Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/180954-8a43-4acc-8a7b-0aeac670c71e/1/XmaBWkYx0OeXwfNm5HvxURXJpPs.mft
File: XmaBWkYx0OeXwfNm5HvxURXJpPs.mft (raw, json)
Hash identifier: BtEAMrBgYuvX5kjw5oDsENXQiZOfA7D9gmjIvqTqy84=
Subject key identifier: 95:5F:06:1F:6E:38:75:AE:C2:BA:CB:BF:75:6C:87:9C:EB:BD:37:DA
Authority key identifier: 5E:66:81:5A:46:31:D0:E7:97:C1:F3:66:E4:7B:F1:51:15:C9:A4:FB
Certificate issuer: /CN=5e66815a4631d0e797c1f366e47bf15115c9a4fb
Certificate serial: 018F8892463D840455940F0E144D38EDD887
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XmaBWkYx0OeXwfNm5HvxURXJpPs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/180954-8a43-4acc-8a7b-0aeac670c71e/1/XmaBWkYx0OeXwfNm5HvxURXJpPs.mft
Manifest number: D2
Signing time: Fri 17 May 2024 22:00:38 +0000
Manifest this update: Fri 17 May 2024 22:00:38 +0000
Manifest next update: Sat 18 May 2024 22:00:38 +0000
Files and hashes: 1: XmaBWkYx0OeXwfNm5HvxURXJpPs.crl (hash: mTcjuw1tVL57c0rRIFMb3tVswnYrugfB7JMnxuTsqps=)
2: c4aA_bj6CzLF63YiADueMvFEAv0.roa (hash: VRbGz8ClnPlLevbRzlVSbiJGON4NA2s+QaK9DsNCxsg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/180954-8a43-4acc-8a7b-0aeac670c71e/1/XmaBWkYx0OeXwfNm5HvxURXJpPs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/180954-8a43-4acc-8a7b-0aeac670c71e/1/XmaBWkYx0OeXwfNm5HvxURXJpPs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XmaBWkYx0OeXwfNm5HvxURXJpPs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:92:46:3d:84:04:55:94:0f:0e:14:4d:38:ed:d8:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e66815a4631d0e797c1f366e47bf15115c9a4fb
Validity
Not Before: May 17 22:00:38 2024 GMT
Not After : May 18 22:00:38 2024 GMT
Subject: CN=955f061f6e3875aec2bacbbf756c879cebbd37da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:98:9f:4b:ff:12:40:c4:cf:70:b2:e0:89:b9:
8b:1d:4b:af:94:5a:b0:5b:3d:00:3d:4a:37:41:ba:
0b:15:ca:94:84:7a:7c:1f:d0:e1:53:81:f0:2b:87:
92:f3:ed:f1:ae:c4:7f:f1:63:df:0a:de:50:56:89:
80:14:99:cb:bb:8e:0d:1e:0d:fb:a5:e7:ed:b4:49:
97:15:7b:a6:70:bf:d1:5c:74:c2:0d:a3:dd:c2:d7:
c8:c2:f5:f8:a9:8f:a6:db:66:97:53:9c:f6:4b:05:
43:17:50:b6:97:67:ac:95:4e:95:f5:bb:97:a3:fe:
0d:2e:38:55:25:d5:8a:4c:95:31:aa:d7:9c:db:dc:
de:70:34:35:c5:c5:3a:bc:fa:d0:dd:9d:3d:b4:03:
e9:7c:fc:8a:7f:b7:13:74:58:9a:20:f3:b4:73:4b:
f9:bb:a7:d8:46:cc:60:2d:2a:4b:e0:e4:a6:08:4e:
74:53:54:81:7b:3f:f5:9d:a8:70:2f:a9:ed:3f:4b:
51:0d:86:ff:fb:a1:05:f2:73:9c:27:ad:41:c1:95:
0a:44:a0:e2:cb:91:03:3c:8f:cc:6e:f0:f5:5c:ec:
6d:fb:56:6d:9b:d8:3e:b8:85:9d:24:d6:3a:ab:58:
34:13:43:a7:1b:36:07:72:94:b3:41:fa:d1:1f:be:
a3:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:5F:06:1F:6E:38:75:AE:C2:BA:CB:BF:75:6C:87:9C:EB:BD:37:DA
X509v3 Authority Key Identifier:
keyid:5E:66:81:5A:46:31:D0:E7:97:C1:F3:66:E4:7B:F1:51:15:C9:A4:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XmaBWkYx0OeXwfNm5HvxURXJpPs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/180954-8a43-4acc-8a7b-0aeac670c71e/1/XmaBWkYx0OeXwfNm5HvxURXJpPs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/180954-8a43-4acc-8a7b-0aeac670c71e/1/XmaBWkYx0OeXwfNm5HvxURXJpPs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:b3:3a:f3:01:fa:c4:0d:1b:3a:8b:a6:3f:23:cc:0f:44:9e:
22:32:a2:a3:d6:08:72:1b:09:85:fd:38:b3:44:4e:7f:cc:74:
31:7b:0e:95:2a:77:3e:2c:29:df:e7:bf:cd:1b:1e:07:67:7a:
0e:bf:86:ad:33:0c:e5:89:12:f9:1c:f6:45:df:7a:2c:20:6a:
26:bf:5e:23:c9:3e:b5:0f:19:21:cb:d5:ca:0e:2d:4e:be:ba:
2f:c6:9b:95:67:cb:89:70:4e:77:9b:46:52:10:63:12:3a:fb:
8a:28:97:06:2b:67:64:a8:b4:c8:3f:ec:a7:d0:f5:a5:66:ae:
04:fc:83:08:56:8c:99:dc:f1:a6:cd:27:63:d2:56:19:90:de:
b4:4f:ee:3a:0d:4d:21:89:03:13:62:11:7d:d8:e2:05:fd:af:
72:e7:a2:c8:9e:50:ab:bc:17:6c:f1:21:76:d9:9e:2a:89:be:
90:59:ce:81:8a:af:cb:dd:cc:d1:ca:b9:cf:15:cb:19:b3:a5:
55:ea:04:5d:2d:91:32:6e:12:f9:2d:8c:c9:00:4c:db:e6:ca:
3c:d6:78:19:08:c2:a9:e8:36:ad:bf:af:9b:3d:19:6e:77:3d:
63:1f:95:d1:10:28:e1:fc:e5:5d:46:df:db:ab:8d:fb:9d:48:
c4:c2:80:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 00:23:20 2024 by rpki-client on console-fra.rpki-client.org