Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
File: 4rvHBn-KfFfWhtZ160aOmbhr1i0.mft (raw, json)
Hash identifier: d5UxhMH4AWgtwZYwQiCJJhwhT7dvPh7/EmtNFYAfFqs=
Subject key identifier: F8:7D:82:12:38:CC:41:1B:C4:F1:1E:44:FE:BA:88:03:EF:0B:77:2A
Authority key identifier: E2:BB:C7:06:7F:8A:7C:57:D6:86:D6:75:EB:46:8E:99:B8:6B:D6:2D
Certificate issuer: /CN=e2bbc7067f8a7c57d686d675eb468e99b86bd62d
Certificate serial: 018F392E1154AB0BE3CFBFC5CDDDE1F712A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
Manifest number: 1122
Signing time: Thu 02 May 2024 12:01:11 +0000
Manifest this update: Thu 02 May 2024 12:01:11 +0000
Manifest next update: Fri 03 May 2024 12:01:11 +0000
Files and hashes: 1: 4rvHBn-KfFfWhtZ160aOmbhr1i0.crl (hash: 6Sis0JR9mD9ykaxDFn5PZTe6HQdFEr3aseBJbLhbmX4=)
2: K23Ah2TLDD2WWv2Y7fQKeIyEUDs.roa (hash: fSVHLsyxhJK3gXCGcs8yBnF6BQNVrf0HVR7MVV+oIj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 12:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:39:2e:11:54:ab:0b:e3:cf:bf:c5:cd:dd:e1:f7:12:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2bbc7067f8a7c57d686d675eb468e99b86bd62d
Validity
Not Before: May 2 12:01:11 2024 GMT
Not After : May 3 12:01:11 2024 GMT
Subject: CN=f87d821238cc411bc4f11e44feba8803ef0b772a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:83:b0:db:ee:6b:25:c7:32:48:77:e9:02:0d:
50:54:66:4b:20:e2:7a:3c:fc:68:a1:ca:e0:d4:bf:
10:2a:8d:06:b4:3b:fc:9a:21:69:bf:df:61:5c:03:
04:9c:51:d1:c8:0a:46:62:14:76:6c:e2:35:f5:3a:
8e:0f:9c:d5:cc:52:75:3f:73:5e:fc:48:fd:56:c0:
09:42:2a:f3:79:3b:45:fd:19:28:8c:33:07:b8:65:
69:1d:61:32:71:75:60:ad:56:7f:ea:b3:a2:ae:c9:
ea:d3:20:c9:32:8a:0f:25:bf:0c:38:5c:45:7a:0d:
5a:82:7f:16:d2:e2:69:4b:f9:8d:71:0e:c4:13:ba:
58:ed:95:e5:78:1c:b8:05:4c:b6:42:72:6b:21:91:
b5:88:91:86:5e:d3:39:24:37:ae:1c:c2:f2:f9:9c:
d9:1d:95:6c:0a:bd:3c:60:8a:83:78:9f:64:0f:ca:
ec:9a:6d:46:25:55:0e:75:20:0d:31:9b:33:b9:c3:
3e:c9:a8:0d:63:e2:20:a5:b9:d6:1d:25:18:f0:ed:
35:17:08:1b:6b:18:2d:59:b5:4b:5f:53:87:2e:6c:
07:86:19:ba:66:ae:c7:72:05:c6:ca:17:e3:39:ff:
32:a8:e9:23:c8:bd:05:ea:78:72:37:51:e9:e3:88:
9d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:7D:82:12:38:CC:41:1B:C4:F1:1E:44:FE:BA:88:03:EF:0B:77:2A
X509v3 Authority Key Identifier:
keyid:E2:BB:C7:06:7F:8A:7C:57:D6:86:D6:75:EB:46:8E:99:B8:6B:D6:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:2a:55:00:00:4f:ef:85:44:99:c5:20:76:e6:6d:16:91:18:
5f:2c:26:0e:a4:9e:33:ba:14:be:fb:76:ce:8a:35:e9:7e:c5:
64:f5:71:69:38:d9:04:2a:67:e5:f5:ba:6d:5b:25:b5:16:48:
c8:90:39:08:f5:b0:c1:fc:23:d5:f1:28:de:ce:e9:e0:86:12:
e6:b4:ed:6c:97:be:1d:9f:11:2d:af:86:b6:be:d8:ec:9f:88:
7c:4d:b0:b2:1b:86:c4:38:94:04:bc:95:73:b0:60:2a:02:6f:
96:dd:37:c0:8b:7c:cf:57:30:44:ce:3b:fe:e2:db:4a:46:d8:
13:13:b6:99:6e:32:1c:28:f9:30:72:c9:ef:a5:5b:47:df:82:
e8:0b:46:99:6f:45:c3:d8:7c:e3:f4:79:fe:3f:a9:00:7f:1a:
7b:21:8b:5f:6d:1d:4f:2e:15:03:62:46:94:3c:24:d1:59:37:
ff:df:4d:1e:80:98:5e:da:ff:0b:5e:b4:23:4f:f1:0d:ff:23:
09:98:b3:99:79:23:cd:49:62:dd:a3:0f:b6:bc:32:fa:da:73:
ff:e3:ae:64:be:92:e5:9f:af:c5:03:19:c5:8e:66:a0:1f:71:
aa:10:e0:19:8a:ab:51:70:8e:98:ab:95:41:a4:f7:f3:87:bd:
d7:d2:c2:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 19:25:43 2024 by rpki-client on console-fra.rpki-client.org