Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
File: 8nptTTKDKDFyXEjbUYokAPGpJL0.mft (raw, json)
Hash identifier: T991jXhs+c/tn2ssN6+DCo1+SQv/FpYoU6geVW8Ysyw=
Subject key identifier: 45:83:D8:16:F6:FD:8F:19:42:F9:97:0B:3F:08:A8:27:FA:58:CA:7F
Authority key identifier: F2:7A:6D:4D:32:83:28:31:72:5C:48:DB:51:8A:24:00:F1:A9:24:BD
Certificate issuer: /CN=f27a6d4d32832831725c48db518a2400f1a924bd
Certificate serial: 018F46EA3BD84749A5F37BA081C341FD61B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
Manifest number: 1068
Signing time: Sun 05 May 2024 04:01:46 +0000
Manifest this update: Sun 05 May 2024 04:01:46 +0000
Manifest next update: Mon 06 May 2024 04:01:46 +0000
Files and hashes: 1: 8nptTTKDKDFyXEjbUYokAPGpJL0.crl (hash: Qq/xg1IbynfhHOLk318P9nNvo3zw5oopO9iZhxD2dls=)
2: c-bZF1ThWs_rFQZwfHGkmK24CTk.roa (hash: Anv6k65DGZBD3WIQNn+U5/CG/c1q3YX1ng0YqQazXkU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 20:58:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:46:ea:3b:d8:47:49:a5:f3:7b:a0:81:c3:41:fd:61:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f27a6d4d32832831725c48db518a2400f1a924bd
Validity
Not Before: May 5 04:01:46 2024 GMT
Not After : May 6 04:01:46 2024 GMT
Subject: CN=4583d816f6fd8f1942f9970b3f08a827fa58ca7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a9:d4:dd:6d:3d:b8:95:e4:be:62:21:10:2e:
bf:d6:d2:6b:88:58:c2:6d:1c:b1:a2:ab:61:89:e8:
3e:9b:e7:59:ed:98:94:b0:83:ab:c9:bf:95:5c:09:
2c:79:c9:9a:36:c6:84:59:87:3b:c9:dc:78:ae:9f:
3d:f6:1c:e4:3f:00:99:18:5c:f4:01:1d:5f:af:8e:
57:b7:13:08:a0:cc:f5:17:10:4d:30:ba:b4:a3:ab:
f0:c9:9a:f5:2d:27:da:98:4a:c9:41:41:98:54:e9:
41:00:f9:b4:e6:3c:75:bb:57:b4:c6:22:a4:27:9c:
de:be:06:d1:51:7c:8e:1a:31:e8:4c:6c:51:f4:4c:
62:10:78:1a:3c:5e:34:85:b6:f7:2f:43:d7:d7:6b:
eb:a5:ea:a7:df:81:c8:88:96:db:29:5d:fc:0f:a6:
d2:c1:6a:d8:34:bc:3b:a8:0e:94:6f:51:72:db:2d:
85:fa:f7:56:fe:35:9a:33:34:04:0b:4d:2a:1f:8b:
29:66:59:e9:78:75:bb:f0:97:c7:01:06:1d:bc:35:
42:f3:7d:ff:6c:eb:d2:39:93:3e:88:c6:09:d4:24:
ac:fa:77:6e:f8:1f:f7:d1:3b:04:20:03:df:52:85:
2c:ba:57:b4:33:dc:fd:42:fb:b4:05:77:e5:b3:86:
29:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:83:D8:16:F6:FD:8F:19:42:F9:97:0B:3F:08:A8:27:FA:58:CA:7F
X509v3 Authority Key Identifier:
keyid:F2:7A:6D:4D:32:83:28:31:72:5C:48:DB:51:8A:24:00:F1:A9:24:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:95:62:d4:a1:86:d8:8b:87:7c:cc:fb:40:15:42:94:f5:f4:
14:6e:f8:52:69:e7:64:99:84:65:32:79:ff:11:d3:d2:60:14:
1e:d0:d5:3f:b2:ce:ff:74:04:c4:31:52:63:cd:70:4d:40:87:
49:f6:37:32:26:37:a9:2b:44:6d:09:02:63:94:d6:8f:5a:0a:
fa:d6:f0:8a:15:16:4f:1d:d8:8a:0f:be:0a:d2:a6:06:42:a6:
42:62:33:d3:bc:66:09:e9:c7:56:3a:81:43:19:61:a6:86:06:
e1:61:34:20:52:6c:bd:7d:0a:c6:9b:c4:f0:16:73:53:93:25:
c7:5d:46:0d:65:51:1d:fe:a1:4c:89:58:c6:31:14:9d:6c:10:
cc:8f:c5:c2:4d:cf:e7:20:f5:5b:fb:c0:10:74:47:25:97:2a:
3e:fa:e5:4e:81:96:ca:ad:5e:5c:c9:a7:e7:d7:5c:78:d6:7b:
06:c6:cb:4e:48:53:b8:33:93:53:5b:ea:37:24:e9:a5:77:08:
9c:f1:31:0e:d1:5b:e0:dd:8d:fe:c7:a2:0f:3e:c3:84:58:77:
74:5f:21:7d:06:16:a3:70:12:ca:23:9e:b5:af:72:ca:e8:cd:
29:98:0c:0b:f1:06:c4:4b:a6:b2:2b:3e:a8:10:0b:7d:a0:07:
ee:d2:d9:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 04:40:28 2024 by rpki-client on console-fra.rpki-client.org