Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
File: 8khYdchHDmqs3JR0IQXzDFl6wrs.mft (raw, json)
Hash identifier: 0elNx3gph9hfGY2sV9gMpsGvrs7vPe9ts0pxTJkm5PE=
Subject key identifier: 30:29:6B:7F:6E:54:D5:88:78:F6:93:88:7D:20:0C:56:15:7E:11:08
Authority key identifier: F2:48:58:75:C8:47:0E:6A:AC:DC:94:74:21:05:F3:0C:59:7A:C2:BB
Certificate issuer: /CN=f2485875c8470e6aacdc94742105f30c597ac2bb
Certificate serial: 018F3FD635D6DF00F7DBADFAFDFE3ED74E8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
Manifest number: 084B
Signing time: Fri 03 May 2024 19:02:34 +0000
Manifest this update: Fri 03 May 2024 19:02:34 +0000
Manifest next update: Sat 04 May 2024 19:02:34 +0000
Files and hashes: 1: 8khYdchHDmqs3JR0IQXzDFl6wrs.crl (hash: C/V4PGs3Hu6gkNbYeAoKBavRXk3CE0OWf3YWXEjsKuk=)
2: RLpx3FHWLXisCZAGUpMP2j3qLCU.roa (hash: 9xwbYGnaWIVkYOWChsmn5gQqYI60B+iHcAobCOqyvIw=)
3: _AowbM8o0Hxcfl9b66m1thflkbE.roa (hash: 7jnq9pFOjFIFBWoL004M5P7aZUCc9yOBg0GeoJYceIM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 19:02:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3f:d6:35:d6:df:00:f7:db:ad:fa:fd:fe:3e:d7:4e:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2485875c8470e6aacdc94742105f30c597ac2bb
Validity
Not Before: May 3 19:02:34 2024 GMT
Not After : May 4 19:02:34 2024 GMT
Subject: CN=30296b7f6e54d58878f693887d200c56157e1108
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2f:a3:aa:38:a8:fb:e6:04:bb:28:14:e3:68:
27:12:cd:f5:3c:c5:69:6d:4c:45:3f:2a:31:6d:ba:
e7:8b:06:ce:4d:1c:dc:50:69:9f:02:c7:af:fa:7c:
6e:3b:05:8d:39:33:ec:23:20:3b:6f:9c:0e:f7:81:
97:a9:fc:2e:ba:07:c8:0d:46:37:c1:d8:97:f0:03:
9b:ec:44:8d:8e:b1:e4:37:8d:10:a1:76:11:ec:6e:
f1:fb:4b:f4:e7:e4:8c:e7:09:50:29:db:29:3a:21:
96:ec:7c:06:2e:3f:c8:d7:e4:5f:50:db:b0:1f:f1:
73:df:7e:56:ee:f5:12:73:5b:c7:ae:1a:23:51:66:
98:1b:4b:42:7b:e6:9c:d6:f7:5c:53:f6:c7:41:a0:
02:97:40:c2:9f:b4:a4:14:ae:3f:c4:98:5a:4c:54:
b5:01:f5:00:ed:a9:24:be:b1:0e:be:94:0b:e8:44:
f4:fe:1b:27:36:c5:74:74:11:6b:65:29:19:65:41:
e7:66:60:a0:92:8e:41:3f:ff:84:d4:6e:fc:11:2f:
89:ef:f2:ec:6d:62:c4:94:d6:47:89:95:a1:f3:bb:
8a:cd:c7:77:ac:9e:37:7f:cb:f7:3c:9e:e1:05:8b:
a4:af:da:cc:33:1b:4f:44:75:82:d6:d5:1c:b8:ae:
e4:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:29:6B:7F:6E:54:D5:88:78:F6:93:88:7D:20:0C:56:15:7E:11:08
X509v3 Authority Key Identifier:
keyid:F2:48:58:75:C8:47:0E:6A:AC:DC:94:74:21:05:F3:0C:59:7A:C2:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:ca:4a:a3:75:7b:0e:5c:45:03:53:66:ca:6f:30:0b:31:02:
f9:cd:8a:b2:e1:49:18:0f:6a:0d:e9:8b:2b:a1:7f:99:9b:e6:
47:89:6e:46:4f:66:4f:43:d7:0f:f7:03:79:b7:00:7d:48:c4:
ce:df:bc:a1:da:33:a8:e0:b2:08:30:ae:ec:f5:62:0b:23:34:
8d:eb:3b:58:3c:67:eb:a7:55:f2:69:ad:2a:00:dd:90:46:6b:
63:32:c7:5f:d9:5d:f0:8e:ec:f5:bf:44:8c:7f:09:89:cb:22:
5f:1b:b9:c1:e5:8b:27:36:a9:7a:30:1d:87:40:53:c6:24:cc:
2c:d5:ce:d9:ba:9d:f2:10:ba:bf:34:7b:f2:1b:4e:10:3d:3b:
17:34:71:46:b4:7a:59:e7:34:bd:dd:39:ac:9a:18:1c:8b:82:
2e:ca:c9:cb:3b:1d:dd:07:ee:1f:da:40:4c:05:c7:cb:3a:72:
b1:d7:56:25:03:81:5f:7a:e5:9a:b9:e8:f0:96:bb:93:65:e8:
95:9f:2e:15:b4:77:db:d4:ce:be:ea:0e:93:eb:fb:3f:d7:51:
ee:de:c5:63:4f:18:bb:90:ce:bc:8c:d0:dc:04:34:07:e9:f0:
2d:f5:3d:f9:56:b7:63:c6:bd:e6:45:6d:39:fc:de:33:0a:30:
0d:8b:62:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 01:11:10 2024 by rpki-client on console-fra.rpki-client.org