Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.mft
File: jghAgExmgMQfIehybzgLleaelEc.mft (raw, json)
Hash identifier: 3ndLaUPcR0sLSdU5/Rwm/ITvvO+vNKw21eUgu8yjG0A=
Subject key identifier: 50:7A:F5:D4:61:BF:21:85:38:83:ED:EE:CA:C5:79:3E:7F:FA:4D:B8
Authority key identifier: 8E:08:40:80:4C:66:80:C4:1F:21:E8:72:6F:38:0B:95:E6:9E:94:47
Certificate issuer: /CN=8e0840804c6680c41f21e8726f380b95e69e9447
Certificate serial: 018F87497DB6AF9F29F4FDD46BB549832E3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jghAgExmgMQfIehybzgLleaelEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.mft
Manifest number: 06C7
Signing time: Fri 17 May 2024 16:01:31 +0000
Manifest this update: Fri 17 May 2024 16:01:31 +0000
Manifest next update: Sat 18 May 2024 16:01:31 +0000
Files and hashes: 1: RT3J7RweelZjFAa5g3tboUv8NmA.roa (hash: EHj0eOx09It5sAkDFKhlL3UEmT/PziTQeXUOwFWCZM0=)
2: jghAgExmgMQfIehybzgLleaelEc.crl (hash: /87ZEYKMf7duRVnSdMAEcXd8n3CXfWR6zscrZSaj3iA=)
3: uXj2wCvJaQ-F8e38VF0a8MZUM-8.roa (hash: NbNdD+qLDELB7Ys2Bbjo3azUSiU91geIyr0sCg4lFuI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/jghAgExmgMQfIehybzgLleaelEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:7d:b6:af:9f:29:f4:fd:d4:6b:b5:49:83:2e:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e0840804c6680c41f21e8726f380b95e69e9447
Validity
Not Before: May 17 16:01:31 2024 GMT
Not After : May 18 16:01:31 2024 GMT
Subject: CN=507af5d461bf21853883edeecac5793e7ffa4db8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d8:45:63:96:c0:09:11:64:af:60:bf:5b:0d:
7a:6f:d7:de:86:97:e1:9e:74:09:38:9e:e2:ee:32:
47:c6:0c:50:07:21:b9:f5:b0:52:d6:83:f4:67:24:
12:7c:20:95:f0:ca:06:b4:57:d8:3b:0c:18:89:b4:
ce:85:3b:4b:11:c2:39:9e:cf:68:8c:f8:a8:d1:2d:
dc:6b:e4:c0:b6:31:5e:2e:86:e6:d7:e3:89:c8:66:
89:fe:7c:f2:65:9b:8f:ce:ff:ee:8b:ea:e4:88:bd:
99:48:f8:60:23:25:31:37:7e:a0:9e:b2:90:2e:bf:
4d:6d:b8:fa:db:8a:e7:8f:2a:2b:6b:a4:7b:0f:5f:
b0:3e:87:31:d1:85:d9:a6:b6:45:04:25:81:9f:de:
51:68:35:98:ff:33:c3:da:24:6b:5b:ce:0f:3b:84:
ff:34:ff:11:5d:0f:74:7e:46:ab:f5:db:e2:90:34:
a1:1b:7d:d2:a2:46:96:61:d0:7c:1e:85:9a:b5:bc:
3f:98:d0:8f:49:e5:8a:e5:4c:97:15:a4:c4:19:b2:
5b:9c:06:2b:d2:37:52:f3:be:b2:5f:36:e1:84:1b:
1b:97:58:c7:fa:ce:95:e5:22:10:10:44:a9:8a:c2:
b4:d4:c9:18:73:21:53:60:74:98:ab:ba:fb:36:76:
98:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:7A:F5:D4:61:BF:21:85:38:83:ED:EE:CA:C5:79:3E:7F:FA:4D:B8
X509v3 Authority Key Identifier:
keyid:8E:08:40:80:4C:66:80:C4:1F:21:E8:72:6F:38:0B:95:E6:9E:94:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jghAgExmgMQfIehybzgLleaelEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:01:0f:59:0b:f1:20:5d:55:ff:7b:7c:12:e1:95:24:97:05:
fc:1c:2f:71:09:40:a8:36:17:79:d4:9d:d8:5f:3c:c3:eb:67:
86:6e:3b:34:7d:2e:69:35:4d:dc:b4:30:e9:09:cb:be:00:d6:
ae:06:2d:72:1e:e9:4c:28:71:e1:86:bd:45:0f:c8:64:33:f3:
e3:31:40:af:d2:f7:23:24:2d:4f:41:a9:2a:fb:a3:d9:3e:86:
c2:1d:3d:2b:10:4f:19:98:73:23:8c:14:a1:a2:84:5f:6e:fe:
1e:12:59:a0:90:52:d5:d0:a4:a9:34:d2:ca:ca:cc:f6:55:f5:
68:85:90:a0:31:1f:10:86:e1:20:6d:f7:ea:3c:f2:a7:d7:c7:
02:50:85:6b:72:00:5e:fe:58:58:cf:c3:5f:c7:e7:b8:f1:ef:
1e:d1:19:81:57:a3:71:10:8d:4b:d3:49:4f:b0:12:b2:21:8d:
51:c0:92:e1:8f:56:10:3e:b9:64:fe:d2:88:26:d3:6e:9a:0d:
72:3f:94:d8:60:e9:31:0d:9d:47:0f:e8:20:ce:f4:1f:e9:a2:
37:f9:15:66:df:6b:67:09:53:0f:0f:8c:ff:ab:34:1e:55:bd:
4f:3d:35:ab:87:a6:ca:8b:f8:41:7a:c2:a8:10:f9:7e:c7:01:
66:7b:64:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 00:35:08 2024 by rpki-client on console-ams.rpki-client.org