Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft
File: YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft (raw, json)
Hash identifier: hsNFhJaMUSwifzGUXjHo58ZaZEgOXNHGZZHKVYp8Gro=
Subject key identifier: 6D:F2:76:0E:67:51:89:B5:3E:4A:65:0F:15:61:60:0C:4D:39:38:8C
Authority key identifier: 61:2C:1C:53:F6:C1:D9:96:23:6C:BB:37:BA:32:47:67:03:99:A6:2D
Certificate issuer: /CN=612c1c53f6c1d996236cbb37ba3247670399a62d
Certificate serial: 018F86A3959598F055B2D2BE7B51130EBEF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft
Manifest number: 089C
Signing time: Fri 17 May 2024 13:00:18 +0000
Manifest this update: Fri 17 May 2024 13:00:18 +0000
Manifest next update: Sat 18 May 2024 13:00:18 +0000
Files and hashes: 1: YSwcU_bB2ZYjbLs3ujJHZwOZpi0.crl (hash: gzgypMVDHAi/yVIpS6wfLGVOWg0h6qmtQKxDVhR+KVQ=)
2: jASKHBsvkFzcRD4JsowZqcnx83g.roa (hash: dZ2I2YGvE5goNezpgqWQYKuv2E/2fjTH1copXDLjUOI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 13:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:a3:95:95:98:f0:55:b2:d2:be:7b:51:13:0e:be:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=612c1c53f6c1d996236cbb37ba3247670399a62d
Validity
Not Before: May 17 13:00:18 2024 GMT
Not After : May 18 13:00:18 2024 GMT
Subject: CN=6df2760e675189b53e4a650f1561600c4d39388c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:13:92:14:d5:a6:59:60:5b:08:e9:e9:b6:4d:
33:d3:3c:2f:a7:40:63:c6:08:c8:80:f1:43:72:da:
66:d2:95:9a:42:d3:c0:96:fd:ad:73:3b:2e:5c:e5:
4e:9f:17:23:19:53:12:5a:7d:e4:09:a9:ed:e3:b3:
14:37:fb:ac:f5:15:41:1d:ce:d1:c8:8c:e6:e0:41:
d8:b6:2e:fb:c0:4f:fe:22:f8:3d:b9:83:93:7a:e0:
0a:df:db:82:41:ce:a5:28:a3:c7:06:ca:e1:1f:c5:
ab:15:75:3f:c1:28:6b:7b:e9:00:8f:4a:2a:e4:c6:
fa:a6:fd:40:d4:ff:22:20:d3:e4:48:b6:06:01:fd:
ce:11:2a:3d:db:d3:db:cc:5a:31:a4:f7:db:35:da:
8a:25:b5:b9:92:aa:c2:7b:f4:94:d1:38:21:54:c5:
a0:b4:fa:eb:c3:a2:4c:5e:31:4c:b0:62:4b:6a:c6:
0d:64:d7:82:c8:bf:06:df:da:ef:ba:e3:8b:e9:d8:
36:6f:86:ba:48:b5:d5:68:2d:18:18:86:84:a9:41:
df:b8:f8:59:2a:97:d7:3b:3b:6f:0a:f6:0b:bc:ab:
64:8a:1f:38:ad:df:c5:43:22:00:28:07:19:56:bf:
b3:fa:75:3f:94:a0:39:d0:56:48:df:c7:a5:21:92:
97:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:F2:76:0E:67:51:89:B5:3E:4A:65:0F:15:61:60:0C:4D:39:38:8C
X509v3 Authority Key Identifier:
keyid:61:2C:1C:53:F6:C1:D9:96:23:6C:BB:37:BA:32:47:67:03:99:A6:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:db:30:19:4e:80:2a:b3:0a:c9:78:f8:0d:45:08:1d:16:68:
58:fb:1e:de:4c:82:34:07:3e:70:db:bb:73:00:a7:de:8e:c9:
7d:e8:0e:b0:ac:2a:e7:ca:5a:2b:56:25:8b:e8:05:df:62:a7:
d8:10:32:0e:76:46:ef:e4:c1:30:5f:8e:44:73:14:cd:6e:a5:
86:6d:a0:2a:e5:d6:20:fa:aa:e7:0e:25:46:6a:8e:ec:af:65:
de:33:3e:59:7b:d1:0e:34:c7:7a:c4:4a:11:50:fc:92:6d:29:
a0:cb:7a:b5:aa:84:27:57:49:0d:e0:1c:2f:e4:1e:47:dc:96:
52:5d:6a:dc:11:7f:08:59:ce:d8:cd:66:2c:35:9e:89:ae:68:
cd:b2:8a:f3:6f:da:40:a5:31:73:2e:46:71:48:a2:74:ba:5c:
f4:41:9c:b7:19:06:f3:cc:af:55:73:f7:0d:0e:31:04:24:d2:
55:19:ee:b5:42:c7:46:b8:a3:56:53:09:11:a2:11:ef:a0:1a:
d4:7e:a1:6d:6e:5f:05:10:f5:b6:00:be:19:53:7c:3a:b1:17:
a5:f3:78:9a:13:ab:0c:b6:6b:1a:be:b3:86:a0:62:b4:74:0d:
84:44:de:90:f0:ac:8b:7b:c2:62:fb:27:e4:5a:cb:f8:83:8d:
c6:25:c9:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:43:01 2024 by rpki-client on console-ams.rpki-client.org