31:9D:31:7F:62:C7:4B:F1:E1:F4:14:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u3zLGm47yrYxnTF_YsdL8eH0FHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:63:18:9e:e1:43:5b:b1:26:8c:f0:62:0f:86:96:39:0e:73:
2c:21:fa:cd:f7:76:ed:c6:7f:1f:91:0d:23:34:7c:d2:0e:9f:
10:f6:c3:e8:16:b9:87:27:50:b2:6e:ff:40:e0:31:7e:86:00:
dc:9b:45:61:e9:a0:64:38:7b:42:a7:b3:7a:35:00:fc:56:b1:
a4:4e:31:be:e9:d2:b2:5b:a3:18:2f:2b:ed:6c:d9:e7:71:21:
e9:9c:22:96:45:05:aa:74:64:ca:a5:bf:90:68:cc:bc:2d:f6:
b0:42:15:ac:41:bf:fa:0e:23:be:72:9c:43:b9:4a:06:0c:f9:
f6:db:5c:73:bd:e0:00:ff:5b:31:06:2b:d2:68:6b:26:cb:70:
0e:77:f7:ab:02:0c:79:51:3a:29:66:c1:72:41:b6:4a:9d:59:
ab:f7:2d:6a:1d:21:59:e2:48:be:aa:c8:38:10:f6:fa:85:d4:
71:0e:f4:f0:38:ff:ab:3b:a1:f2:a6:5f:98:cf:41:d3:d9:15:
bf:bb:05:65:41:30:2e:13:47:1c:97:9d:16:da:47:49:a9:84:
89:54:34:5c:0a:40:d3:75:a1:d5:29:ea:98:a8:1a:53:e5:20:
14:b4:ba:ce:e6:f0:04:1c:57:b5:05:a8:b8:91:2e:98:6b:e6:
8f:56:52:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 20:17:44 2024 by rpki-client on console-fra.rpki-client.org