Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: O9byBEuFg7/SgYMqqUt07W92omKULh4Nro+6XUt++DA=
Subject key identifier: 22:35:DA:43:D9:9A:D7:B5:BA:15:5B:16:1F:21:AA:8A:13:94:14:D8
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 018FA32DEC2CF9049013A9DA0E5AD578D8F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0580
Signing time: Thu 23 May 2024 02:00:46 +0000
Manifest this update: Thu 23 May 2024 02:00:46 +0000
Manifest next update: Fri 24 May 2024 02:00:46 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: 53jZVqgoTG0LXcO9DcIAj0nA1PLZTZnS5tn4b0wMFZw=)
2: XHTIV5GFr2GwbJP-Mv_nJHnOEsQ.roa (hash: caXXXOz/PWqCRjDafgEWObIs+edXTsj287rNJ0g9tK8=)
3: o56-xbCEnLsH6EdcMKB8jX6PHGk.roa (hash: aGvZQcL6KBWzikqZTJd1lTqnDEJbaFhlB4ZOi0CoBss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 May 2024 22:35:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a3:2d:ec:2c:f9:04:90:13:a9:da:0e:5a:d5:78:d8:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: May 23 02:00:46 2024 GMT
Not After : May 24 02:00:46 2024 GMT
Subject: CN=2235da43d99ad7b5ba155b161f21aa8a139414d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:8d:7a:99:04:79:f1:65:bc:8f:30:32:1d:6f:
ea:3a:ad:39:99:e8:8e:0b:96:9a:85:0d:55:3d:a9:
ea:d0:ed:d0:b6:9f:be:cb:52:bb:94:f6:a4:d2:26:
ce:0e:ab:d9:35:39:80:7b:01:e6:57:3d:9a:dd:7e:
b2:0f:a6:d8:4a:ca:fa:97:d0:97:d9:3c:a7:ee:f9:
e3:48:e2:ef:94:bb:10:94:8a:a8:74:b7:27:27:98:
05:70:29:0e:4f:e7:3e:2e:34:73:08:a9:71:96:21:
37:b3:3b:88:c7:11:71:8d:60:fa:82:0c:52:af:f8:
52:cc:16:a6:7c:ec:64:46:07:03:9e:4d:f1:58:c3:
22:37:bf:4a:28:64:f5:bb:a5:e7:67:ba:4b:5e:b8:
81:d3:71:09:8d:1e:eb:d1:56:96:12:05:8f:79:c3:
8d:00:c7:37:7e:a7:55:5b:f3:3f:e7:23:22:bd:66:
6d:f7:fb:c7:f6:91:50:67:0c:14:7d:12:23:cd:71:
88:ca:5b:b4:78:d9:05:13:f4:a9:5c:45:8a:a0:11:
7c:a5:10:e4:42:a0:17:5e:e4:7f:b2:56:b7:11:bc:
46:d5:60:83:b6:b5:5a:aa:44:99:c5:96:87:da:7e:
5e:e3:15:69:e1:0d:ec:4d:25:b7:26:77:5d:56:24:
14:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:35:DA:43:D9:9A:D7:B5:BA:15:5B:16:1F:21:AA:8A:13:94:14:D8
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:43:5d:dc:24:8f:bb:ed:83:c2:03:93:ce:72:71:86:b2:0d:
af:95:6c:8c:fd:80:b7:5a:be:72:40:c4:43:d8:4a:44:0a:b9:
98:55:25:ee:b5:74:bb:50:d9:20:dc:2e:c3:47:00:c1:d6:95:
c4:72:3e:52:23:71:f9:1b:ed:7a:87:54:b2:b7:b2:f4:f4:59:
9d:4b:66:50:c1:15:5c:34:00:3e:fb:89:98:cd:f9:60:88:45:
1e:d2:09:60:83:16:9d:65:d8:4d:69:ef:36:54:8f:47:0c:53:
75:f6:d0:44:cd:24:a7:c9:29:c6:73:80:c6:dd:a6:cf:10:50:
17:96:a1:00:fb:61:32:c7:b9:5d:2d:49:38:d8:16:0b:01:af:
16:33:33:58:60:40:4d:ae:1f:2d:fb:c7:ac:f4:5c:c8:66:5d:
77:3e:4d:d0:e4:17:8b:38:cc:21:77:6b:a0:fa:5c:8d:be:41:
f3:61:5a:ca:01:21:46:2c:e9:65:5c:69:75:42:19:d4:cd:0e:
6f:a9:da:a2:cc:2e:33:52:e9:a9:8c:67:6b:a6:1e:49:20:9c:
35:df:04:c7:a1:67:42:89:15:32:70:27:26:5e:3d:53:b3:82:
37:a6:a3:48:3f:88:b7:e7:aa:6b:74:b6:84:3c:3a:2c:7e:ad:
2b:56:76:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 04:40:19 2024 by rpki-client on console-ams.rpki-client.org