Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.mft
File: _KmLHQ7MzE9v8afn24S0uy9VsI0.mft (raw, json)
Hash identifier: 72R8/nw1F+AUDfkRJOlyoHG16i9I5UDcCGiQHdjf9Hg=
Subject key identifier: 11:7F:8A:24:2D:6A:14:70:ED:A2:D3:90:72:86:C0:D1:84:4F:CF:23
Authority key identifier: FC:A9:8B:1D:0E:CC:CC:4F:6F:F1:A7:E7:DB:84:B4:BB:2F:55:B0:8D
Certificate issuer: /CN=fca98b1d0ecccc4f6ff1a7e7db84b4bb2f55b08d
Certificate serial: 018F86362BAF8742C24C07A74EF1A3E62404
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_KmLHQ7MzE9v8afn24S0uy9VsI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.mft
Manifest number: 113C
Signing time: Fri 17 May 2024 11:00:47 +0000
Manifest this update: Fri 17 May 2024 11:00:47 +0000
Manifest next update: Sat 18 May 2024 11:00:47 +0000
Files and hashes: 1: AaukAvTMr-fEtm3UPs_ob2rgQkY.roa (hash: QU5OeN2cRmSMs/IAni/TzIUSTmbbzt5UWLmPGmWKeo0=)
2: _KmLHQ7MzE9v8afn24S0uy9VsI0.crl (hash: 0VrpnVeNcUMtqgfm4k828TQI8BV93EReJoVZooFOYe0=)
3: ayi9NE0BDJVFeNnxu0P3XU3ANGI.roa (hash: B6BkZH831YZxkclfkR9Ask6ZlIZ1rkmIeblIOMH+NQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/_KmLHQ7MzE9v8afn24S0uy9VsI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 11:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:36:2b:af:87:42:c2:4c:07:a7:4e:f1:a3:e6:24:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fca98b1d0ecccc4f6ff1a7e7db84b4bb2f55b08d
Validity
Not Before: May 17 11:00:47 2024 GMT
Not After : May 18 11:00:47 2024 GMT
Subject: CN=117f8a242d6a1470eda2d3907286c0d1844fcf23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:e8:c9:bc:81:b3:89:58:6d:25:4d:68:5f:c8:
a7:71:ab:48:d0:07:fe:36:3f:23:fb:e0:61:42:a2:
d3:21:70:0f:09:42:b9:52:e6:9d:d2:63:7e:6c:04:
e4:c3:e2:8a:3d:2b:9f:34:1c:57:55:16:3e:a5:55:
59:c8:ba:2c:9d:97:c3:fb:92:15:ec:64:e2:1e:49:
6d:c4:f2:fb:03:e4:3e:1a:79:2c:17:68:84:ae:7d:
f2:46:81:4d:f0:f5:d6:58:00:ce:d4:99:91:0d:20:
93:6b:9e:7b:fd:d4:49:04:fd:cd:5d:34:77:cf:1a:
50:c2:84:25:11:96:ef:fa:7e:2e:92:d5:bb:b2:8a:
0e:83:d3:7f:09:5f:80:b8:e0:17:de:73:e0:ab:61:
3e:09:84:b8:76:82:ea:c5:4d:47:d5:d4:89:f5:f4:
92:6c:65:a0:9d:68:c5:71:66:37:af:b1:1b:e3:ce:
7a:81:57:99:76:bf:f0:a1:73:18:e2:91:3a:c5:ec:
7e:a3:7f:50:7d:34:9d:72:06:8b:39:45:70:ea:f3:
ae:64:94:e0:c2:1e:9d:7c:1c:79:4a:dc:78:f5:0c:
58:a3:2d:eb:d4:72:3e:b0:4b:fc:51:72:52:c0:1c:
e6:05:9b:86:27:bc:bd:37:ca:b1:54:7f:b6:97:c9:
a8:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:7F:8A:24:2D:6A:14:70:ED:A2:D3:90:72:86:C0:D1:84:4F:CF:23
X509v3 Authority Key Identifier:
keyid:FC:A9:8B:1D:0E:CC:CC:4F:6F:F1:A7:E7:DB:84:B4:BB:2F:55:B0:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_KmLHQ7MzE9v8afn24S0uy9VsI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:50:4f:2f:55:a1:50:50:65:e1:3e:d9:6b:34:7b:24:d7:5b:
b5:0d:4c:b4:e0:dc:c0:94:26:3d:82:d7:1c:20:49:2b:bf:78:
91:c1:9e:67:96:19:88:19:ff:e8:fb:9a:1d:9b:19:8e:05:1a:
04:c7:14:cb:f4:2d:b3:f2:f7:91:cc:e9:68:78:04:bc:36:f5:
f0:c3:4e:ea:01:d1:79:a2:7a:7a:dc:78:2b:40:6c:ad:73:2f:
9a:97:00:e5:2f:d8:a2:d7:d9:e7:5b:46:d5:ce:5e:22:ce:fc:
53:f5:61:c1:7e:ec:37:5d:37:26:57:ba:c9:c6:4f:d8:d0:15:
55:77:61:49:b7:39:a0:41:8e:49:67:80:df:70:00:04:8a:3a:
86:d4:1c:2d:d0:2d:a8:3f:f4:e9:ea:d4:5e:4f:d1:f4:d3:28:
57:79:ff:39:22:99:14:39:1f:02:31:a4:0d:57:ac:67:e6:9a:
04:4a:bb:08:ef:01:76:4a:dd:21:90:d0:70:51:82:d1:f6:35:
62:7c:a3:3f:98:a0:17:40:7a:77:26:06:f8:0f:fb:f9:97:80:
85:df:17:ba:17:ba:1d:93:3d:70:d2:7b:58:3d:61:d1:f2:78:
6f:16:92:c4:d3:5b:bb:3c:e2:26:7b:ad:0d:f5:88:d5:c0:71:
bc:01:43:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 19:11:51 2024 by rpki-client on console-fra.rpki-client.org