Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
File: D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft (raw, json)
Hash identifier: YpnlV6iTZQUvkQTc03wF5O1iKp7o0TM14DkJVlhh/vE=
Subject key identifier: ED:37:56:BC:83:6D:91:EC:4E:29:4D:A3:89:E0:1E:14:08:8F:D6:A4
Authority key identifier: 0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5
Certificate issuer: /CN=0f65bd21c683207da0c39fb3798535af49e0bff5
Certificate serial: 018F4D5A0AA69A3AB395CF9B2FE65F6F48ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
Manifest number: 0F37
Signing time: Mon 06 May 2024 10:01:37 +0000
Manifest this update: Mon 06 May 2024 10:01:37 +0000
Manifest next update: Tue 07 May 2024 10:01:37 +0000
Files and hashes: 1: ChFzTQyDe2rUWR_lesDMTvBCVo8.roa (hash: /iLoKMTx/x26nDfvAxNEhaHYzWIGiByKXdPIpUTwebg=)
2: D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl (hash: WefqdhesRYh2Ckls97X0/rK1gn1tVGLXZwD4z6fhjW8=)
3: l9d0U-tpIe0mGZQbfqNZ-M4aoVs.roa (hash: 2eUTk6VBBs9hR1T7rEa3G3hXQ1mh4+U5kzPyLu9h5yI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 10:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4d:5a:0a:a6:9a:3a:b3:95:cf:9b:2f:e6:5f:6f:48:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f65bd21c683207da0c39fb3798535af49e0bff5
Validity
Not Before: May 6 10:01:37 2024 GMT
Not After : May 7 10:01:37 2024 GMT
Subject: CN=ed3756bc836d91ec4e294da389e01e14088fd6a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:57:7d:06:60:f4:66:be:46:02:6a:7a:8b:aa:
7c:60:77:d3:a3:2e:21:12:56:7a:5c:32:fa:b8:37:
17:23:5c:92:01:71:da:b6:51:3d:84:f2:99:f2:37:
45:c7:38:65:9d:6f:cf:e0:b4:f9:38:d4:54:5a:5b:
54:06:c1:03:91:26:67:45:7b:39:2c:2d:93:8c:9a:
4c:7f:bd:d8:c8:15:1c:3a:cb:f2:ec:35:1c:f7:c8:
fb:20:89:fe:72:e5:87:04:10:6d:0d:ad:f7:38:03:
a0:20:8f:31:a9:79:fb:31:f9:a0:99:4a:14:56:c9:
72:c4:86:75:83:1c:74:5a:e3:cd:51:61:ea:d4:a9:
0e:8f:89:7b:96:a3:6d:c1:d5:a8:fc:00:51:de:33:
c0:d7:c0:30:64:89:75:20:b6:37:84:73:07:24:0b:
ce:87:d1:95:d6:6a:21:aa:d8:4b:19:3e:18:14:52:
47:dc:35:73:20:64:9c:08:cc:ae:fc:78:6a:61:89:
d7:a5:76:b8:c7:d4:45:16:d1:50:8e:3b:d5:ed:22:
13:c5:7a:55:bd:31:50:e9:68:3c:6d:0c:14:eb:74:
61:18:2b:23:30:cf:54:58:eb:9b:c9:ef:87:f5:15:
f7:19:55:65:5e:83:f1:50:42:b8:bc:de:e3:ff:c7:
71:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:37:56:BC:83:6D:91:EC:4E:29:4D:A3:89:E0:1E:14:08:8F:D6:A4
X509v3 Authority Key Identifier:
keyid:0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:09:e6:c1:45:24:bc:f3:75:19:d6:f3:9d:cb:a1:8b:f9:b3:
31:5a:3b:c0:03:26:63:01:60:b6:3e:13:dd:71:a9:60:2d:49:
16:ba:a4:b0:30:72:8b:49:28:ff:a9:8c:92:93:7e:98:f3:96:
58:4f:00:c1:63:2a:38:d9:cb:d6:89:9e:dc:63:8c:3d:6b:3b:
a5:ac:88:7a:3a:f3:11:a6:82:87:61:04:a5:6d:26:97:f4:8e:
bc:fd:b9:52:0a:ed:bb:f5:a1:21:f3:63:fb:cb:c9:98:7e:6e:
2d:24:74:60:72:d2:c9:d1:93:1e:e3:1c:16:04:fe:21:29:57:
39:75:d6:de:45:b4:93:dd:b8:76:8f:b8:64:6c:83:6d:0b:89:
35:39:b1:72:06:f4:32:79:38:80:76:56:ea:bb:19:96:62:2a:
b3:f8:72:7c:77:94:69:0b:33:02:b8:24:1e:27:16:5b:26:31:
12:65:b4:5c:37:e8:83:a1:2b:12:af:47:1d:66:95:3b:7e:ab:
03:16:13:66:95:e0:e5:76:b3:02:0f:34:96:22:f3:78:62:cb:
aa:ed:44:6f:f6:04:3a:ab:a8:de:ec:0a:4e:6b:dd:74:2d:d8:
cd:9f:c5:50:09:b5:d4:f2:54:7f:b1:df:5f:da:14:bd:40:c4:
cb:f7:11:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 13:24:11 2024 by rpki-client on console-fra.rpki-client.org