Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft
File: BgOecctxUgSoPMJTgi3CmmLHmeY.mft (raw, json)
Hash identifier: 0EJpE54+o1KovQYQFLzLl7OCTVaWlsPSKgh9zE9Di8U=
Subject key identifier: C3:87:46:F6:18:EC:29:43:DC:1D:05:A8:D8:A5:67:1C:68:7D:E2:41
Authority key identifier: 06:03:9E:71:CB:71:52:04:A8:3C:C2:53:82:2D:C2:9A:62:C7:99:E6
Certificate issuer: /CN=06039e71cb715204a83cc253822dc29a62c799e6
Certificate serial: 01904ED7AC2900D707DDA50F57A6D0E10857
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BgOecctxUgSoPMJTgi3CmmLHmeY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft
Manifest number: 02F0
Signing time: Tue 25 Jun 2024 10:01:15 +0000
Manifest this update: Tue 25 Jun 2024 10:01:15 +0000
Manifest next update: Wed 26 Jun 2024 10:01:15 +0000
Files and hashes: 1: A1R1tQF-WsYvJ21J-b7T2-CAt8g.roa (hash: ONX8S9m534M28Bbc70K62U7xXDHuIeZGhFYQ+HPeSCs=)
2: BgOecctxUgSoPMJTgi3CmmLHmeY.crl (hash: vofNun6UedBdOAW4wL8ygBAkYCPg4qeM1BUD8bthF44=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft
rsync://rpki.ripe.net/repository/DEFAULT/BgOecctxUgSoPMJTgi3CmmLHmeY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 26 Jun 2024 10:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4e:d7:ac:29:00:d7:07:dd:a5:0f:57:a6:d0:e1:08:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06039e71cb715204a83cc253822dc29a62c799e6
Validity
Not Before: Jun 25 10:01:15 2024 GMT
Not After : Jun 26 10:01:15 2024 GMT
Subject: CN=c38746f618ec2943dc1d05a8d8a5671c687de241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7f:d8:91:8d:06:1d:28:08:e8:e0:4e:27:57:
41:32:24:8e:b3:49:bc:ea:7f:6d:e9:7e:c8:d5:c4:
91:38:00:c3:87:a9:4e:d8:17:67:a7:d9:5d:e3:71:
70:80:eb:df:28:e0:0f:8f:64:66:3b:0f:26:bc:6b:
d4:ac:c0:5d:f3:c9:af:74:8d:d5:2a:25:63:53:f2:
cf:1f:aa:f0:3b:fb:f1:fa:e0:84:42:63:4c:db:a3:
ce:41:32:e6:a3:a3:14:56:22:26:f5:6d:da:d8:69:
83:53:a3:99:f5:56:78:23:b4:c7:1b:2e:a3:4b:e8:
fd:c1:2d:9d:f9:0a:6e:95:7d:1d:00:b8:a7:f9:67:
ae:46:ef:33:b2:96:67:cb:46:98:fa:f3:be:2d:51:
79:1d:0f:dd:aa:06:87:06:28:e3:3f:42:a3:76:c8:
4b:10:c0:b1:11:6b:d5:4c:53:6d:32:dc:6a:a5:33:
0f:be:bc:c3:e4:44:a4:3c:45:a1:5b:17:06:1d:e7:
c4:9d:05:16:71:55:97:37:f7:2f:06:cd:69:9b:27:
d7:00:03:13:f9:1c:8f:a3:3e:aa:9e:99:1e:1b:f5:
6c:44:6a:bd:c1:1b:7b:35:26:b8:47:90:e5:e4:99:
fc:53:fe:37:77:21:98:db:9f:8b:e2:ea:1b:62:17:
1c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:87:46:F6:18:EC:29:43:DC:1D:05:A8:D8:A5:67:1C:68:7D:E2:41
X509v3 Authority Key Identifier:
keyid:06:03:9E:71:CB:71:52:04:A8:3C:C2:53:82:2D:C2:9A:62:C7:99:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BgOecctxUgSoPMJTgi3CmmLHmeY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:05:03:7c:43:63:34:35:a2:f2:ac:75:4b:52:58:07:25:c4:
2d:6c:9e:41:fe:bb:44:db:21:47:0f:04:a2:11:4e:6e:83:78:
33:2d:a7:e3:47:a5:f4:c4:73:ca:70:97:61:26:0c:e9:d8:6a:
d5:be:c0:39:86:8b:f5:d4:54:a9:4f:a6:d6:44:78:b7:d6:68:
8b:46:b1:78:16:57:95:bf:c8:00:26:c3:3b:d6:e9:2f:3f:ba:
1d:f6:fd:31:05:0c:1a:e2:d0:2c:bf:88:8a:6d:90:ef:d8:29:
a1:8f:b5:ab:71:ce:52:ed:15:2a:87:79:a8:1d:18:a7:2c:6c:
c2:c4:31:b4:0a:31:6e:57:6d:9c:86:a6:6e:12:04:aa:6f:83:
5e:fd:5a:ec:b2:6b:c6:e9:e3:ae:d5:77:a6:0b:81:c2:69:00:
97:03:f5:76:9f:e2:44:47:f2:e9:32:9a:56:a6:68:29:45:3e:
12:48:77:23:a2:2a:fe:1e:a4:df:0d:f0:4e:02:9b:f3:4d:39:
e9:81:25:15:75:a2:b5:fb:b0:34:e6:65:6f:9f:93:69:9f:75:
d8:80:55:89:ef:5c:0c:1e:3d:65:d2:2a:61:38:15:cd:80:10:
6c:d5:7c:74:d9:32:f5:33:98:0e:16:ed:0d:b8:6a:8d:fa:a4:
23:81:37:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 25 21:15:09 2024 by rpki-client on console-fra.rpki-client.org