Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
File: ICZNUaES0LwizqcxTLBs9aGuM-k.mft (raw, json)
Hash identifier: LcdjO67isGMd96aCSN6dEw7KE9c0po58UpdszVD5KwI=
Subject key identifier: CB:80:EB:ED:80:0B:F9:A5:C9:1B:45:27:94:04:33:F6:BC:2B:BD:77
Authority key identifier: 20:26:4D:51:A1:12:D0:BC:22:CE:A7:31:4C:B0:6C:F5:A1:AE:33:E9
Certificate issuer: /CN=20264d51a112d0bc22cea7314cb06cf5a1ae33e9
Certificate serial: 018F505AD44DEB178DFFC1393EB2822A3C13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
Manifest number: 10EE
Signing time: Tue 07 May 2024 00:01:20 +0000
Manifest this update: Tue 07 May 2024 00:01:20 +0000
Manifest next update: Wed 08 May 2024 00:01:20 +0000
Files and hashes: 1: ICZNUaES0LwizqcxTLBs9aGuM-k.crl (hash: rqp2oSr26WnZ5Kaz+ADbGS3pdrndxOcGC2h6rYbkINs=)
2: _V1zm2gwXVk9BxSHcnJUx9IAc1U.roa (hash: qJkFRYMG7jmn/lYUw1SXMp1o3xdtAZSFzU+zm2gM7Mo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:50:5a:d4:4d:eb:17:8d:ff:c1:39:3e:b2:82:2a:3c:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20264d51a112d0bc22cea7314cb06cf5a1ae33e9
Validity
Not Before: May 7 00:01:20 2024 GMT
Not After : May 8 00:01:20 2024 GMT
Subject: CN=cb80ebed800bf9a5c91b4527940433f6bc2bbd77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:54:f3:2e:8a:ae:88:92:4e:c4:4b:37:fc:23:
57:bb:02:70:f2:d4:bb:1f:ca:ab:7c:69:71:68:7d:
5c:0e:a1:c1:26:54:29:04:ed:76:25:48:aa:36:e4:
26:68:29:0d:ba:77:de:b4:3e:56:11:3b:f8:20:cb:
56:85:0d:34:ba:76:04:74:44:ff:23:da:6c:cf:72:
fb:97:73:19:d3:e5:29:84:57:21:1c:d8:ca:e3:32:
bc:2b:4e:da:35:5b:16:a0:79:ac:1f:95:65:27:ce:
1c:8a:a0:97:ed:01:72:f0:48:69:f4:2c:7a:c9:fb:
b4:5f:e2:14:f7:6f:e1:40:35:33:d8:41:28:be:c9:
b4:c3:76:35:2a:d0:ad:54:78:a8:8c:0b:5e:47:28:
4e:3e:60:69:c0:bd:96:18:4f:19:15:ac:92:cf:9e:
63:1f:0b:59:d2:99:f2:bd:80:2b:59:c5:da:5d:08:
5d:73:de:aa:89:73:c3:30:05:87:f7:79:eb:c6:1c:
a8:d6:1e:01:ff:4a:c1:ad:45:aa:94:d5:7e:26:2d:
94:3e:55:d0:ab:53:d4:36:45:be:e6:85:da:c5:aa:
b3:85:2b:df:c4:94:00:fe:15:e7:22:4c:b7:04:9d:
2d:d7:bf:7d:73:e7:53:39:26:60:35:0e:29:60:38:
f9:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:80:EB:ED:80:0B:F9:A5:C9:1B:45:27:94:04:33:F6:BC:2B:BD:77
X509v3 Authority Key Identifier:
keyid:20:26:4D:51:A1:12:D0:BC:22:CE:A7:31:4C:B0:6C:F5:A1:AE:33:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:27:d6:6c:71:91:c3:83:44:9a:41:f5:67:be:cd:4f:ee:35:
88:ea:79:0b:50:73:75:c1:56:8d:98:d4:9f:d0:d7:80:d6:47:
bf:6d:f6:57:c8:66:82:c4:ff:b4:73:41:e0:fb:7e:01:71:e2:
ab:54:c5:ec:9b:f2:97:f9:6e:79:e2:59:79:d7:7b:af:e2:49:
f6:73:37:30:cd:e1:3e:7b:07:6c:09:f6:23:5d:21:dd:7f:da:
c5:a7:24:33:8e:70:c4:d6:31:a1:5d:c3:fb:5d:4a:70:c1:c5:
64:29:ca:b1:db:f2:13:85:47:4f:b2:9b:b6:01:fc:0c:7e:f5:
1c:16:c3:1d:26:69:7a:76:0c:9f:26:0c:98:52:12:84:3c:fc:
4a:63:2b:58:49:5c:34:72:60:75:4d:20:2e:0c:d0:bc:02:4d:
f5:77:b1:d7:2d:b4:06:eb:06:d3:62:6e:36:0e:19:26:6d:d7:
24:48:91:2b:dc:15:a5:26:61:96:8e:b6:4f:e1:52:2f:f1:41:
11:7e:a0:79:1e:ab:73:ed:da:81:94:b0:f2:45:46:b6:69:9c:
f4:de:44:f5:bd:21:03:3d:48:70:11:05:59:1d:68:51:8a:4b:
08:d1:cc:90:96:ba:e7:64:3b:ae:35:ab:d0:f5:d0:b9:64:f6:
8a:7d:27:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 02:27:05 2024 by rpki-client on console-fra.rpki-client.org