Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.mft
File: 0tzocORzw1QnPonF5OLtPgwGk1Y.mft (raw, json)
Hash identifier: 5u7ZbyE/VIKCAq5YXIpQlnKTEM2smFOqaR4SQrsRups=
Subject key identifier: AF:69:DF:56:98:80:04:93:F7:19:AB:4A:84:79:C4:DF:70:AC:FF:3C
Authority key identifier: D2:DC:E8:70:E4:73:C3:54:27:3E:89:C5:E4:E2:ED:3E:0C:06:93:56
Certificate issuer: /CN=d2dce870e473c354273e89c5e4e2ed3e0c069356
Certificate serial: 018F584B2C09E21024C2CD462791E7DC8340
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tzocORzw1QnPonF5OLtPgwGk1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.mft
Manifest number: 05B7
Signing time: Wed 08 May 2024 13:01:12 +0000
Manifest this update: Wed 08 May 2024 13:01:12 +0000
Manifest next update: Thu 09 May 2024 13:01:12 +0000
Files and hashes: 1: 0tzocORzw1QnPonF5OLtPgwGk1Y.crl (hash: nc3Kgr0g1aDlae3pRaB1RHlI+sr39xLgCrqyzvBphqc=)
2: cwE96DdtPA9UFoEk0S1oqTvNRoI.roa (hash: IdztfzoBKAV61CrJ70BD5e2+dLlP3i9mD3+mpPqBcvw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tzocORzw1QnPonF5OLtPgwGk1Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 13:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:58:4b:2c:09:e2:10:24:c2:cd:46:27:91:e7:dc:83:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2dce870e473c354273e89c5e4e2ed3e0c069356
Validity
Not Before: May 8 13:01:12 2024 GMT
Not After : May 9 13:01:12 2024 GMT
Subject: CN=af69df5698800493f719ab4a8479c4df70acff3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:df:da:aa:17:02:15:f5:df:fe:c2:7c:2d:95:
32:e2:a3:5c:c2:48:53:ed:1c:e1:a7:79:33:ea:c5:
0f:98:5c:a8:1b:b6:85:57:2d:b7:0c:09:3c:18:71:
1b:a9:10:4d:73:5d:8c:17:8b:c7:ca:cc:f5:ca:a8:
7e:b4:dc:66:67:d8:a6:86:29:da:07:90:7c:88:f5:
02:99:f7:c6:d4:3a:04:b0:aa:06:69:d3:e4:9c:ec:
65:cf:79:7e:44:a9:bd:4b:e4:78:50:6c:1c:a6:1c:
bc:2b:f8:2e:c5:d7:28:4c:65:89:6e:4a:a0:38:5c:
51:b7:1d:05:91:d9:16:32:01:05:7e:66:31:e0:f3:
2b:7b:d9:95:b2:ca:52:2b:e7:b5:8a:8a:af:5f:c6:
6c:52:2c:dc:1f:6e:c0:9c:77:89:3f:3d:9b:43:e6:
1b:8f:44:49:f8:91:47:d0:7a:a3:16:e8:a1:aa:b4:
b2:2b:2a:3a:71:e1:f2:fc:bd:8c:2b:ef:61:a4:28:
d6:89:47:ff:08:d5:ff:0d:80:ee:4a:10:8a:81:5e:
70:bb:9e:db:55:55:17:b1:d2:55:27:3d:58:e5:6d:
0f:bb:40:04:1f:60:0f:4d:a3:22:c0:3f:79:51:a6:
6b:0a:93:85:83:08:30:bc:0c:c7:d3:b4:b1:53:e1:
e7:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:69:DF:56:98:80:04:93:F7:19:AB:4A:84:79:C4:DF:70:AC:FF:3C
X509v3 Authority Key Identifier:
keyid:D2:DC:E8:70:E4:73:C3:54:27:3E:89:C5:E4:E2:ED:3E:0C:06:93:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tzocORzw1QnPonF5OLtPgwGk1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:e4:10:b7:80:9f:8e:20:f8:80:99:c2:4c:9f:9c:48:bb:b7:
6f:06:9a:58:54:f8:a8:b1:a3:e5:3d:6e:b6:e2:c7:a0:72:2f:
fd:ef:03:b7:7e:41:73:7e:93:db:c9:a4:65:fb:e8:87:4d:2d:
15:fd:54:1d:32:83:fc:61:d8:1b:41:f6:5c:64:55:5f:96:39:
7e:47:cf:30:9d:09:c8:e5:27:58:51:5b:42:50:83:45:a3:c6:
43:da:35:3b:22:2b:44:17:1f:1d:98:84:70:93:ba:6d:4e:a0:
34:cf:c3:8d:8e:59:8b:b1:09:a2:0d:a1:19:a5:5e:83:fb:f4:
38:cd:e9:db:6c:81:45:ea:bb:45:63:ab:c3:0f:91:b0:98:f4:
15:a6:c2:3f:d5:2b:a6:e0:45:38:d3:36:b6:4a:61:95:b9:0b:
40:c7:8c:45:dc:e2:f9:8a:83:33:bb:24:88:96:ba:c3:6c:57:
b1:ce:b0:f1:3a:14:9f:ab:24:85:5d:8d:04:07:a5:b6:94:50:
a2:2e:99:8e:28:b7:be:07:c6:c7:96:ac:0e:6d:48:ad:37:e8:
f2:8b:75:c2:17:14:33:cd:81:26:39:42:20:27:62:2d:f2:f6:
24:2e:ba:ef:b3:6d:25:df:dd:d0:aa:6e:38:87:a2:2f:03:8c:
d0:43:22:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 21:31:55 2024 by rpki-client on console-ams.rpki-client.org