Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/715b05-39d8-4261-9bbb-c4856d48846b/1/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.mft
File: Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.mft (raw, json)
Hash identifier: 9lPkyZuXmwb1eAL4oc7Rd0J2UkKeyzoeB2iyu6TvCMw=
Subject key identifier: E2:8C:01:36:54:BB:DD:F3:4B:45:1B:47:47:04:05:46:E4:10:89:00
Authority key identifier: 02:2D:58:0F:4A:06:93:58:F8:FA:57:EF:06:5E:18:F5:FE:93:69:80
Certificate issuer: /CN=022d580f4a069358f8fa57ef065e18f5fe936980
Certificate serial: 018F42D656D1740920A0190D025DB5EA219E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/715b05-39d8-4261-9bbb-c4856d48846b/1/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.mft
Manifest number: 057D
Signing time: Sat 04 May 2024 09:01:34 +0000
Manifest this update: Sat 04 May 2024 09:01:34 +0000
Manifest next update: Sun 05 May 2024 09:01:34 +0000
Files and hashes: 1: Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.crl (hash: cQYSl/TVGNHDmQHCsehGXFu4BhpgZtfUpR7fMq4/0aQ=)
2: KlXy5jI-psGBZ-BWdw--opxhKjI.roa (hash: sVYancsPgklA71dMUjkyNB6m/y5SBPXZajVM+eRKKLY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/715b05-39d8-4261-9bbb-c4856d48846b/1/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/715b05-39d8-4261-9bbb-c4856d48846b/1/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 09:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:42:d6:56:d1:74:09:20:a0:19:0d:02:5d:b5:ea:21:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=022d580f4a069358f8fa57ef065e18f5fe936980
Validity
Not Before: May 4 09:01:34 2024 GMT
Not After : May 5 09:01:34 2024 GMT
Subject: CN=e28c013654bbddf34b451b4747040546e4108900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:35:a6:f3:11:c7:39:c7:65:35:26:2b:5c:09:
1b:5b:a2:76:16:a3:7c:b6:8c:2f:ba:f3:e4:50:93:
fd:5c:ff:b6:44:ca:05:f0:88:bb:36:44:42:0e:db:
e5:d0:fc:f6:58:60:fc:1c:cd:4f:2a:03:09:b2:b5:
5e:26:b9:cf:73:22:dc:f2:40:2c:7c:f1:c6:0e:d2:
01:24:fd:f4:7f:26:54:43:5d:69:22:a2:fb:49:cf:
61:04:94:a2:65:50:eb:39:50:26:7c:81:0d:41:7e:
b9:60:b3:f0:35:8a:09:60:47:a7:b5:e9:ea:5d:c1:
59:9c:da:59:17:c7:bd:d9:ae:2e:27:0d:0f:01:9e:
55:f4:cb:43:ec:ff:2b:ee:b5:84:a5:c0:64:17:a0:
cf:a0:54:c3:9d:23:fa:a5:b6:31:e7:97:10:53:69:
85:ea:00:78:e7:f4:e0:4d:70:a1:47:e7:d2:a6:99:
87:d2:95:a8:ca:5b:21:4f:67:2c:54:d6:c6:4c:aa:
b0:cb:48:e5:ad:25:dc:e7:c9:79:a8:1b:37:77:f7:
8f:09:15:27:5c:e1:92:df:40:7a:18:bd:5e:e1:d6:
83:83:9f:e0:bc:7f:e4:cc:da:21:f0:a1:2b:dc:b7:
08:10:17:3c:3d:3d:47:38:ce:16:fe:3c:bd:16:65:
db:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:8C:01:36:54:BB:DD:F3:4B:45:1B:47:47:04:05:46:E4:10:89:00
X509v3 Authority Key Identifier:
keyid:02:2D:58:0F:4A:06:93:58:F8:FA:57:EF:06:5E:18:F5:FE:93:69:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/715b05-39d8-4261-9bbb-c4856d48846b/1/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/715b05-39d8-4261-9bbb-c4856d48846b/1/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:b9:af:a3:b6:e5:c8:a9:5d:2c:36:e5:d8:95:cd:7b:6e:6c:
75:b7:59:8c:7a:6f:25:91:70:55:c6:65:ca:b5:9a:dc:f2:6e:
1b:f4:b3:7c:1b:f3:ae:df:50:cb:05:96:06:6d:7f:6c:f6:fe:
fb:c8:77:69:34:d7:24:70:9a:8c:ad:e4:68:08:14:3d:ac:3f:
46:e2:bb:eb:d2:a3:23:5a:e8:e6:a9:62:81:ad:41:c8:86:9c:
bc:d7:26:20:2b:21:f0:bf:78:fc:d3:da:9f:cd:63:2e:a4:9f:
a5:f6:a9:53:e5:99:40:ed:5c:b5:4c:b2:d9:6f:34:a7:7c:ec:
ec:67:8f:27:8c:d3:8a:36:4d:9b:ce:a4:b9:eb:11:73:af:79:
48:27:51:fc:c8:5c:93:93:f5:41:92:f1:04:83:77:21:13:8f:
76:b7:4f:58:7a:c9:cb:2f:c7:41:c9:c9:9b:23:c4:10:f3:40:
67:ff:cb:62:5b:ac:ea:09:34:eb:61:2d:f0:5a:b2:90:e7:eb:
91:cd:38:c2:89:f6:38:32:f9:f8:5b:e1:22:54:64:a0:29:fc:
55:a9:c1:8e:61:13:2b:d7:aa:d8:85:a0:a2:a7:53:f7:d6:3a:
e2:6d:82:2c:3f:30:b5:1d:1a:82:9c:ae:7b:f0:96:2c:8a:d3:
14:0b:cc:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 19:23:41 2024 by rpki-client on console-fra.rpki-client.org