Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.mft
File: OXbmqwhMnu7ehuKva95yFSdLlac.mft (raw, json)
Hash identifier: brcTs1I6JAz2gQuU1KSQfncwzPXTizASPq4LLuN6OBw=
Subject key identifier: 72:DD:BE:2E:70:0D:07:55:3F:EC:34:48:F9:84:E6:47:B3:77:51:5B
Authority key identifier: 39:76:E6:AB:08:4C:9E:EE:DE:86:E2:AF:6B:DE:72:15:27:4B:95:A7
Certificate issuer: /CN=3976e6ab084c9eeede86e2af6bde7215274b95a7
Certificate serial: 018F8936D0C8CE39C2DA68AB6710768A3FE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXbmqwhMnu7ehuKva95yFSdLlac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.mft
Manifest number: 1176
Signing time: Sat 18 May 2024 01:00:21 +0000
Manifest this update: Sat 18 May 2024 01:00:21 +0000
Manifest next update: Sun 19 May 2024 01:00:21 +0000
Files and hashes: 1: 3Q7ng3QLpXrbtsxsH_x31AUUYW8.roa (hash: 2BMUbYICNoHaL2If8Yi3AU+6S0Hkq5FG0exHOPmiZYs=)
2: OXbmqwhMnu7ehuKva95yFSdLlac.crl (hash: /NWaVrbOaAd08iwxbhSHtI7uPZLqgpasCIJx/frGz84=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXbmqwhMnu7ehuKva95yFSdLlac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:89:36:d0:c8:ce:39:c2:da:68:ab:67:10:76:8a:3f:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3976e6ab084c9eeede86e2af6bde7215274b95a7
Validity
Not Before: May 18 01:00:21 2024 GMT
Not After : May 19 01:00:21 2024 GMT
Subject: CN=72ddbe2e700d07553fec3448f984e647b377515b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:34:df:92:33:06:b8:fa:87:f1:64:59:d1:34:
86:4e:bd:8d:c5:09:bd:c3:eb:71:40:1b:87:64:81:
1c:8e:13:e2:6a:20:62:c2:b0:b3:74:c8:a4:b6:c1:
a9:b6:6b:cf:36:87:fd:71:f6:ac:ef:65:50:19:aa:
c8:01:84:06:34:ca:68:81:e4:6d:5e:b4:64:d0:60:
0b:50:f5:6d:7a:ad:1a:65:a0:c6:68:ee:43:57:07:
df:47:ae:ec:cb:42:04:2c:5b:9a:7a:80:5e:72:9e:
ae:d1:05:1d:1c:4f:97:95:07:5e:f7:73:9a:0e:46:
83:15:ec:4a:e4:6e:26:4d:53:32:f9:45:13:57:41:
67:44:94:5b:ef:eb:d4:4d:c2:52:74:99:8c:78:b5:
2c:8c:be:24:04:18:b3:ee:10:9d:04:e0:69:0c:fe:
24:f5:9f:27:0e:9c:5f:61:d9:e8:74:a2:93:11:a5:
cf:2d:f1:a6:bd:4b:2b:15:a7:57:b3:1c:98:4d:00:
13:dc:83:e9:dc:d9:77:a4:06:5b:2c:39:14:54:15:
c5:ea:98:a6:96:c5:b3:25:65:e6:aa:e7:3d:92:fe:
61:f2:81:71:20:4b:ae:1f:da:82:e9:9a:55:5b:d5:
c3:1c:75:d2:78:3e:43:22:fb:0f:01:9e:73:ab:c1:
7f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:DD:BE:2E:70:0D:07:55:3F:EC:34:48:F9:84:E6:47:B3:77:51:5B
X509v3 Authority Key Identifier:
keyid:39:76:E6:AB:08:4C:9E:EE:DE:86:E2:AF:6B:DE:72:15:27:4B:95:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXbmqwhMnu7ehuKva95yFSdLlac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:9d:61:c1:38:25:1d:f8:43:b5:5e:e5:a2:a2:2b:0b:bf:58:
89:8a:26:5c:0a:af:50:67:e5:d6:6b:de:80:a2:91:93:82:ef:
89:e4:a8:9c:4c:b7:fb:76:74:8d:9b:84:2c:74:6e:ba:eb:f3:
0b:81:60:ab:0c:7e:73:90:b1:f3:18:22:a1:ce:0d:9f:77:5c:
c9:bf:6c:9d:43:90:9f:d6:5d:5a:22:17:6d:d2:c6:88:af:57:
ac:aa:8c:0d:5f:84:ad:e8:e5:28:91:f2:7b:0a:ab:5e:31:d3:
1e:e8:cf:c8:f9:a1:ce:56:af:6c:c7:e6:3c:f9:7f:cf:7d:6b:
ea:34:c6:fc:f7:d7:49:99:15:a9:3f:e0:bf:3f:42:a3:cd:c5:
c1:84:af:33:43:f1:62:6e:27:53:85:4a:ef:c7:e5:93:e2:ec:
1a:49:d5:3c:cb:53:22:3b:8d:e6:c6:64:b4:b5:17:55:dc:8d:
45:77:bf:04:19:9d:14:27:af:a5:c9:e2:6f:43:48:64:57:00:
77:07:ee:88:5e:36:8a:a5:fc:2c:b1:7b:e6:36:f7:f6:65:f2:
bb:57:50:d8:79:af:c6:9c:27:6d:e9:f4:65:bc:a9:76:ed:ba:
cb:ea:39:69:69:b3:1c:10:7c:27:81:fc:e4:32:56:bb:8c:1e:
3d:3f:ab:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 02:38:10 2024 by rpki-client on console-fra.rpki-client.org