Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft
File: p7He9pWIXq3lzMi0vioCuxYHnpw.mft (raw, json)
Hash identifier: dGSeakQFAB+7K3wrsR2K6X/Ih6ZoeZuaaaaS5RebO3E=
Subject key identifier: F6:08:1C:EA:52:E9:72:60:79:57:2B:36:9A:0F:11:0B:17:5D:96:2C
Authority key identifier: A7:B1:DE:F6:95:88:5E:AD:E5:CC:C8:B4:BE:2A:02:BB:16:07:9E:9C
Certificate issuer: /CN=a7b1def695885eade5ccc8b4be2a02bb16079e9c
Certificate serial: 01905F95FD678ED2AC72EBC45DBD85D41C36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p7He9pWIXq3lzMi0vioCuxYHnpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft
Manifest number: 0438
Signing time: Fri 28 Jun 2024 16:03:03 +0000
Manifest this update: Fri 28 Jun 2024 16:03:03 +0000
Manifest next update: Sat 29 Jun 2024 16:03:03 +0000
Files and hashes: 1: RsDcTv8tewplYsilAaaC72xY1x8.roa (hash: YHGuKugFM35xFotbNXHAX8TPWK0WDCO8yoixkVfXYE8=)
2: p7He9pWIXq3lzMi0vioCuxYHnpw.crl (hash: Fu9Lq6uIxC/NgaYf5/yEg0ql2ap+b4xlpEjnPkGKL58=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft
rsync://rpki.ripe.net/repository/DEFAULT/p7He9pWIXq3lzMi0vioCuxYHnpw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 29 Jun 2024 16:03:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:5f:95:fd:67:8e:d2:ac:72:eb:c4:5d:bd:85:d4:1c:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7b1def695885eade5ccc8b4be2a02bb16079e9c
Validity
Not Before: Jun 28 16:03:03 2024 GMT
Not After : Jun 29 16:03:03 2024 GMT
Subject: CN=f6081cea52e9726079572b369a0f110b175d962c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0d:f2:c1:09:a3:42:54:46:21:98:fb:cb:74:
c5:9c:3a:3b:7d:d5:26:8a:5c:eb:19:c8:a1:dc:31:
49:03:3f:be:f9:0e:67:a4:2d:ee:db:c3:32:93:0c:
19:ac:38:b5:70:d4:52:ad:e0:34:6c:58:9d:e7:7f:
54:a3:a9:e6:4b:c1:92:72:a2:fb:67:dd:07:6e:d4:
60:4a:47:f6:7a:17:51:aa:7c:1e:89:90:7e:86:16:
c3:13:4e:de:ff:be:02:3b:f7:8d:35:85:77:7d:2f:
e6:08:c0:94:64:ab:10:9d:8d:9b:4d:9e:c1:0f:10:
99:cf:b0:7e:10:b8:0d:a4:f3:cb:25:1f:3b:44:eb:
e4:23:de:3f:cc:cf:a1:71:36:d2:11:47:ae:9b:d4:
9d:2c:2f:b0:93:35:72:63:a2:0c:fe:c3:58:11:f2:
d9:81:26:80:bd:5a:3e:12:77:b6:ce:95:46:36:0c:
d9:6e:ea:0e:8f:b6:c8:20:8a:04:0e:93:38:ae:c4:
60:62:ac:e4:0d:55:c9:a3:48:eb:ae:19:df:e3:23:
75:30:d6:9b:2f:86:54:9d:96:1e:a0:2c:fc:aa:5a:
e9:cb:13:2e:8d:84:87:73:ae:25:a9:e4:a7:3d:35:
d8:3d:43:ce:f4:e2:58:a8:f5:22:87:66:d1:00:8d:
64:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:08:1C:EA:52:E9:72:60:79:57:2B:36:9A:0F:11:0B:17:5D:96:2C
X509v3 Authority Key Identifier:
keyid:A7:B1:DE:F6:95:88:5E:AD:E5:CC:C8:B4:BE:2A:02:BB:16:07:9E:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p7He9pWIXq3lzMi0vioCuxYHnpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:26:77:92:d7:17:2e:ea:08:45:f5:56:b0:f9:fa:d9:4c:d7:
0a:3f:95:f8:d8:1b:f7:11:5a:e6:f1:99:42:03:10:73:75:c3:
ab:38:b1:6a:06:3a:68:c6:52:64:42:90:a9:ae:cc:14:aa:6e:
37:70:7f:db:d0:5f:62:39:9b:2b:ab:e5:2a:a6:3a:61:97:8a:
e5:40:62:7c:8b:38:c1:a0:8e:eb:c1:c2:fa:3d:07:07:3d:01:
d1:43:9d:15:ad:57:b4:d7:28:50:c5:c8:05:85:76:7d:5c:1a:
0f:8d:6d:21:c5:32:43:d8:2f:5a:38:54:32:75:9e:37:b5:ea:
8e:fd:41:45:05:59:29:77:9c:74:f3:3b:8d:de:4a:9c:13:4e:
23:31:b2:55:fb:13:a7:7d:e0:dc:10:7b:a8:1e:dc:f6:06:0e:
c9:45:89:07:ed:2e:af:70:dc:f7:e3:a3:3f:08:21:71:ce:d9:
8f:65:be:1f:92:8f:15:de:cd:b1:75:ba:09:b6:03:a2:9e:62:
cf:82:59:a3:1d:18:e2:fc:fc:7c:90:04:fb:ca:72:e1:27:ff:
0e:ce:3f:69:ce:f8:1f:9c:da:9b:65:60:19:6b:e6:e8:58:1b:
a0:66:2d:f1:7d:20:53:e9:16:f2:b8:80:8d:90:70:96:e2:96:
46:44:db:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 28 22:33:37 2024 by rpki-client on console-ams.rpki-client.org