Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
File: vkjMNUiL2ebzErIPx2oQJy8M3to.mft (raw, json)
Hash identifier: JzyWHPC5FpVHgjv6ImyxHLJNHrq3GfRJM+1OjUmp/vU=
Subject key identifier: 1A:50:84:9B:97:18:36:7F:F6:63:6C:0A:88:C3:1F:36:DA:72:42:42
Authority key identifier: BE:48:CC:35:48:8B:D9:E6:F3:12:B2:0F:C7:6A:10:27:2F:0C:DE:DA
Certificate issuer: /CN=be48cc35488bd9e6f312b20fc76a10272f0cdeda
Certificate serial: 01906B2BB305A54BEDF8624BFBE939B7142A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
Manifest number: 11F0
Signing time: Sun 30 Jun 2024 22:02:24 +0000
Manifest this update: Sun 30 Jun 2024 22:02:24 +0000
Manifest next update: Mon 01 Jul 2024 22:02:24 +0000
Files and hashes: 1: FrwSaWAVQGgF2cou9DwWDBFMNyM.roa (hash: 1fmOZBTVdI2RSYx0Z2CgkOQnBwWnyyrX3TLeOMdec28=)
2: vkjMNUiL2ebzErIPx2oQJy8M3to.crl (hash: 4z6B6gQNwu+htZLjiNDvIX/lzxXInSepcJThhCIM+iY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jul 2024 22:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6b:2b:b3:05:a5:4b:ed:f8:62:4b:fb:e9:39:b7:14:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be48cc35488bd9e6f312b20fc76a10272f0cdeda
Validity
Not Before: Jun 30 22:02:24 2024 GMT
Not After : Jul 1 22:02:24 2024 GMT
Subject: CN=1a50849b9718367ff6636c0a88c31f36da724242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:46:f7:c1:c7:a9:02:c6:3f:eb:db:4a:ed:9e:
01:ea:ab:b4:78:2b:be:b0:74:5a:b3:1e:ad:4d:fe:
a1:04:55:db:90:ba:43:16:5a:01:7b:2f:58:f4:4c:
fa:50:93:cc:90:68:2a:6c:98:84:57:1f:e6:7a:af:
56:12:a2:5b:1a:0c:52:d7:45:04:3e:a4:9a:08:aa:
dc:a2:7d:5e:57:81:07:d2:67:38:48:4e:26:d8:82:
db:66:7c:72:c7:26:b2:0f:2c:28:c4:f2:0a:a1:a8:
16:6f:e3:e1:fc:1d:e3:57:76:95:4c:4f:4f:1f:0a:
7f:8a:d3:7d:ee:6a:19:c6:67:fd:70:c9:c4:ca:ed:
da:b1:ee:3f:9e:dd:18:b9:57:5b:01:2f:a9:27:43:
2d:19:c1:32:85:81:38:77:12:e1:6d:fd:00:9b:56:
b6:fc:76:ee:36:d7:1e:e0:44:31:36:fc:07:27:e8:
47:3c:52:57:18:81:6d:fb:0b:ec:66:f2:0d:79:c4:
2e:07:0e:ff:99:9c:49:be:81:a5:0a:ef:b3:5a:30:
65:8c:c3:75:2e:37:8e:c3:2b:ca:aa:2c:d3:69:8f:
10:82:1b:02:c7:dc:d8:c7:4a:6b:8f:72:ca:ce:e8:
1e:1a:ed:78:88:a5:67:33:64:69:9b:37:81:8a:a0:
d6:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:50:84:9B:97:18:36:7F:F6:63:6C:0A:88:C3:1F:36:DA:72:42:42
X509v3 Authority Key Identifier:
keyid:BE:48:CC:35:48:8B:D9:E6:F3:12:B2:0F:C7:6A:10:27:2F:0C:DE:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:c3:59:56:70:f4:45:7c:ce:48:31:67:90:00:11:62:fb:80:
33:9b:c2:4c:8b:03:28:b3:e3:e6:9f:36:67:a4:d5:87:ac:46:
0e:03:fb:39:00:73:84:b6:cd:67:5a:e7:90:a4:13:10:22:fb:
a5:e9:6d:af:ab:ad:b9:cd:05:1e:23:d2:9d:91:81:b0:d7:1e:
9e:38:dd:a2:33:db:c7:6b:95:31:fe:0c:b4:24:ea:ca:c1:f7:
b3:da:aa:b8:c0:a1:87:ef:41:10:47:fe:a8:ea:b6:3f:be:56:
9c:fd:8f:98:e0:d7:6f:a9:4d:35:7e:27:33:7e:d2:15:0a:68:
ed:25:56:bf:fd:16:19:13:3c:25:61:ca:81:53:2e:57:d6:58:
52:58:15:16:7b:65:bb:88:4e:e9:14:41:c5:64:2f:52:fc:98:
54:7f:3f:6c:99:ea:c8:47:c2:a0:f7:eb:f8:38:6e:25:be:35:
78:8c:65:38:9d:c5:e1:1e:a6:60:f2:45:2c:d6:49:0b:11:1d:
f3:41:31:c8:ef:86:f6:ea:4d:77:a3:40:75:d3:fb:04:44:c0:
59:0a:ee:bb:87:5f:8c:6d:76:75:90:92:0d:2f:ce:de:1c:77:
4a:e6:0e:91:c8:08:df:6c:c7:58:3d:90:75:af:8e:09:c4:4a:
af:71:35:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 01:21:14 2024 by rpki-client on console-ams.rpki-client.org