Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
File: CnAgLDEt0sem_8MXqobk4gaSSaY.mft (raw, json)
Hash identifier: i0MJ8Xnfye1VJ/8XyPLJMCR+/XI7xfTFlnn0iNOxemA=
Subject key identifier: C0:47:F5:62:BF:9A:BA:0C:FB:8F:68:35:D0:34:33:A3:7E:67:1B:45
Authority key identifier: 0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
Certificate issuer: /CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Certificate serial: 018F51A4F4DFFF252929FCD957F58C1BED60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
Manifest number: 0487
Signing time: Tue 07 May 2024 06:01:56 +0000
Manifest this update: Tue 07 May 2024 06:01:56 +0000
Manifest next update: Wed 08 May 2024 06:01:56 +0000
Files and hashes: 1: CnAgLDEt0sem_8MXqobk4gaSSaY.crl (hash: tFLuD5IEp6BycPoMawZmjhcTu2KMSSuqKCSYDO4fdfk=)
2: JnCeM_UrHxSagSWeEYKuxVT_RsE.roa (hash: Nqc0kLRKWhdceFL4S+WkkPQoNAcD+SOL0v5npMpEC18=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:51:a4:f4:df:ff:25:29:29:fc:d9:57:f5:8c:1b:ed:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Validity
Not Before: May 7 06:01:56 2024 GMT
Not After : May 8 06:01:56 2024 GMT
Subject: CN=c047f562bf9aba0cfb8f6835d03433a37e671b45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bc:df:15:30:d4:85:ec:b7:93:2c:bc:cd:75:
c1:10:d0:02:8f:72:ce:17:d9:f4:7d:3a:cc:9d:2b:
f8:fb:6d:f3:b8:a2:2d:f1:fb:01:f7:de:44:9c:f0:
b9:4b:c8:3e:17:b3:a0:c7:bd:12:b9:e7:80:eb:f3:
8f:1b:07:a9:13:66:47:1b:1e:91:36:a1:a1:1d:6f:
5a:9a:b3:c4:60:3c:27:bf:49:92:9f:6f:d0:b1:e4:
ac:65:c5:c6:67:73:3b:ce:4c:f2:27:56:a3:f8:9d:
fe:d4:08:be:a6:49:04:63:05:1b:fc:48:d0:2a:f7:
41:9d:6c:fe:f5:20:fb:d6:70:90:62:50:bd:85:f0:
d3:95:98:08:70:67:ac:b3:03:fe:f6:5f:fb:80:10:
3f:af:31:0c:0f:c9:a4:9f:43:64:d2:f8:28:c9:01:
2e:69:c5:6b:90:c7:22:eb:11:fe:55:2b:b4:c8:90:
73:d9:6e:1a:53:82:c8:b4:89:a0:19:65:9f:68:c5:
da:64:75:1e:8f:31:d1:b4:37:28:7c:a7:cb:db:c0:
dc:27:a2:5f:17:da:ab:a9:7d:52:3e:9e:c2:47:dd:
27:3a:ec:8b:cf:12:66:e9:74:43:74:2b:9c:27:56:
24:9c:00:60:b2:8f:e9:2b:1a:96:6b:bd:55:72:2d:
16:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:47:F5:62:BF:9A:BA:0C:FB:8F:68:35:D0:34:33:A3:7E:67:1B:45
X509v3 Authority Key Identifier:
keyid:0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:32:fb:b7:9d:93:c3:c5:69:3d:96:07:06:b3:6c:41:76:7b:
38:32:cd:62:f4:72:22:cb:30:bd:67:7f:86:df:33:ee:7c:41:
b6:06:a3:69:a3:c4:5f:8b:a4:1f:d6:2f:ba:f6:94:02:4d:ab:
c3:18:23:1f:05:43:b9:d0:d3:66:af:55:19:8c:1c:95:21:fd:
4a:64:5f:7e:e2:6d:3a:33:c1:3a:c6:9e:da:cc:eb:8d:54:c0:
89:55:4e:91:4b:c2:ac:f9:a9:e4:7c:55:cf:38:25:9a:cf:84:
42:d4:13:e2:37:99:36:c2:2c:c3:41:32:69:2d:ff:65:64:fe:
c8:74:ba:2e:61:55:ab:b5:46:00:de:11:f1:4a:8f:65:fd:d1:
c8:d5:a7:a8:58:3b:ad:6c:82:4c:95:70:db:a1:54:55:03:ab:
f6:fd:66:71:7f:77:95:5a:4c:62:b2:9a:2b:7b:7a:fa:00:7e:
50:b6:a5:80:95:0f:ef:08:9a:94:6d:82:07:cc:d6:30:af:76:
c0:1c:6c:14:2a:bb:49:9a:8a:f3:32:e7:5e:a8:25:86:b9:76:
1a:75:91:05:1c:c8:12:58:24:a8:a8:fc:84:69:8a:a9:d3:6b:
f1:e1:47:ce:12:1f:eb:f8:69:25:a2:35:26:b5:73:c4:f4:b7:
68:05:a0:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 08:23:46 2024 by rpki-client on console-fra.rpki-client.org