Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
File: 1OKXHl2BaclArwINsCe-2tiZFZA.mft (raw, json)
Hash identifier: 3mNZMUoZ1F/bmF6IMqdC8AhdicJqUPB/IWTtfwFjXU8=
Subject key identifier: C5:DD:C6:0C:15:2F:71:7D:53:70:B0:4E:60:A7:B5:47:2E:66:14:CE
Authority key identifier: D4:E2:97:1E:5D:81:69:C9:40:AF:02:0D:B0:27:BE:DA:D8:99:15:90
Certificate issuer: /CN=d4e2971e5d8169c940af020db027bedad8991590
Certificate serial: 018F3C9D6156E777B4E3AD68669C9D937CA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
Manifest number: 1154
Signing time: Fri 03 May 2024 04:01:37 +0000
Manifest this update: Fri 03 May 2024 04:01:37 +0000
Manifest next update: Sat 04 May 2024 04:01:37 +0000
Files and hashes: 1: 1OKXHl2BaclArwINsCe-2tiZFZA.crl (hash: QHDY36oT5CaEgpypwPkyEEzh2Co4jUk892CAFOFxdM0=)
2: OI2sCM2uKXpWXhraVhV2LFH1s-Q.roa (hash: lg9Rfix5YMJ6nSk//IqHo5CCKs/rkHfW7hwO9r4c5xo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3c:9d:61:56:e7:77:b4:e3:ad:68:66:9c:9d:93:7c:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4e2971e5d8169c940af020db027bedad8991590
Validity
Not Before: May 3 04:01:37 2024 GMT
Not After : May 4 04:01:37 2024 GMT
Subject: CN=c5ddc60c152f717d5370b04e60a7b5472e6614ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:40:5d:c7:7b:ad:b2:27:eb:2e:67:06:a0:fb:
95:c4:12:21:71:01:30:d5:a4:ff:cc:e9:02:04:21:
5b:cf:f7:8a:d4:51:4a:06:f6:e1:03:1a:f4:34:24:
27:86:f0:a3:d9:9b:21:3c:66:3e:5a:a4:f7:40:31:
53:6c:7f:fe:1a:9c:b0:bd:75:85:94:8b:b4:70:22:
4e:6a:fd:f9:f2:c9:26:61:cf:72:2f:4d:07:0d:6f:
bc:5a:88:e4:b2:1e:cd:e5:e1:17:34:a1:db:4e:a0:
96:8e:b2:1a:8f:15:8d:9c:f0:51:ef:37:ba:83:49:
29:c8:bd:a8:d7:42:1f:a4:92:b3:c1:93:9b:93:3c:
2d:17:a1:6e:7e:b6:e7:82:2d:b3:ff:43:32:2d:db:
41:3b:ce:41:ae:2e:e3:18:b3:96:d7:6e:d9:85:b0:
ba:cd:bb:a9:d3:90:ec:99:5f:65:49:c6:93:c1:2a:
af:b7:12:91:3c:71:58:31:22:e4:0d:ee:06:1e:cc:
45:6b:23:8c:71:11:c0:3f:ab:ca:e2:37:c5:6b:09:
18:ec:1e:5e:0e:59:3f:84:d1:e0:0e:37:e2:30:ed:
3b:9f:0f:ef:90:88:00:16:3e:2b:b4:3d:cf:50:db:
01:06:c6:33:6c:ac:15:0c:6b:5e:a1:44:a4:29:9c:
cf:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:DD:C6:0C:15:2F:71:7D:53:70:B0:4E:60:A7:B5:47:2E:66:14:CE
X509v3 Authority Key Identifier:
keyid:D4:E2:97:1E:5D:81:69:C9:40:AF:02:0D:B0:27:BE:DA:D8:99:15:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:07:59:b2:77:89:6e:a8:0a:17:b2:aa:eb:e3:f9:80:f8:63:
90:3b:f8:f0:79:b9:72:d9:5f:9f:d2:d0:52:a7:e3:9c:07:80:
47:d9:5a:85:58:da:c3:75:64:8c:4c:79:71:29:1a:68:c7:19:
e8:4e:96:db:2b:25:92:21:f8:11:15:cd:9e:c2:98:cd:46:92:
fa:9d:aa:5c:a9:2f:8d:d0:fa:a3:ce:88:f0:d9:12:7a:58:4b:
88:c6:8d:1b:a6:18:08:a7:7a:72:a9:b6:17:88:2f:d9:ce:4c:
4b:bc:14:6c:92:51:09:31:a8:c4:f3:e4:1c:e2:99:d6:6d:54:
47:31:3a:8e:05:88:59:3f:68:6c:ea:b8:f1:33:9b:6b:e1:57:
08:e4:2b:19:96:41:de:55:9b:19:29:42:20:0e:28:56:20:c2:
bf:cf:66:72:2d:7c:f0:1c:c3:1d:fe:f9:77:f1:ff:b1:b9:4a:
d7:27:61:16:bc:b4:75:96:bd:b5:c8:cf:36:d2:50:87:80:c4:
90:4e:66:c8:83:eb:b5:d1:a7:48:26:f9:28:1b:20:51:b8:8a:
10:76:79:29:9d:08:81:62:02:56:27:f8:2d:60:84:95:b5:ca:
87:72:f2:e3:e0:89:66:08:ce:bb:e5:89:17:1e:07:98:93:01:
4c:01:52:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:12:19 2024 by rpki-client on console-ams.rpki-client.org