Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
File: CkGloqGDOWKcwTA-beyLtgXdymU.mft (raw, json)
Hash identifier: UublHWvouBJIL7EY3SCFBufVJNh8dPKy6/EajLKTnzc=
Subject key identifier: FB:E6:DE:58:A8:E2:6D:16:47:12:4A:E4:85:9D:D5:46:12:D3:17:56
Authority key identifier: 0A:41:A5:A2:A1:83:39:62:9C:C1:30:3E:6D:EC:8B:B6:05:DD:CA:65
Certificate issuer: /CN=0a41a5a2a18339629cc1303e6dec8bb605ddca65
Certificate serial: 018F497EA0DF074D3A47A39D3DA27EF2CBA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
Manifest number: 1159
Signing time: Sun 05 May 2024 16:03:06 +0000
Manifest this update: Sun 05 May 2024 16:03:06 +0000
Manifest next update: Mon 06 May 2024 16:03:06 +0000
Files and hashes: 1: 3UGwBRl_XLeX8ImHBfloAp4c0iQ.roa (hash: 9nG9jriV04D0P6dgilO86iD9FrM5UGQdOjkfvdXg1O4=)
2: CkGloqGDOWKcwTA-beyLtgXdymU.crl (hash: y2I3HDtOdlKWqdHVrDNm6Y7YVMLxq6kFDGrm9wWr45I=)
3: tQDSPsajomMY8QgDP8ZW0V9pymk.roa (hash: f9Qw8/OWdHZlG03xENqobo/ODcdukaLu2QkZFWafNTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 16:03:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:49:7e:a0:df:07:4d:3a:47:a3:9d:3d:a2:7e:f2:cb:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a41a5a2a18339629cc1303e6dec8bb605ddca65
Validity
Not Before: May 5 16:03:06 2024 GMT
Not After : May 6 16:03:06 2024 GMT
Subject: CN=fbe6de58a8e26d1647124ae4859dd54612d31756
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d5:86:ae:ce:7d:26:23:f5:b9:f7:9b:62:36:
f2:07:ef:fc:d4:19:1c:e9:ab:1b:5d:39:14:cd:c0:
0e:36:a0:27:4d:af:ab:f6:9e:06:f9:5e:e9:59:b0:
e7:cc:1f:5c:63:1e:c7:a2:1a:aa:0a:92:da:ce:a6:
8d:e2:10:1e:ab:97:54:b2:58:0c:97:4c:42:4d:33:
41:09:97:9b:a6:56:cd:62:72:39:55:40:dd:62:fc:
42:25:84:fc:b8:f7:4a:37:4c:78:02:9a:bb:66:ac:
62:f9:2c:e0:5c:71:8d:13:4e:92:c0:c8:c2:81:c0:
db:f0:d4:af:17:dd:07:15:9c:da:57:a8:3e:d8:e4:
96:f2:e1:89:0c:8e:48:69:c5:99:25:e1:12:bc:d3:
27:19:0d:1c:26:1e:d5:26:11:65:4a:7f:97:1d:e7:
1c:91:ae:2a:fd:14:7e:f0:7c:e9:55:9f:5e:b9:56:
9e:84:53:ee:d0:e3:bc:f2:f6:74:c2:5f:0c:7d:22:
00:09:91:6c:e8:a7:92:a5:f8:34:e2:b4:87:7e:5a:
21:73:ad:cb:84:8f:dc:f4:c7:a4:96:f2:5c:d0:f7:
cd:2b:b4:0b:4e:d0:2b:b3:07:8a:a6:0c:f4:a5:4d:
ae:fc:31:c3:24:82:5f:99:8f:29:ae:47:6b:db:d3:
7a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:E6:DE:58:A8:E2:6D:16:47:12:4A:E4:85:9D:D5:46:12:D3:17:56
X509v3 Authority Key Identifier:
keyid:0A:41:A5:A2:A1:83:39:62:9C:C1:30:3E:6D:EC:8B:B6:05:DD:CA:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:81:fc:54:1a:3c:c3:da:7f:e8:cc:27:03:c0:0e:9a:06:db:
e7:ac:96:f4:85:24:e7:6d:41:7f:9d:cf:d5:9f:40:cc:e1:62:
0b:0e:a2:67:3a:ec:14:b0:24:84:82:dd:55:f3:e9:60:4a:1d:
27:69:e7:e4:91:1f:56:f0:14:19:eb:9d:08:89:4d:95:90:a2:
3b:5a:47:86:31:65:67:46:6f:46:78:28:6f:4c:0d:bf:85:e5:
e2:2c:73:41:fb:51:57:a7:d6:a1:16:88:08:de:55:53:dd:e2:
f2:75:b9:e1:84:bd:49:a7:08:f7:d3:85:7d:d2:d6:bc:ba:52:
23:d4:65:4a:7f:e2:bd:63:0d:6a:1f:db:c8:73:75:cd:af:8c:
0f:c9:bc:57:4c:da:fe:fc:d7:6f:4d:75:4a:43:8c:da:b2:f0:
85:8f:e9:3e:77:1e:38:c6:df:e3:52:01:8d:85:28:68:be:ae:
b0:2c:d6:e3:4e:41:8e:49:43:53:b6:a8:c6:51:2c:eb:70:62:
7e:a9:6d:4d:46:d1:32:a0:de:8a:44:49:46:72:05:9b:86:4e:
2f:97:b8:d0:82:6e:a6:e8:a3:b3:02:17:93:d6:4f:72:b2:e0:
c3:2c:d1:a4:f2:9e:72:df:eb:b4:81:76:6c:01:16:24:9a:18:
2f:21:06:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 19:46:27 2024 by rpki-client on console-fra.rpki-client.org