Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.mft
File: ihZhi3H_yA4cP0HtDfyJq16WP9I.mft (raw, json)
Hash identifier: cBC2M1J1VL//ktHADccmLJMoDBiwNp8SzJoJZv0Nomw=
Subject key identifier: 62:9B:AA:54:6A:40:96:38:10:62:D5:49:CC:23:50:01:16:4D:8F:E7
Authority key identifier: 8A:16:61:8B:71:FF:C8:0E:1C:3F:41:ED:0D:FC:89:AB:5E:96:3F:D2
Certificate issuer: /CN=8a16618b71ffc80e1c3f41ed0dfc89ab5e963fd2
Certificate serial: 018F885B4BC8A197A8B0F0627E67360D6238
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ihZhi3H_yA4cP0HtDfyJq16WP9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.mft
Manifest number: 117D
Signing time: Fri 17 May 2024 21:00:35 +0000
Manifest this update: Fri 17 May 2024 21:00:35 +0000
Manifest next update: Sat 18 May 2024 21:00:35 +0000
Files and hashes: 1: HfKnCeLI0VAtCDxqG2gVHB92Dg8.roa (hash: EwzHdPUcFcsWXEwoIMqBtYJAGh4q85SVK3E5WVlQedI=)
2: OqjLVlG4E7NMKG74I1gCkWt-UkQ.roa (hash: FR55Ny4oY0l6ztLl2wiEBQG+EAs+VP73IA9XL/1sVgU=)
3: ihZhi3H_yA4cP0HtDfyJq16WP9I.crl (hash: tVzA+dTevLfVn+rt4bNxDJE6ix6PUm15FwV1dqPyv0Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.mft
rsync://rpki.ripe.net/repository/DEFAULT/ihZhi3H_yA4cP0HtDfyJq16WP9I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:5b:4b:c8:a1:97:a8:b0:f0:62:7e:67:36:0d:62:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a16618b71ffc80e1c3f41ed0dfc89ab5e963fd2
Validity
Not Before: May 17 21:00:35 2024 GMT
Not After : May 18 21:00:35 2024 GMT
Subject: CN=629baa546a4096381062d549cc235001164d8fe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:c8:62:65:7b:ef:88:42:69:3a:06:64:b8:39:
f6:22:b6:e9:0f:0f:6a:1a:bf:f7:3c:0a:6f:24:e3:
de:fb:e4:2e:ac:6e:47:53:96:40:ea:f6:77:0d:2e:
56:f3:a1:5a:a3:01:fd:20:1d:56:6a:af:f9:b1:6e:
8a:b8:e2:d7:f8:cf:80:93:a8:81:0b:0c:eb:ba:93:
35:46:f5:75:8d:f4:2f:87:90:10:99:74:e2:21:73:
7a:32:d5:82:32:34:d8:db:e8:66:bd:fb:6b:b2:f0:
5d:7c:54:00:0f:07:0f:a7:ff:8b:34:72:d8:ad:5e:
3a:66:e4:72:3b:1b:a2:56:a0:41:86:14:58:52:43:
f1:44:28:b2:4a:cd:bf:10:2a:b3:82:c7:2f:67:7f:
6f:fb:66:6a:1b:24:4a:7a:95:c4:bf:c8:da:37:37:
42:da:0f:96:64:71:ec:fc:a6:0c:39:b2:4a:11:e1:
f7:5d:0b:c0:fe:d2:e4:53:d0:c1:84:23:76:4e:7c:
a3:88:6b:59:88:fc:cb:5a:2c:91:ce:c7:f5:25:a0:
cf:36:66:7f:7a:e7:d1:89:1b:08:78:dd:69:fc:4f:
78:29:05:50:01:a8:36:ae:96:f5:86:0c:cd:54:a2:
5c:1d:e7:b0:c1:85:4d:fe:e6:80:05:b1:89:0d:34:
f8:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:9B:AA:54:6A:40:96:38:10:62:D5:49:CC:23:50:01:16:4D:8F:E7
X509v3 Authority Key Identifier:
keyid:8A:16:61:8B:71:FF:C8:0E:1C:3F:41:ED:0D:FC:89:AB:5E:96:3F:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihZhi3H_yA4cP0HtDfyJq16WP9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:20:fb:11:5f:53:d7:be:14:8d:cb:b3:21:82:56:ec:7f:87:
43:5e:83:b6:cc:6a:ad:63:cc:b0:d4:fd:a8:78:2a:a5:bc:d5:
58:48:ef:50:42:a8:08:e9:d6:29:a7:df:19:86:99:bd:56:61:
f0:ce:9b:ef:e8:8e:44:18:8d:6b:04:1b:af:db:6d:54:e6:e5:
70:3f:59:90:37:45:c7:50:8b:5e:f9:36:1c:ec:f6:d9:4e:42:
88:fe:64:6d:de:51:86:61:35:4c:00:48:91:a7:db:f3:e9:4f:
01:0d:4c:f6:8a:53:75:70:cf:1f:11:b6:81:93:ed:f1:8b:22:
44:51:c9:75:2f:77:10:50:e5:c8:1b:b0:e4:42:9f:1a:0a:ab:
ce:e3:cb:ef:de:62:02:97:9d:7f:91:75:37:00:f1:b6:4d:5a:
92:68:6b:6b:c9:f0:cf:89:4a:00:92:83:cc:cc:94:28:f9:f2:
62:a1:bb:47:ec:8b:d4:32:b9:78:ce:c8:ff:df:e1:3d:32:7d:
70:a7:c7:7c:8e:67:e7:dd:67:fe:04:63:ab:70:fa:ca:64:0e:
d3:08:62:6d:89:17:fa:6a:28:be:7e:6f:69:af:45:d5:6b:6d:
7e:97:6d:0a:d6:2f:53:b9:58:07:f9:27:0d:d6:55:ed:07:b9:
f9:63:ab:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 02:44:26 2024 by rpki-client on console-fra.rpki-client.org