Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft
File: 2671wyvqS1TRfiQbXMyvB7wKjuk.mft (raw, json)
Hash identifier: nU8uG8U4HGO3ghuPQ0gHWsakM6VpU9XWWIsVu68x0LQ=
Subject key identifier: A1:9C:9E:94:70:D3:0A:78:D8:9C:59:48:2B:1D:30:41:1D:C7:75:05
Authority key identifier: DB:AE:F5:C3:2B:EA:4B:54:D1:7E:24:1B:5C:CC:AF:07:BC:0A:8E:E9
Certificate issuer: /CN=dbaef5c32bea4b54d17e241b5cccaf07bc0a8ee9
Certificate serial: 018F20EF51297C284C466E822A4F10C83536
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2671wyvqS1TRfiQbXMyvB7wKjuk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft
Manifest number: 0ABC
Signing time: Sat 27 Apr 2024 19:01:45 +0000
Manifest this update: Sat 27 Apr 2024 19:01:45 +0000
Manifest next update: Sun 28 Apr 2024 19:01:45 +0000
Files and hashes: 1: 0tp1nP42grcTIJ9Q1AbVzA-sh5I.roa (hash: dfSMq4r11nG9rR2z/jAoqnl58X5Caxmbhas0j6Lzf78=)
2: 2671wyvqS1TRfiQbXMyvB7wKjuk.crl (hash: v68K51+sU8UIx/BW3NRJkZlrpVWIKLRPmFkGcXZcACI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2671wyvqS1TRfiQbXMyvB7wKjuk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Apr 2024 11:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:20:ef:51:29:7c:28:4c:46:6e:82:2a:4f:10:c8:35:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbaef5c32bea4b54d17e241b5cccaf07bc0a8ee9
Validity
Not Before: Apr 27 19:01:45 2024 GMT
Not After : Apr 28 19:01:45 2024 GMT
Subject: CN=a19c9e9470d30a78d89c59482b1d30411dc77505
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:f7:a3:b1:27:29:03:0c:78:d4:aa:95:73:41:
64:8e:dc:df:07:0c:66:a8:9f:8a:70:41:37:4d:6b:
6b:e9:fd:44:f9:9c:0c:af:4d:81:59:ab:40:59:5c:
95:6c:63:88:74:17:79:58:65:7c:71:9a:49:ed:b0:
c4:e2:d5:73:18:65:2c:dc:c6:5e:f3:01:2c:59:2b:
3a:45:77:f0:95:32:99:68:2e:e1:4a:d3:7b:56:81:
9c:43:98:50:ab:60:bb:6a:f6:86:6d:69:5b:d3:c0:
59:81:5d:27:8f:67:39:dd:6e:af:61:02:1e:36:b3:
16:07:3d:0f:90:49:34:82:39:78:5f:0d:bd:01:18:
24:fe:f4:e7:4f:2e:1b:2c:88:4e:7d:71:63:a7:2c:
55:b1:1e:db:2d:79:9d:8c:dc:3e:2e:b5:46:01:81:
ab:f8:0e:e5:68:81:53:39:a1:21:60:29:8f:b2:a8:
34:1a:55:36:d4:14:7b:65:80:38:a9:f8:ae:ad:07:
f8:f0:d1:47:ce:a3:1c:a2:4b:9b:7d:95:62:94:ae:
6d:98:69:e9:42:25:79:22:68:b3:2f:68:bc:3a:57:
68:27:3d:7f:e5:ad:0a:a6:8c:82:37:33:42:db:d0:
40:8a:36:a3:37:54:02:ff:da:9b:86:24:6f:62:fe:
24:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:9C:9E:94:70:D3:0A:78:D8:9C:59:48:2B:1D:30:41:1D:C7:75:05
X509v3 Authority Key Identifier:
keyid:DB:AE:F5:C3:2B:EA:4B:54:D1:7E:24:1B:5C:CC:AF:07:BC:0A:8E:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2671wyvqS1TRfiQbXMyvB7wKjuk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:1d:d0:6b:df:51:13:6d:be:c0:7f:7a:87:63:54:2b:55:a6:
be:5f:9b:e3:59:0b:12:2c:89:f5:da:29:c1:63:e8:e5:34:16:
a4:3b:25:53:1f:60:c1:ec:42:95:31:0b:b9:19:73:cf:8a:bf:
26:97:11:08:59:15:60:0c:56:89:fb:09:ed:fc:9d:a0:3a:bc:
6a:18:dc:dc:2a:60:2c:88:de:8a:d4:3b:79:0e:e0:84:d6:ba:
dc:35:38:59:fd:cf:cf:d8:6f:77:97:7b:75:98:38:ed:47:eb:
18:1d:e3:48:60:90:f0:1d:a5:65:59:d5:82:ce:02:87:1e:13:
38:1b:5c:9e:f0:4b:a2:d2:2a:88:10:c7:97:70:8e:1e:49:bb:
97:3c:81:66:05:ec:7b:0d:88:d8:2e:09:2b:36:6e:f1:8f:a5:
3e:ab:b7:33:85:1f:b8:1c:47:13:38:f6:36:4b:70:8f:cf:e3:
94:02:c0:67:84:ca:75:53:d5:52:09:11:41:03:32:25:ee:86:
36:e0:5a:06:30:3c:e9:b5:51:18:48:13:10:25:34:1d:4c:6a:
ed:ba:1f:ef:c4:5e:41:83:10:60:e5:7c:cc:ba:1a:ce:eb:0e:
87:40:e3:06:93:52:61:82:52:98:93:f2:40:b4:82:0e:a4:3f:
46:29:c9:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 20:39:29 2024 by rpki-client on console-ams.rpki-client.org