Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
File: D3jqRswh1F7WEmjUqfVnMsheIVA.mft (raw, json)
Hash identifier: fHhjEp2YNLC7lh9d+Smw8RjvYRKZkEQb0TXuyOWtbDI=
Subject key identifier: D5:65:08:BE:98:04:D4:E3:66:45:4D:01:0A:0D:21:09:87:FE:D5:91
Authority key identifier: 0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50
Certificate issuer: /CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150
Certificate serial: 018F448DE185CBFFAEF83C0F220831F5D59D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
Manifest number: 1154
Signing time: Sat 04 May 2024 17:01:40 +0000
Manifest this update: Sat 04 May 2024 17:01:40 +0000
Manifest next update: Sun 05 May 2024 17:01:40 +0000
Files and hashes: 1: 7rIxwL9zvztZlT5A8M_SDkdKSB0.roa (hash: O7ESRWi9x/d6Kr3RcdLNDC+oeR7P9co1vXJSgZQwptI=)
2: D3jqRswh1F7WEmjUqfVnMsheIVA.crl (hash: REH2tkyfYzEOpKrofXAgTGo1Cyv9MpS8WJdQZpUqSOo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:44:8d:e1:85:cb:ff:ae:f8:3c:0f:22:08:31:f5:d5:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150
Validity
Not Before: May 4 17:01:40 2024 GMT
Not After : May 5 17:01:40 2024 GMT
Subject: CN=d56508be9804d4e366454d010a0d210987fed591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:fc:c7:7e:8f:fc:69:c4:68:f3:0f:7e:af:4c:
d7:c4:17:c5:c2:fb:34:6d:57:1e:52:fe:99:cd:c4:
04:8e:3a:31:6d:9c:d4:1e:04:7b:6b:8a:b8:a4:1e:
81:18:ae:3b:d2:77:0f:4c:65:93:ce:bd:27:6a:55:
b3:0d:6b:12:26:cf:8c:d8:f8:ac:ee:5a:60:0e:43:
8d:eb:9e:25:46:6b:9e:90:10:c6:e4:7c:a5:fe:29:
bf:a6:d0:a7:7a:e2:c1:cc:ba:45:75:4a:f6:dc:56:
4c:03:24:09:88:4e:bc:01:9e:b6:b4:72:9d:a0:ba:
a0:e9:8f:23:77:68:4d:77:f0:96:e0:9f:fb:35:14:
dd:30:c6:64:f2:90:14:62:0e:94:54:fb:8f:cd:f0:
13:bd:69:e6:4e:29:e4:73:70:5f:b0:30:87:3c:ab:
00:5b:da:15:d3:3c:42:c4:08:e7:b2:69:d4:a9:9f:
5b:77:6f:d7:43:44:17:ef:9e:e6:ff:37:23:0c:7e:
49:b3:39:e7:d5:f8:0b:02:70:2f:73:2b:45:ec:51:
09:e2:68:aa:38:82:8e:71:fe:e2:ef:69:c6:12:fb:
10:fa:67:09:a1:a9:b5:fd:c3:98:d8:50:d7:ee:f1:
57:f6:10:82:06:d8:9b:9f:2b:cb:09:29:dd:ee:47:
10:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:65:08:BE:98:04:D4:E3:66:45:4D:01:0A:0D:21:09:87:FE:D5:91
X509v3 Authority Key Identifier:
keyid:0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:09:54:e4:33:45:ef:7b:ae:94:67:27:64:96:5b:c7:78:bf:
db:a2:05:4b:34:8a:fd:ee:23:62:a6:b7:9b:b4:99:1b:91:9b:
65:e8:d1:fa:37:4f:ec:a6:00:1b:48:ee:fc:ba:4e:34:72:6e:
9f:96:a1:8c:7d:3f:ba:82:5c:01:37:54:02:2b:04:6e:35:f3:
3f:0b:93:91:69:c9:b3:03:5c:cc:17:1e:a1:32:6f:d8:14:64:
8e:a9:67:5c:32:f5:97:d3:ec:98:25:95:a5:e2:a5:25:b0:32:
ae:d8:0c:62:7d:c4:73:0e:5c:27:cd:fa:d4:3d:fc:65:cb:47:
56:32:2d:53:9a:ab:9d:50:a7:51:41:9a:cb:ed:f2:23:8e:0c:
39:4b:8e:13:7e:c8:64:30:36:2f:84:08:15:9f:d3:a5:82:66:
5b:53:7a:21:99:98:c8:62:95:cd:58:1b:99:d4:c4:a3:8b:5c:
47:db:bd:70:31:03:c7:60:76:f5:20:08:ab:ff:85:7b:ff:5f:
8a:4b:6b:d3:43:35:ed:35:8e:5b:b4:fd:2c:f1:57:82:1c:01:
3f:26:90:2e:5c:2e:59:ba:b6:b7:4c:77:d2:8d:8d:8a:fb:25:
5e:e8:e4:0f:b9:55:6f:61:15:be:dc:1a:95:b7:95:91:4a:8c:
91:69:b1:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 19:19:43 2024 by rpki-client on console-fra.rpki-client.org