Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
File: ih8K1VcrribjnIdAxoqPu0buSGQ.mft (raw, json)
Hash identifier: hJ5ytBOhz7IMkaOI8m8iFkbZt3X1DA2jfrQZWN1yyT0=
Subject key identifier: D2:33:42:1D:0E:EF:F7:D3:F3:32:57:A0:46:BA:B8:DC:1E:EA:28:8B
Authority key identifier: 8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
Certificate issuer: /CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Certificate serial: 018F87B655CAC17920DD1538F7DF2E5FEDBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
Manifest number: 0508
Signing time: Fri 17 May 2024 18:00:24 +0000
Manifest this update: Fri 17 May 2024 18:00:24 +0000
Manifest next update: Sat 18 May 2024 18:00:24 +0000
Files and hashes: 1: DbMo_NzkiiliYs57pi4EQRNM8iA.roa (hash: mZdkZo/YNL2ivX6Ucdz/rXgcskCAHWUSNqEp3aidXmI=)
2: ih8K1VcrribjnIdAxoqPu0buSGQ.crl (hash: el0AkcYi3CYGSffx8r9j0HFtwxeprA3MeIzRs3n8cZk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:b6:55:ca:c1:79:20:dd:15:38:f7:df:2e:5f:ed:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Validity
Not Before: May 17 18:00:24 2024 GMT
Not After : May 18 18:00:24 2024 GMT
Subject: CN=d233421d0eeff7d3f33257a046bab8dc1eea288b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:51:20:1f:9f:4e:fc:08:56:f1:d1:26:66:c1:
4b:8a:4b:17:9f:c4:24:53:6d:83:04:a2:72:4a:f1:
00:b3:bb:67:c4:0b:32:ae:af:a2:eb:29:61:60:62:
62:24:c6:5c:c9:a7:75:bd:95:ad:28:81:54:2a:e7:
b7:26:06:9b:32:ab:eb:16:ac:f5:f6:03:51:cf:2b:
78:6e:88:b6:b4:54:38:c9:b7:61:46:30:ac:d9:0e:
8e:69:65:d0:0a:d6:f7:bf:c9:40:09:c0:cc:ab:06:
a6:d2:3d:6e:55:48:34:6f:06:b1:62:a8:b5:68:d1:
7a:19:25:23:de:e5:72:51:0a:dd:3f:14:84:5c:9e:
b1:cf:b8:bc:99:c4:fa:b5:77:8a:fb:ee:06:69:27:
e6:7b:1c:60:04:a9:5d:1d:b7:ff:f8:00:bd:14:f8:
2d:5d:89:78:60:c9:54:1c:84:a0:52:b6:b0:3f:88:
7c:cf:e7:4b:78:60:a7:22:04:5d:42:c1:1e:09:41:
aa:ea:81:fa:28:90:ef:09:54:e0:88:c6:b7:1f:04:
e8:1e:a5:b3:aa:61:41:4c:4d:91:26:0f:17:5b:db:
45:83:c1:89:71:bb:1a:f2:5c:f4:07:cb:c0:78:0a:
67:d8:4f:fd:48:ea:ba:a6:a1:be:1d:d1:3f:39:57:
49:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:33:42:1D:0E:EF:F7:D3:F3:32:57:A0:46:BA:B8:DC:1E:EA:28:8B
X509v3 Authority Key Identifier:
keyid:8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:b2:e1:ad:c1:28:a2:49:29:04:54:8d:af:1c:e3:50:06:e0:
63:ff:ba:64:86:25:29:8d:16:22:a4:72:a0:e2:f7:64:e0:f9:
d0:f5:e6:6c:2e:e9:12:dc:c9:5f:0b:b8:83:85:b7:ab:9d:35:
f6:a8:e6:c6:95:64:c6:94:47:12:ce:fc:96:28:5b:65:ce:39:
cb:12:de:20:fe:50:87:86:af:0d:0f:75:ae:c7:5c:f8:0f:50:
3e:7c:e4:81:3f:e6:bb:96:2d:d1:aa:46:37:e2:9c:78:63:0c:
fa:e0:52:43:ee:dc:ca:12:ae:93:2c:a4:76:87:e5:51:72:d8:
f2:42:3e:2d:52:50:d8:00:96:ab:5a:89:10:bc:66:41:c2:07:
37:fd:29:89:51:06:bc:2c:cb:2f:ca:af:df:51:65:87:5b:83:
80:4a:c8:bb:b2:a9:f2:d8:d7:05:db:7f:dd:36:8f:59:c4:9c:
e4:7d:20:74:3a:37:ab:03:ee:45:d8:0f:fb:21:76:c8:cb:d1:
91:a6:2a:1f:e7:64:9d:6b:96:1c:91:1d:ea:3f:e7:27:1e:6c:
d9:02:33:4d:db:0f:51:72:8e:5d:cc:72:f3:1f:0e:12:6a:76:
5c:de:5d:6b:87:89:7a:48:58:a7:7f:d4:ca:24:45:5b:e3:51:
bb:a6:b5:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 02:51:33 2024 by rpki-client on console-ams.rpki-client.org