Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/2f3904-3898-42ed-8f40-97345ca17d7f/1/1x--OCD28Y6hszNtqfByuP0qDfI.mft
File: 1x--OCD28Y6hszNtqfByuP0qDfI.mft (raw, json)
Hash identifier: dYUhaS2Kz4fpx+RPsd//CznltGSO/J61mV8aH2zN3YQ=
Subject key identifier: 33:2A:2E:C6:8E:76:37:63:94:85:60:7A:0C:83:EB:45:98:03:7D:98
Authority key identifier: D7:1F:BE:38:20:F6:F1:8E:A1:B3:33:6D:A9:F0:72:B8:FD:2A:0D:F2
Certificate issuer: /CN=d71fbe3820f6f18ea1b3336da9f072b8fd2a0df2
Certificate serial: 018F3BFACCBFFF99B5C6A9E7BAC629AA0FFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1x--OCD28Y6hszNtqfByuP0qDfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/2f3904-3898-42ed-8f40-97345ca17d7f/1/1x--OCD28Y6hszNtqfByuP0qDfI.mft
Manifest number: 1028
Signing time: Fri 03 May 2024 01:04:03 +0000
Manifest this update: Fri 03 May 2024 01:04:03 +0000
Manifest next update: Sat 04 May 2024 01:04:03 +0000
Files and hashes: 1: 0Fg9Wi4EjDi5dnU-79lfwveq-M8.roa (hash: M5B0SkG9hWwwlfig08E3JzP7e25LB4D53pzU2Ly/ANE=)
2: 1x--OCD28Y6hszNtqfByuP0qDfI.crl (hash: gzPoeS3koZJu3ChgofVQK4hY11PxuPNV3Z9fyPS7HNI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/2f3904-3898-42ed-8f40-97345ca17d7f/1/1x--OCD28Y6hszNtqfByuP0qDfI.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/2f3904-3898-42ed-8f40-97345ca17d7f/1/1x--OCD28Y6hszNtqfByuP0qDfI.mft
rsync://rpki.ripe.net/repository/DEFAULT/1x--OCD28Y6hszNtqfByuP0qDfI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 00:09:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3b:fa:cc:bf:ff:99:b5:c6:a9:e7:ba:c6:29:aa:0f:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d71fbe3820f6f18ea1b3336da9f072b8fd2a0df2
Validity
Not Before: May 3 01:04:03 2024 GMT
Not After : May 4 01:04:03 2024 GMT
Subject: CN=332a2ec68e7637639485607a0c83eb4598037d98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:48:cb:cd:ae:8a:e2:87:b4:9c:27:fd:c9:e5:
51:c0:56:78:e9:8b:31:fa:66:3d:c0:5b:87:04:30:
c3:34:30:db:c7:63:ed:1e:8d:4d:2d:13:1a:73:ee:
63:54:53:b1:d7:5e:2f:d7:4b:1d:52:7e:18:bc:6c:
c4:68:c0:8d:80:38:e6:0d:76:2d:bb:2c:72:c7:74:
1a:cc:b8:4c:25:ae:32:a4:79:ba:08:a4:48:a6:41:
01:66:90:d0:e4:f8:6b:b2:1a:0e:8c:7e:82:2c:78:
94:82:9f:84:8b:4e:19:10:99:7c:97:c4:f9:58:a0:
54:89:80:51:23:ef:57:12:d5:1d:88:ab:08:55:39:
91:46:ef:56:8c:d9:d8:04:76:63:45:ef:4f:9c:dc:
f8:e1:1b:7a:42:c2:6b:58:f9:16:e2:9e:6f:49:74:
03:83:e9:1b:37:40:9b:e8:9a:f0:8e:dc:c9:a5:75:
d2:bc:75:87:c6:18:97:e2:30:5b:75:98:7b:dd:c6:
a2:87:8d:9d:26:ca:5c:ec:80:3c:3c:d6:f1:5d:02:
9f:e5:87:e9:b6:5c:4b:6c:4b:03:22:42:8d:f9:e8:
c0:de:aa:50:48:f0:9d:06:dc:77:4b:89:ec:20:bd:
0d:7d:47:1a:16:bd:24:49:52:b8:b7:6a:2d:40:7a:
ad:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:2A:2E:C6:8E:76:37:63:94:85:60:7A:0C:83:EB:45:98:03:7D:98
X509v3 Authority Key Identifier:
keyid:D7:1F:BE:38:20:F6:F1:8E:A1:B3:33:6D:A9:F0:72:B8:FD:2A:0D:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1x--OCD28Y6hszNtqfByuP0qDfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2f3904-3898-42ed-8f40-97345ca17d7f/1/1x--OCD28Y6hszNtqfByuP0qDfI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2f3904-3898-42ed-8f40-97345ca17d7f/1/1x--OCD28Y6hszNtqfByuP0qDfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:1b:69:ab:d2:d3:c3:7d:4a:bf:af:e1:60:17:2a:7d:87:90:
dd:2c:ce:64:29:61:c7:cc:1d:5e:95:29:74:44:f5:8c:d1:34:
dd:8e:c3:68:79:34:ec:42:e3:95:c5:28:05:17:1b:50:f8:b4:
a8:89:ef:97:5a:c2:26:dd:a6:91:a0:00:c3:95:f2:e2:92:cc:
0b:c6:2a:fb:d1:8f:65:5a:e4:c8:91:42:ac:da:27:b9:87:4d:
22:fc:d5:3f:ed:ea:5c:72:fd:a9:3b:89:92:5f:1b:48:06:6d:
df:4a:9b:80:18:29:8d:72:19:85:fb:b2:90:0b:2d:c0:9c:11:
e3:c8:b6:b8:88:0e:1b:f7:f7:93:01:26:17:80:d7:b2:d9:04:
b8:bc:69:1a:d3:b2:21:bb:01:1f:2e:a6:dd:41:88:8d:63:aa:
dc:39:f5:a0:e3:3a:ee:57:e6:bb:f9:a7:ea:6a:d4:04:53:9f:
6c:2f:09:d1:be:0e:80:7e:e3:ed:87:92:25:50:a2:b4:a3:b7:
40:7d:78:f6:02:c4:2f:4e:2c:b4:b7:9f:79:aa:d5:2b:9e:8b:
59:2e:9f:11:be:7c:e9:86:4b:47:a0:45:ea:48:11:59:bd:a6:
43:2b:69:85:f7:35:ff:b3:9e:71:6a:5c:3e:63:29:32:75:be:
87:db:ba:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 05:40:51 2024 by rpki-client on console-fra.rpki-client.org