Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
File: zCdbIX3x3piMohkqg64R3fQjpE8.mft (raw, json)
Hash identifier: ukwJdBinbeeZYgvBhfin+YfmXobyeu9KRLko96Acftw=
Subject key identifier: CF:D6:85:EF:3C:1E:57:87:9D:8B:24:90:7B:57:75:5D:0E:DB:49:73
Authority key identifier: CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
Certificate issuer: /CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Certificate serial: 018F86A399304F4F556BB147B43EE6784C0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
Manifest number: 062E
Signing time: Fri 17 May 2024 13:00:19 +0000
Manifest this update: Fri 17 May 2024 13:00:19 +0000
Manifest next update: Sat 18 May 2024 13:00:19 +0000
Files and hashes: 1: f1-8DtxwacrQ9nW7DJjOTsUukQY.roa (hash: uDn7X0l0ZolgFOMi8Plw0obaEdrI956f0R4B6FzuemE=)
2: zCdbIX3x3piMohkqg64R3fQjpE8.crl (hash: r7Lti61ZnRgKVy+BAhbCRzZMMUX7PzMEL6Czg6rdgEw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 13:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:a3:99:30:4f:4f:55:6b:b1:47:b4:3e:e6:78:4c:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Validity
Not Before: May 17 13:00:19 2024 GMT
Not After : May 18 13:00:19 2024 GMT
Subject: CN=cfd685ef3c1e57879d8b24907b57755d0edb4973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:8e:8b:b4:8b:d1:29:90:ef:99:e5:bc:75:04:
a9:0b:ec:44:71:b0:06:d6:47:7e:d0:6a:e3:c2:6d:
84:51:a3:84:70:bf:14:38:77:76:24:b7:c7:d8:6a:
3f:ee:6b:74:23:95:58:5c:4e:68:07:fc:ac:23:d2:
82:d6:58:1c:1f:7d:d1:4e:47:46:ad:5d:ec:87:34:
47:f7:b0:a8:7d:59:b8:dc:f0:56:96:45:05:2f:84:
b0:b3:de:50:45:25:d6:54:ad:34:64:65:d7:55:72:
88:a1:c4:d1:0e:bb:4e:d5:4a:79:36:e1:d9:6f:5a:
2b:d1:e2:ce:12:0f:83:de:64:61:93:4a:b1:5f:9e:
5d:81:f1:f7:ca:77:90:ff:ea:7f:b2:d7:1e:97:3c:
35:44:cd:10:b7:93:85:ff:a2:79:fc:9b:9c:8b:4f:
cc:ac:df:62:ec:f4:85:34:ce:82:f9:9f:99:fe:ee:
e9:cf:13:c8:c0:96:7b:2b:8d:0b:c1:ca:fa:ad:97:
b7:09:14:c0:b6:21:59:16:67:7a:4a:c8:5a:f2:1b:
ca:6a:3f:f9:d6:cc:5a:21:a4:1d:7e:23:ce:01:ca:
e9:f6:e8:c9:e9:ec:85:f5:1d:46:40:5b:50:70:a7:
0d:02:84:41:24:5a:2c:31:7d:92:02:ea:ab:62:ce:
b7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:D6:85:EF:3C:1E:57:87:9D:8B:24:90:7B:57:75:5D:0E:DB:49:73
X509v3 Authority Key Identifier:
keyid:CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:e1:6a:fd:ad:a9:9f:eb:f6:85:7a:e6:ee:ed:f4:df:1a:f4:
e0:4a:6d:6e:f0:43:a0:61:62:84:1b:d1:cf:6e:d5:2d:3d:87:
c0:d8:d5:54:8d:11:d9:72:b0:f1:84:ee:15:be:f9:09:00:2a:
7b:b4:56:5e:2f:cf:50:8b:10:0a:a8:41:fc:ec:c8:73:57:4d:
e4:fb:27:b9:b4:ab:a3:a9:4b:4b:f1:33:93:52:1e:c1:5b:5b:
ad:fd:97:2e:2f:04:ea:0a:f6:cd:aa:e2:76:6f:f6:22:31:e8:
5d:55:5e:ff:0e:51:3e:d5:06:48:8b:88:ad:ee:ea:50:f0:81:
4b:b6:c2:66:9b:7c:59:7d:09:e1:7d:b9:7f:33:6c:20:0f:35:
65:06:00:77:aa:24:64:d1:24:07:ba:68:fc:bd:18:a5:08:36:
b9:9e:61:dc:ba:0a:e7:a4:3b:2e:3c:7d:6c:c2:e6:45:ae:f7:
4e:5b:50:94:36:71:2b:d4:de:0f:fb:a4:4d:54:2f:00:21:9f:
6f:ba:25:18:12:8a:92:4d:40:f7:3a:e4:37:56:0f:6e:cf:e0:
6f:43:4e:0f:3d:93:b3:3d:f2:7b:bf:fc:5a:0f:2b:79:d1:d2:
2e:c6:22:5b:a9:ff:a3:79:41:39:8b:34:4f:ab:e4:35:bc:c1:
6c:a7:76:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 19:05:40 2024 by rpki-client on console-fra.rpki-client.org