Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft
File: aH2bViukcmGPk5jiZcoOcQj2h6M.mft (raw, json)
Hash identifier: is/6rBD5zwXR+G2BKJzdP2v5fMtCMiLCStQ+ZFGA/f4=
Subject key identifier: FF:66:46:48:E5:2B:F7:1F:C5:34:56:C3:05:32:F0:CC:45:43:DD:B3
Authority key identifier: 68:7D:9B:56:2B:A4:72:61:8F:93:98:E2:65:CA:0E:71:08:F6:87:A3
Certificate issuer: /CN=687d9b562ba472618f9398e265ca0e7108f687a3
Certificate serial: 018F85FE95984EAC0EAC51C53AE99A60690C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aH2bViukcmGPk5jiZcoOcQj2h6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft
Manifest number: 1109
Signing time: Fri 17 May 2024 10:00:05 +0000
Manifest this update: Fri 17 May 2024 10:00:05 +0000
Manifest next update: Sat 18 May 2024 10:00:05 +0000
Files and hashes: 1: aH2bViukcmGPk5jiZcoOcQj2h6M.crl (hash: nvGyQik3nhZkS5QIs2jXuQmjbc9hx6KBhDxMB/6fZ18=)
2: uhhrhqvzOeSJQczE88-nuObPqH4.roa (hash: Yb5cZ/LHByIgFLifli2ZGkEPxMgtx5WlcPXyQ3MtdFg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/aH2bViukcmGPk5jiZcoOcQj2h6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 10:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:85:fe:95:98:4e:ac:0e:ac:51:c5:3a:e9:9a:60:69:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687d9b562ba472618f9398e265ca0e7108f687a3
Validity
Not Before: May 17 10:00:05 2024 GMT
Not After : May 18 10:00:05 2024 GMT
Subject: CN=ff664648e52bf71fc53456c30532f0cc4543ddb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:5d:58:d7:02:ca:d4:9e:c8:c6:5c:9b:e4:ac:
c5:a3:9a:ac:91:a1:75:2c:89:89:bc:9e:4b:51:a5:
e6:d9:b1:49:e7:20:8d:ad:30:c7:17:27:3e:f5:bc:
d2:fd:40:cb:49:e6:39:98:c7:8f:0b:62:30:47:85:
3c:6c:69:cd:db:52:d3:d1:ae:52:c6:a4:d8:e5:d2:
25:4f:c1:d2:20:c4:04:2f:63:35:f8:30:0a:48:c2:
68:99:9c:ea:f5:9b:0f:71:4a:9d:17:05:68:96:92:
f6:23:8c:5f:37:26:13:11:93:67:a0:87:e6:93:12:
e2:38:9a:4c:06:d3:7e:01:58:e1:5b:fb:57:3e:31:
b5:fb:77:2e:26:96:5e:98:67:3a:09:1d:e4:e2:de:
69:4d:b1:42:13:34:5e:f5:3f:b7:76:98:f7:b9:4d:
c3:4d:fd:69:9f:d6:35:86:25:23:34:42:63:b1:1c:
e4:bb:d7:3d:f8:fb:55:97:4a:8a:0c:cf:18:67:e2:
1f:98:12:14:dc:62:b0:3d:90:b4:a8:0c:8e:33:10:
81:e1:3b:40:d9:88:7c:c2:b3:01:e4:69:1f:61:17:
94:ff:0c:fa:ab:75:9d:7f:fb:71:f9:b6:1a:4a:a1:
09:f4:e2:7d:db:a4:44:ed:37:75:1b:d8:05:ed:ee:
0f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:66:46:48:E5:2B:F7:1F:C5:34:56:C3:05:32:F0:CC:45:43:DD:B3
X509v3 Authority Key Identifier:
keyid:68:7D:9B:56:2B:A4:72:61:8F:93:98:E2:65:CA:0E:71:08:F6:87:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aH2bViukcmGPk5jiZcoOcQj2h6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:12:18:cb:f9:a6:49:88:93:89:70:61:99:6a:73:7b:0f:23:
c6:6f:af:69:b5:fe:71:07:84:87:01:cc:ce:52:f2:ba:0f:fc:
e5:92:7b:d6:fa:01:9a:11:33:30:26:f5:10:0c:be:0c:d4:df:
95:89:52:c2:02:18:97:2d:80:83:e6:9c:01:19:a9:54:4a:bf:
78:4a:ec:bb:e5:6a:85:ce:a2:11:4f:e3:fd:e8:98:1a:a6:75:
dc:0a:aa:09:df:7a:c9:85:ad:06:56:33:9b:9b:61:e9:9d:68:
d8:4f:8c:86:21:5a:ef:84:b6:6c:37:86:e8:d2:69:12:c0:73:
15:fe:24:8c:09:41:04:f3:5c:39:13:24:1a:4f:1d:d3:77:98:
2a:13:e9:2c:f7:a1:0d:7f:71:5e:a3:da:a6:1c:62:76:17:b9:
6c:6c:17:cb:2b:3c:5c:38:52:b1:3a:94:ec:74:c1:f2:53:d9:
d3:6e:8c:71:4c:29:b9:d7:9a:f1:2d:bb:d5:8d:e9:c1:9d:2a:
26:fd:b1:05:66:90:b5:dd:9a:53:d4:4e:2c:49:21:92:cb:54:
33:f7:91:1d:af:32:1f:10:0f:d6:d7:71:71:e2:fb:a4:81:d8:
a4:91:70:e5:42:c3:9a:b4:09:40:78:7d:d3:45:cb:74:b0:65:
29:82:9f:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 19:07:33 2024 by rpki-client on console-fra.rpki-client.org