Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
File: O1RMoOK-GOn9dOKBMkowsOotHVI.mft (raw, json)
Hash identifier: gcRA0CFXi17u8zVs8N0Xz62xqAH+5lkDG67tHofi8iM=
Subject key identifier: 9D:27:21:56:FC:7D:2D:5A:9F:E9:4C:AD:39:2B:51:12:44:70:40:25
Authority key identifier: 3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
Certificate issuer: /CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Certificate serial: 018F8749C5D72D56E0536ABC941109269E37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
Manifest number: 081B
Signing time: Fri 17 May 2024 16:01:49 +0000
Manifest this update: Fri 17 May 2024 16:01:49 +0000
Manifest next update: Sat 18 May 2024 16:01:49 +0000
Files and hashes: 1: DEtFTLyhCZrz_ZFlK3LPe67oBBY.roa (hash: LhMG8+saryk2/SIY4SbDPKLFxjCO8OtH3KfSuhSz1KE=)
2: O1RMoOK-GOn9dOKBMkowsOotHVI.crl (hash: WTiMpI5yNuPLApS9wQJr4clipKPOrsGqxi7GopOAAz8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:c5:d7:2d:56:e0:53:6a:bc:94:11:09:26:9e:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Validity
Not Before: May 17 16:01:49 2024 GMT
Not After : May 18 16:01:49 2024 GMT
Subject: CN=9d272156fc7d2d5a9fe94cad392b511244704025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:37:6b:de:84:6c:ed:fe:1f:37:63:03:a5:53:
6c:28:8e:70:16:61:5a:b0:a8:4a:bf:2d:0e:ff:43:
17:8e:d3:c6:2f:cd:0a:ef:d6:2a:fb:d7:4a:2b:46:
68:8b:da:1d:84:2c:11:96:f3:d9:e4:87:56:21:89:
26:7c:a5:eb:a8:35:01:a7:98:cd:e8:0c:6e:18:2f:
73:6c:1e:78:4d:a8:ba:ab:12:84:5f:e7:2e:f4:ff:
9c:91:8d:8f:bc:cb:77:26:b2:9f:99:e3:c0:24:6d:
2a:d0:0c:67:31:83:ec:57:66:d7:f9:3c:b5:e6:27:
ac:58:92:23:34:3c:a4:e3:e4:2d:15:fe:9f:2d:f4:
d9:88:1c:fc:7c:dc:21:8c:82:53:8a:56:44:76:be:
d1:95:b7:63:51:3a:ba:a5:80:95:df:fb:f4:d8:71:
17:7d:78:ae:16:3e:69:d0:c2:60:09:4e:6c:e2:ca:
ff:67:e8:9b:32:ce:4f:ba:95:e4:ee:8d:d5:2c:47:
b7:17:e9:07:64:c0:25:3c:dd:1c:2a:df:3d:02:0d:
3f:44:70:79:21:e8:05:5a:5f:44:74:24:3a:a7:20:
6a:4b:28:3f:c9:a9:13:3e:99:a6:6b:aa:5e:f6:81:
ef:8f:d9:55:4f:dd:4e:3e:b4:51:97:2d:c4:92:f4:
82:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:27:21:56:FC:7D:2D:5A:9F:E9:4C:AD:39:2B:51:12:44:70:40:25
X509v3 Authority Key Identifier:
keyid:3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:29:75:8c:45:33:1b:c0:3c:af:ea:a3:4f:cf:ec:ec:67:c3:
c7:eb:b3:58:d2:f3:8b:1c:57:91:c2:e5:2e:31:6c:f9:fd:49:
4c:6d:c4:04:01:8e:c5:5e:5a:71:d6:3b:1a:aa:bc:08:67:44:
f1:94:7d:68:ca:e8:25:2f:d7:6c:55:e6:0c:e4:65:3f:9c:1d:
8d:23:f5:19:1e:27:87:a1:f5:7d:ce:17:46:7c:e3:ec:a9:16:
5f:56:7b:63:4a:47:01:fd:d6:c7:77:18:52:ac:cc:46:13:ea:
66:b5:d3:1b:f8:32:88:f6:93:3b:d5:11:12:bb:6b:f6:d4:c4:
61:13:5a:ce:ef:de:94:c3:36:a8:4a:cf:13:e4:35:ed:0d:96:
1b:2a:cc:d1:f0:02:f6:eb:84:8e:c6:05:34:20:b7:5c:e2:80:
ee:2b:b8:fa:08:2b:89:59:74:56:9e:12:b8:18:cf:2a:89:bb:
29:97:43:ea:8d:98:98:71:b3:8e:60:92:60:5a:89:c5:3b:ef:
38:20:db:85:92:b2:77:03:52:03:4a:48:9c:b8:9a:42:fe:2b:
44:6c:36:95:1c:ad:15:95:2e:4f:f0:90:63:9f:14:f7:3b:e8:
9c:ec:2a:5a:55:9d:19:99:08:ce:05:17:77:ef:21:9b:84:a0:
d5:cd:51:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 19:04:15 2024 by rpki-client on console-fra.rpki-client.org