Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
File: 1a8gwCbeEE2W8XrLr054fvnTAgY.mft (raw, json)
Hash identifier: bMYq5e2tYxkbZ2onc12BoTop5M2WxC9jRgQVzb2Unv8=
Subject key identifier: 9E:8A:AC:DE:70:C4:70:C6:5F:4A:75:4E:25:4D:CD:09:E9:09:C4:21
Authority key identifier: D5:AF:20:C0:26:DE:10:4D:96:F1:7A:CB:AF:4E:78:7E:F9:D3:02:06
Certificate issuer: /CN=d5af20c026de104d96f17acbaf4e787ef9d30206
Certificate serial: 018F396518E0329FE58A2D12C25B91362861
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
Manifest number: 058E
Signing time: Thu 02 May 2024 13:01:17 +0000
Manifest this update: Thu 02 May 2024 13:01:17 +0000
Manifest next update: Fri 03 May 2024 13:01:17 +0000
Files and hashes: 1: 1a8gwCbeEE2W8XrLr054fvnTAgY.crl (hash: 3qrTDl/okI9vsyMmBM5tkRgPg9rjNNoiLMasKyFG6nI=)
2: FLCQQ5hkUmCoTkUJAW0us0pAmr0.roa (hash: GRtO4Lur5s+mtEZy5keIqwTlBpg94IpbFfEDuKGSUOo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:39:65:18:e0:32:9f:e5:8a:2d:12:c2:5b:91:36:28:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5af20c026de104d96f17acbaf4e787ef9d30206
Validity
Not Before: May 2 13:01:17 2024 GMT
Not After : May 3 13:01:17 2024 GMT
Subject: CN=9e8aacde70c470c65f4a754e254dcd09e909c421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:df:a3:04:6a:96:9f:25:1d:6d:3b:98:d9:d2:
d9:9c:c3:73:13:9b:18:25:f9:ae:87:c3:fc:1f:54:
4d:3b:fc:b5:68:d1:43:da:18:f5:38:f2:6c:a2:50:
45:41:48:ea:81:10:0f:e5:b7:b5:1e:7a:63:be:75:
79:af:fd:5c:2b:8c:08:77:a0:e7:87:9c:da:96:8d:
6b:a7:d9:cc:1b:04:a3:bf:b7:be:48:bb:5d:f2:53:
61:d3:8e:44:ca:42:0b:9f:b8:ac:dd:bd:66:36:d0:
71:21:f5:0a:48:b3:f7:e2:b9:6e:b3:a0:44:7f:37:
29:b5:4a:a2:82:b5:ac:d3:ec:f6:4d:1e:d1:f7:db:
58:ed:5b:a5:6b:67:90:e8:93:df:1a:95:48:04:19:
a3:68:d6:5d:30:74:51:b4:a7:37:63:a8:12:30:c6:
32:e5:5e:7d:45:2a:2c:95:eb:15:33:9e:56:a0:ac:
70:68:8e:c8:6b:f0:91:75:7e:38:f1:8b:b1:69:db:
60:f0:de:20:cb:e4:19:7b:54:76:6e:a6:4a:93:ae:
ae:8b:d0:98:4d:9f:3c:a7:f1:a6:66:61:82:c9:31:
18:6d:85:24:a4:cf:a2:98:51:e9:0d:a3:1d:98:68:
c0:b4:8f:a6:a1:c3:1d:06:02:0c:3b:a3:72:6a:00:
37:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:8A:AC:DE:70:C4:70:C6:5F:4A:75:4E:25:4D:CD:09:E9:09:C4:21
X509v3 Authority Key Identifier:
keyid:D5:AF:20:C0:26:DE:10:4D:96:F1:7A:CB:AF:4E:78:7E:F9:D3:02:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:d2:11:68:89:e1:cb:b7:81:05:8f:9d:36:63:50:c8:96:36:
fc:ff:26:96:ab:4b:53:0c:2a:68:b6:6d:02:db:5f:e3:2b:8c:
04:9f:cf:a9:46:9c:79:55:6c:69:c0:1e:d9:63:6e:78:2c:24:
67:be:34:53:18:2a:75:cd:05:0a:d0:99:4f:ec:94:13:f5:b4:
1d:17:f9:97:d6:a9:03:47:12:4f:88:34:f7:70:a9:81:f4:e4:
19:16:d4:8e:68:95:97:6c:cb:8a:b0:03:2a:75:20:0b:1f:21:
bc:63:df:05:e0:fa:bc:f4:dc:ce:61:bf:12:d4:e5:58:86:1b:
0e:1d:eb:e3:61:24:4c:37:bf:22:26:3e:95:ab:bd:10:c3:ca:
b7:d5:a8:db:fc:a6:48:2a:7a:fe:06:36:81:45:07:bf:c2:5b:
0f:af:98:cf:ee:be:a7:9f:03:c4:b3:23:59:c0:ca:b7:6a:01:
73:3b:e8:4f:13:52:61:9d:6f:83:c0:c6:ef:59:62:ab:44:3e:
ba:8d:82:ce:a9:29:dc:f8:ea:df:89:fd:51:dd:80:1e:e0:62:
ba:c0:f1:e7:44:9e:f2:23:59:04:c8:ee:b2:17:fe:50:37:2c:
91:df:7b:b2:f8:d5:08:7f:31:83:9d:42:d1:a0:b1:51:d2:6f:
1f:15:e8:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 18:28:39 2024 by rpki-client on console-ams.rpki-client.org