Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.mft
File: itKTDR_h3UMEkf17gx3pxhaSreQ.mft (raw, json)
Hash identifier: dqRrW4n6HU7HWSEHhDsuH+c4PDIGUvQm0r6+ib0rW1I=
Subject key identifier: 07:E9:E8:C2:94:94:BD:50:BD:72:68:A2:6C:2D:92:78:30:FE:44:90
Authority key identifier: 8A:D2:93:0D:1F:E1:DD:43:04:91:FD:7B:83:1D:E9:C6:16:92:AD:E4
Certificate issuer: /CN=8ad2930d1fe1dd430491fd7b831de9c61692ade4
Certificate serial: 018F86DA5D61DB3BFE947CBFD566E75A86BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itKTDR_h3UMEkf17gx3pxhaSreQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.mft
Manifest number: 0EA3
Signing time: Fri 17 May 2024 14:00:08 +0000
Manifest this update: Fri 17 May 2024 14:00:08 +0000
Manifest next update: Sat 18 May 2024 14:00:08 +0000
Files and hashes: 1: itKTDR_h3UMEkf17gx3pxhaSreQ.crl (hash: kDEKm6qA3c5TTUQGBhyr6MBlVf8u2RVBdhsmx3RQ8UM=)
2: pS8ZO3CoTk9BBc8hu93he1xWE70.roa (hash: RaNXhnJXgtOAQIp5ptUPBAp6fv2h44JveH7XxhY58O0=)
3: rQP617Lv4mEM08Xd8IXTR2ZJ8LA.roa (hash: q30xiHUa2q7PpBSnFKKr7Gi2gyfBE/Jc+/T8HGGY8i0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/itKTDR_h3UMEkf17gx3pxhaSreQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 14:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:da:5d:61:db:3b:fe:94:7c:bf:d5:66:e7:5a:86:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ad2930d1fe1dd430491fd7b831de9c61692ade4
Validity
Not Before: May 17 14:00:08 2024 GMT
Not After : May 18 14:00:08 2024 GMT
Subject: CN=07e9e8c29494bd50bd7268a26c2d927830fe4490
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ce:88:0c:8a:45:28:80:e0:fb:d5:6b:e8:dc:
ba:d7:f5:94:3e:6a:ca:e8:e7:b3:c6:34:d1:f7:0a:
d0:a8:f3:84:53:56:da:1e:bb:9d:ef:21:6d:ab:fa:
ac:9a:02:84:c4:ee:a2:ad:71:ae:12:fc:7f:26:c7:
1e:58:f0:26:07:d3:87:90:7a:63:bf:bb:de:25:ba:
4b:b4:1c:1d:1f:af:6f:28:0e:5c:b0:2f:8e:a2:1d:
43:ea:4d:53:54:71:7a:55:80:2e:79:fd:51:bc:51:
09:58:9c:01:cb:04:33:e7:78:9e:6d:50:ad:fb:71:
38:81:14:e0:fa:b4:b3:fb:e1:8c:32:a6:08:48:bf:
f1:24:a8:43:9a:e5:30:59:50:78:ef:81:f1:8e:c9:
3f:64:bd:e8:ed:cd:d9:ef:32:ea:01:71:14:7e:78:
7e:b0:85:04:10:c5:1f:c3:11:6d:87:26:dd:bd:b8:
47:b0:97:ad:e4:a4:18:13:ff:36:71:19:2f:c8:58:
c2:23:97:ce:e5:be:70:1e:ec:a5:dc:4d:fa:44:9c:
7c:95:05:36:87:70:99:9e:f8:dd:29:9d:cc:09:e9:
88:4a:5f:d1:98:0c:4b:19:86:b0:02:8c:78:0d:b6:
85:04:fb:eb:b5:c7:9e:94:02:3c:9c:13:b3:67:2f:
61:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:E9:E8:C2:94:94:BD:50:BD:72:68:A2:6C:2D:92:78:30:FE:44:90
X509v3 Authority Key Identifier:
keyid:8A:D2:93:0D:1F:E1:DD:43:04:91:FD:7B:83:1D:E9:C6:16:92:AD:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itKTDR_h3UMEkf17gx3pxhaSreQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:e0:d0:13:69:86:53:97:00:a8:54:fa:c2:3e:a0:32:24:12:
2d:85:b7:d9:85:59:94:09:d2:5e:00:5c:82:19:51:47:a4:cc:
df:47:43:f3:5f:52:fa:c0:ef:36:35:3b:43:45:61:42:c2:3e:
d1:3d:b3:ac:b2:0e:b6:f8:c0:c1:9b:50:b8:bd:a0:fe:91:2c:
e6:04:3c:84:d0:71:25:cd:11:95:e5:25:fa:18:06:85:50:5f:
df:b3:47:dd:a3:fe:1d:b2:56:55:b4:ed:e7:6f:88:7d:f1:1b:
54:a9:8c:bd:2a:0f:52:27:f7:33:2f:2d:47:e4:84:92:ee:29:
c0:6b:a2:69:b4:5e:20:0e:fd:71:dd:76:da:58:30:8d:1d:a6:
74:e0:7e:b7:5e:34:01:d0:7c:d0:67:ae:5b:55:c6:d9:d8:70:
46:d6:73:13:e3:b2:1f:52:46:d4:b8:ab:59:cb:28:ce:f6:f1:
f3:46:ec:c0:c1:86:ce:6c:38:70:61:53:e3:97:a1:bf:79:28:
18:e1:92:66:1d:77:2c:d1:c3:6c:11:bf:f6:4c:d2:76:e0:b8:
4c:3c:08:1f:f3:61:f7:2a:f9:c5:b7:e0:69:9e:d4:1a:b9:0d:
4b:13:80:be:a3:e6:8e:a7:24:d8:1b:32:d0:45:23:bb:2b:12:
29:7e:55:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:49:10 2024 by rpki-client on console-ams.rpki-client.org