Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
File: y6AXGgLV5KdftAY1VFrgBkyMzK0.mft (raw, json)
Hash identifier: V4PltzSFprbhravoZVJhwsqoIPULEkhqSyKi47jJZF0=
Subject key identifier: 38:2F:FB:40:72:7C:E0:37:24:D3:CF:6E:57:24:23:71:16:3B:FB:C5
Authority key identifier: CB:A0:17:1A:02:D5:E4:A7:5F:B4:06:35:54:5A:E0:06:4C:8C:CC:AD
Certificate issuer: /CN=cba0171a02d5e4a75fb40635545ae0064c8cccad
Certificate serial: 018F8748459CAC196B75B4DD64C0BA49CB14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
Manifest number: 0E84
Signing time: Fri 17 May 2024 16:00:11 +0000
Manifest this update: Fri 17 May 2024 16:00:11 +0000
Manifest next update: Sat 18 May 2024 16:00:11 +0000
Files and hashes: 1: cLp5hwUc33CguDRyD4MCGPFVgeE.roa (hash: 0qIKJN4HadvzCJUdkqTDGN+x9C7SnyfWwPN9ybDldxI=)
2: y6AXGgLV5KdftAY1VFrgBkyMzK0.crl (hash: 6gMCLx2Qrd6Yr6uJmYlepQ0PM6QwSTUZSWX+QarebFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:48:45:9c:ac:19:6b:75:b4:dd:64:c0:ba:49:cb:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cba0171a02d5e4a75fb40635545ae0064c8cccad
Validity
Not Before: May 17 16:00:11 2024 GMT
Not After : May 18 16:00:11 2024 GMT
Subject: CN=382ffb40727ce03724d3cf6e57242371163bfbc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e6:eb:32:ec:1f:63:46:d8:73:04:4f:a7:82:
79:bd:29:97:63:61:1b:2f:2e:82:2b:f4:31:35:82:
6d:dd:50:70:fd:77:4e:66:2b:63:08:bf:fe:1c:9a:
6d:27:4c:fb:0d:c3:3d:fb:15:f8:d6:d6:73:6e:02:
c2:62:71:02:86:a6:05:f7:13:ef:20:6d:cc:96:7c:
1d:ee:ac:10:ae:8e:9f:86:ef:9c:d1:6e:3b:de:14:
2d:8b:10:d6:19:10:50:ec:ac:db:b6:15:7f:93:89:
96:09:7b:ac:f9:84:05:57:35:53:da:74:76:30:d4:
e1:bc:36:34:24:ce:5a:46:72:23:c1:c8:7e:20:23:
43:dc:d8:91:ad:6c:f4:58:72:9f:1f:0c:7b:ce:e0:
ba:bd:47:46:cd:63:f2:11:c5:cc:84:10:a8:d2:37:
55:a7:c1:d4:bb:51:b9:cd:ec:de:75:99:3a:b5:6a:
7e:82:73:24:8c:d6:de:36:e8:22:17:97:37:fe:59:
6a:ed:c0:a0:90:7b:b2:8d:bf:de:c4:cb:4c:5d:47:
54:eb:88:e5:3e:74:29:c6:74:69:0d:a5:9b:26:42:
b3:9a:23:68:43:9a:4c:7f:f6:16:f5:35:9f:fb:70:
b0:82:a4:bc:47:5b:4f:a1:3a:d0:06:bc:67:d8:ee:
9c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:2F:FB:40:72:7C:E0:37:24:D3:CF:6E:57:24:23:71:16:3B:FB:C5
X509v3 Authority Key Identifier:
keyid:CB:A0:17:1A:02:D5:E4:A7:5F:B4:06:35:54:5A:E0:06:4C:8C:CC:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:11:f3:4d:c5:3c:a2:de:38:7d:52:88:fb:8c:ab:88:f7:c5:
d6:70:95:a2:4e:80:f0:65:32:69:05:dc:2c:69:7a:84:48:bc:
f8:f7:bb:f7:07:6b:a7:71:f9:0c:17:4d:9b:1c:43:8e:4d:e9:
a6:a3:64:10:0a:97:f8:d6:8a:4f:91:fa:d6:67:12:02:d5:c3:
9b:85:20:e0:7e:f3:0a:f9:53:aa:cf:be:ec:60:ad:23:f6:2d:
7c:31:7f:b3:f2:14:cc:f1:b1:fb:6b:a2:08:7c:43:0a:ce:b6:
08:d6:e7:9b:98:b4:b5:6f:f5:a6:6e:ff:9a:77:a4:5c:18:73:
ac:48:66:8d:8a:69:33:6f:33:18:50:c3:43:70:0b:af:45:7b:
9b:ef:ea:fd:8a:48:27:1c:be:6a:97:f1:57:dd:a1:52:46:26:
e0:5b:ff:c0:a9:24:a8:fc:78:ec:da:80:7a:8d:a5:1b:35:b0:
c8:26:2c:a6:de:c2:a7:cb:89:cf:bd:55:19:3c:b0:2d:69:90:
fb:64:87:2a:e0:01:b6:e2:0d:17:5c:7e:19:c6:0b:7b:cf:90:
28:8a:36:05:0a:69:69:b9:27:95:35:3a:52:5d:0e:de:69:6f:
ab:6c:8f:05:5a:7f:85:64:eb:f2:d3:d0:7c:e7:d8:82:83:84:
1c:08:99:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 19:13:00 2024 by rpki-client on console-fra.rpki-client.org