Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
File: DKtCI5upRIWzELVRXczH_u2SIFw.mft (raw, json)
Hash identifier: ERy3s50isv1v8FK50U2cYA7vvKQYUA2Kw6z3W20dMyk=
Subject key identifier: AA:20:B5:0F:45:3E:2F:3B:6D:14:D2:4B:9F:95:B2:49:FC:0D:D0:0B
Authority key identifier: 0C:AB:42:23:9B:A9:44:85:B3:10:B5:51:5D:CC:C7:FE:ED:92:20:5C
Certificate issuer: /CN=0cab42239ba94485b310b5515dccc7feed92205c
Certificate serial: 018F3BF9253394C663E66DC09E8EAE967B82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
Manifest number: 108F
Signing time: Fri 03 May 2024 01:02:14 +0000
Manifest this update: Fri 03 May 2024 01:02:14 +0000
Manifest next update: Sat 04 May 2024 01:02:14 +0000
Files and hashes: 1: 1-1b9z8DT3daR0eMRlTELlMk-Whk.roa (hash: jVKcJRYecAThFUH51GOiYId6xTZNwLswxWG7jKLOQ/c=)
2: DKtCI5upRIWzELVRXczH_u2SIFw.crl (hash: Ryru+5DS4wUPbT5W0wcQZ49c3ulCqaaIR1vO1Bo+cQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 01:02:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3b:f9:25:33:94:c6:63:e6:6d:c0:9e:8e:ae:96:7b:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cab42239ba94485b310b5515dccc7feed92205c
Validity
Not Before: May 3 01:02:14 2024 GMT
Not After : May 4 01:02:14 2024 GMT
Subject: CN=aa20b50f453e2f3b6d14d24b9f95b249fc0dd00b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:65:ce:c0:2a:6f:72:4c:f7:8b:6e:49:65:f2:
f6:65:5d:e0:be:8d:b0:09:ce:2a:80:55:3d:59:6d:
41:0a:c3:f2:f9:c3:bc:1e:4c:d7:e8:9a:88:1d:04:
6f:2b:89:fb:2f:9d:5e:1a:40:30:2c:13:18:90:a7:
90:4c:2c:dc:29:30:bd:65:5c:7f:94:9c:4c:a9:db:
89:10:ad:4c:56:bd:19:79:26:ca:99:f4:8c:19:76:
30:18:6a:4e:95:a7:54:8f:20:2a:63:24:94:15:6d:
e7:ed:d2:c8:12:19:04:34:3c:4a:b4:7a:e7:7e:cc:
5a:c2:13:30:fe:92:f7:da:f0:46:07:9c:b6:95:28:
45:9e:f9:32:f4:1d:64:59:38:a7:b6:72:0f:ec:63:
31:83:e9:31:2b:6e:4c:a6:56:84:4a:ba:4b:ac:f7:
d7:e5:ed:73:2a:bc:3a:79:2b:6d:3b:87:a1:a4:8c:
55:42:3c:96:b8:37:1d:28:d6:39:4d:b3:09:f9:09:
16:a0:dc:0c:20:04:22:9b:07:8b:79:b4:1b:7f:25:
b4:b2:e8:53:12:5d:dd:20:50:4f:56:4d:12:72:b4:
fe:75:58:95:c8:99:a1:08:07:1d:49:3c:e2:eb:42:
83:98:d9:5d:ff:8f:d9:0c:c1:e0:c7:4a:8c:f7:fa:
d8:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:20:B5:0F:45:3E:2F:3B:6D:14:D2:4B:9F:95:B2:49:FC:0D:D0:0B
X509v3 Authority Key Identifier:
keyid:0C:AB:42:23:9B:A9:44:85:B3:10:B5:51:5D:CC:C7:FE:ED:92:20:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:7f:ba:8f:e6:b7:49:58:c8:6a:9f:b3:ae:54:d9:61:aa:56:
ed:f5:fe:1b:25:5f:ed:66:7e:31:7b:8b:e2:8a:76:8e:e3:4a:
45:3e:0d:3a:c6:65:8f:d5:32:4f:6c:a6:85:fd:08:81:da:d8:
fc:91:db:1e:f1:49:b8:b3:37:44:de:a8:b3:0f:a6:63:fa:7c:
fb:b7:de:e1:0f:06:b0:cc:f7:e2:2e:c9:9c:e9:f5:b4:0b:58:
96:60:30:93:e7:79:7b:b6:e3:aa:50:22:15:b7:6f:af:bb:e3:
22:70:8a:d3:55:52:9e:25:a3:47:69:5d:cb:d0:a8:06:c5:ac:
0b:23:30:91:62:d7:d9:27:61:f2:5a:25:95:cd:4c:17:2f:9d:
21:12:08:93:e5:5f:4a:cc:b7:26:6f:86:53:f4:bc:ae:a4:bd:
26:de:98:91:b9:dd:43:35:42:91:3e:17:bc:33:4b:b3:ce:b3:
17:39:79:42:95:69:c1:0a:9f:3c:c7:ab:27:b3:35:0f:39:1f:
be:df:18:e5:93:05:69:26:61:12:29:c2:ad:5b:1c:43:dd:5c:
1c:13:95:f4:0b:1c:b3:8c:07:55:ac:12:5b:7e:f5:73:07:19:
8e:c4:e2:bb:80:41:1a:51:c1:63:d8:6b:a4:84:cd:3c:00:12:
8e:fe:73:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 10:36:05 2024 by rpki-client on console-fra.rpki-client.org