Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.mft
File: sz3NILWulcFy0y7XKevzBhl7I-c.mft (raw, json)
Hash identifier: tohzGfV2Ulywky+SxbTic+Vremu2DMQTGDyhCL336cs=
Subject key identifier: 7D:BE:39:A2:C6:32:A5:1E:49:34:33:60:B7:82:6C:6D:6C:C5:20:46
Authority key identifier: B3:3D:CD:20:B5:AE:95:C1:72:D3:2E:D7:29:EB:F3:06:19:7B:23:E7
Certificate issuer: /CN=b33dcd20b5ae95c172d32ed729ebf306197b23e7
Certificate serial: 018FB1C83D721E21A1A48C4EB4ADFAF755F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sz3NILWulcFy0y7XKevzBhl7I-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.mft
Manifest number: 118E
Signing time: Sat 25 May 2024 22:04:01 +0000
Manifest this update: Sat 25 May 2024 22:04:01 +0000
Manifest next update: Sun 26 May 2024 22:04:01 +0000
Files and hashes: 1: p7lRYsyCjwV_V-lTBGNvUYecgQw.roa (hash: 3uz1uC2c/cAMY00DaA53uTgu+C0eT2ze89ImoktkI7g=)
2: sz3NILWulcFy0y7XKevzBhl7I-c.crl (hash: nmj12S/ZmkTOJXdx0YNpcosfFfJrsnFrjnPbSxy7qFg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.mft
rsync://rpki.ripe.net/repository/DEFAULT/sz3NILWulcFy0y7XKevzBhl7I-c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 May 2024 22:04:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b1:c8:3d:72:1e:21:a1:a4:8c:4e:b4:ad:fa:f7:55:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b33dcd20b5ae95c172d32ed729ebf306197b23e7
Validity
Not Before: May 25 22:04:01 2024 GMT
Not After : May 26 22:04:01 2024 GMT
Subject: CN=7dbe39a2c632a51e49343360b7826c6d6cc52046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:07:e6:62:24:2a:5b:01:e8:e8:8f:1d:b6:f9:
ff:a3:f5:59:4f:c5:5f:98:19:f2:22:f4:f8:66:16:
41:64:df:61:56:d7:7b:83:68:2e:9a:c7:63:15:ac:
b4:f5:a0:c7:49:c0:55:ea:ec:1e:8d:e8:f2:2a:61:
1d:93:29:67:8b:29:8c:2e:5a:c8:01:6b:21:d1:e3:
4e:17:9c:75:5a:5e:46:68:28:94:66:a5:e7:d8:c7:
c4:3b:2c:3c:56:6f:5c:04:83:bb:fb:ee:33:7b:9b:
82:9f:37:27:a4:c6:1e:df:ce:fa:70:ac:30:71:c3:
2b:aa:12:85:09:2d:07:42:ec:49:71:bb:ff:51:0d:
63:3a:22:29:dc:c9:3a:ff:94:50:35:b0:24:07:59:
58:c1:d0:20:4e:40:9b:69:b6:f4:9a:2b:1b:7a:91:
df:44:ab:f4:35:d6:1c:73:6a:ae:7a:61:ec:27:a6:
95:77:54:45:f5:ef:5e:7e:99:2f:d0:17:96:4a:3c:
e0:82:76:df:39:82:8c:12:0a:f0:de:0c:38:a0:20:
61:b0:1e:97:25:3f:9e:98:13:bf:56:d1:3b:51:81:
e6:a5:1c:87:93:00:d8:bd:2f:52:8f:4c:17:89:4b:
1d:be:4e:d5:fb:ad:81:bf:de:ca:52:13:c8:1e:fd:
92:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:BE:39:A2:C6:32:A5:1E:49:34:33:60:B7:82:6C:6D:6C:C5:20:46
X509v3 Authority Key Identifier:
keyid:B3:3D:CD:20:B5:AE:95:C1:72:D3:2E:D7:29:EB:F3:06:19:7B:23:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sz3NILWulcFy0y7XKevzBhl7I-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:15:13:4e:4d:59:f6:6e:34:98:29:ba:bc:19:3f:4f:6b:11:
66:81:96:1c:73:5f:e8:5a:3e:c0:3b:57:a6:f0:8a:29:a4:04:
35:51:4d:ee:08:64:b7:a5:6c:e9:d5:b2:1e:53:0b:32:a3:3c:
75:ad:de:52:69:39:b9:ab:ea:8a:e7:b0:9f:61:6c:7c:9b:2f:
5b:ea:af:2b:d1:09:ce:2c:7d:00:bd:23:5f:ae:f3:ca:aa:2a:
c1:e2:d0:ef:87:a8:6c:b2:87:bc:0b:02:a8:f7:cb:82:9d:25:
30:40:2a:18:e7:8e:df:5d:4a:98:1c:ac:70:c7:51:f5:55:12:
f5:65:40:a2:9c:80:23:d1:af:79:08:a5:79:42:70:c8:c1:d3:
1b:dc:4b:52:b6:8a:92:6a:c6:11:a4:dd:4d:da:05:19:ea:88:
ff:ba:29:63:e2:f4:9c:c1:d0:04:a5:e8:58:53:be:e2:01:16:
c2:1b:d4:fc:33:59:0a:ea:e0:a6:f9:bb:88:8f:2a:56:71:f1:
02:c8:e4:a0:78:5a:a0:ca:7c:44:19:cf:06:64:a5:4d:1f:9d:
47:d5:bf:58:8e:f6:a7:4d:bf:ff:c7:fe:84:a7:2b:e3:41:93:
35:01:68:db:10:e6:78:32:28:89:30:f0:40:73:4f:54:be:e4:
67:bf:60:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 07:00:09 2024 by rpki-client on console-fra.rpki-client.org