Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/0ee012-ba7b-4606-9d7c-c4ace4f834b5/1/ok5SPzBOIuroz_iA2DiEk8WgEXg.mft
File: ok5SPzBOIuroz_iA2DiEk8WgEXg.mft (raw, json)
Hash identifier: LS5ITVJHNfHCSBNNyh7EG8kz3HtsX1T4Fz3FI+9WdCs=
Subject key identifier: 24:00:D9:8A:F6:BA:5A:F0:09:70:C1:76:5A:93:C8:99:F3:6E:E0:D8
Authority key identifier: A2:4E:52:3F:30:4E:22:EA:E8:CF:F8:80:D8:38:84:93:C5:A0:11:78
Certificate issuer: /CN=a24e523f304e22eae8cff880d8388493c5a01178
Certificate serial: 018F88248BD3108F89CCFFFB6025BDE4D829
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ok5SPzBOIuroz_iA2DiEk8WgEXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/0ee012-ba7b-4606-9d7c-c4ace4f834b5/1/ok5SPzBOIuroz_iA2DiEk8WgEXg.mft
Manifest number: 0F43
Signing time: Fri 17 May 2024 20:00:47 +0000
Manifest this update: Fri 17 May 2024 20:00:47 +0000
Manifest next update: Sat 18 May 2024 20:00:47 +0000
Files and hashes: 1: Fe7uHk9u40_jNRGrC3nW6harDMg.roa (hash: Es8wQl9RsGP2RKff96HG+AixU62lDbkaw0m12lyaH28=)
2: ok5SPzBOIuroz_iA2DiEk8WgEXg.crl (hash: JksFohC85cRC++GA6oSa9C0PFVsurpSNWHjNPIbRDwc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/0ee012-ba7b-4606-9d7c-c4ace4f834b5/1/ok5SPzBOIuroz_iA2DiEk8WgEXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/0ee012-ba7b-4606-9d7c-c4ace4f834b5/1/ok5SPzBOIuroz_iA2DiEk8WgEXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ok5SPzBOIuroz_iA2DiEk8WgEXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:24:8b:d3:10:8f:89:cc:ff:fb:60:25:bd:e4:d8:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a24e523f304e22eae8cff880d8388493c5a01178
Validity
Not Before: May 17 20:00:47 2024 GMT
Not After : May 18 20:00:47 2024 GMT
Subject: CN=2400d98af6ba5af00970c1765a93c899f36ee0d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:95:03:0d:cb:fe:99:ad:e5:34:d6:83:8f:dc:
4b:11:92:8d:dc:7a:00:0e:da:25:fd:cd:24:36:39:
61:95:e4:3b:62:9f:a8:ba:d3:90:23:24:d7:1d:22:
f8:68:69:43:80:fe:58:bf:74:78:ed:03:ba:8d:7b:
3a:3a:75:6e:46:5c:a4:25:cb:46:d8:55:cb:fc:aa:
bc:b1:b1:b7:96:22:2e:ff:f1:16:3a:64:a0:10:66:
52:b9:e5:fe:ca:f5:92:57:a9:f7:b0:36:7b:9b:0a:
54:7c:1b:a0:6b:aa:5d:60:f4:2e:23:67:e6:0f:4e:
f6:28:f0:f5:e0:37:c8:90:fe:2c:f9:fb:09:25:b7:
b9:20:d5:0c:0d:3b:1b:b5:31:52:df:a1:88:9e:20:
39:1f:c5:c3:5c:a3:47:9c:3c:ed:51:78:9e:c9:7f:
9c:44:ab:12:68:cb:0f:91:db:80:ff:c8:d4:18:d3:
d5:a2:16:84:97:72:f1:1d:65:26:91:e9:38:ee:14:
8d:45:56:45:66:b2:42:c0:5b:e1:48:8f:bd:c1:ac:
96:bf:24:4a:69:1d:c4:10:9f:d9:f7:34:72:09:82:
d4:6a:7d:9c:53:89:43:3e:2d:8f:0a:3f:5a:81:34:
ad:5f:fc:a4:59:8b:bb:d4:83:86:fd:3a:18:43:67:
16:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:00:D9:8A:F6:BA:5A:F0:09:70:C1:76:5A:93:C8:99:F3:6E:E0:D8
X509v3 Authority Key Identifier:
keyid:A2:4E:52:3F:30:4E:22:EA:E8:CF:F8:80:D8:38:84:93:C5:A0:11:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ok5SPzBOIuroz_iA2DiEk8WgEXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/0ee012-ba7b-4606-9d7c-c4ace4f834b5/1/ok5SPzBOIuroz_iA2DiEk8WgEXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/0ee012-ba7b-4606-9d7c-c4ace4f834b5/1/ok5SPzBOIuroz_iA2DiEk8WgEXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:a2:c7:3f:07:89:b2:bf:74:eb:7a:8b:97:a8:f8:3a:28:88:
8f:0b:be:f0:2a:24:94:e4:c0:57:9b:e2:da:18:8f:46:73:88:
4a:f0:2f:f0:5a:09:1b:23:59:5b:5a:c6:cd:96:2f:b1:45:ad:
57:a0:8e:42:37:1e:8e:6a:70:7d:68:78:b3:4e:93:22:fa:c7:
50:4c:03:d2:df:ea:be:e3:e2:d0:38:3a:1a:51:d8:0b:ca:5d:
62:a1:a0:49:c0:07:3e:0c:00:51:44:69:d0:d3:cd:96:91:6d:
45:fe:aa:89:7a:45:ca:a7:6e:ed:4e:b2:51:90:43:c7:1d:20:
39:28:0f:6c:67:ad:ad:80:1d:81:9a:99:c4:5c:29:fe:b7:0b:
c4:f3:5d:c1:9f:32:0c:1a:b6:89:ff:f7:ae:eb:8e:e5:87:ed:
1e:45:01:9c:49:01:55:ac:9c:2a:7f:c1:e4:03:65:5f:34:d6:
b2:0b:6c:d9:d2:10:ba:cb:4f:9c:3c:d2:40:da:fa:de:45:14:
6b:34:bc:81:86:43:37:0b:55:85:57:30:03:f0:df:46:2b:46:
b7:1e:46:f8:2f:b2:e8:84:17:e9:67:02:04:b7:f9:55:bf:96:
a2:e0:07:01:79:60:83:16:3b:54:ad:8d:31:cb:81:99:30:92:
75:51:0b:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 02:37:45 2024 by rpki-client on console-fra.rpki-client.org