Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
File: MHoDlQLUamuZCREM4qsTlod70I4.mft (raw, json)
Hash identifier: ukpPsUpX+gG61V2RdvLsSmF0G3a2gEnA9UEms8dCSAo=
Subject key identifier: 53:89:DF:FB:68:0E:0C:A3:EA:50:5D:6D:70:D8:ED:2C:62:CD:82:25
Authority key identifier: 30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
Certificate issuer: /CN=307a039502d46a6b9909110ce2ab1396877bd08e
Certificate serial: 018F889215174AFE55338E253F44D3CC3EE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
Manifest number: 05D7
Signing time: Fri 17 May 2024 22:00:25 +0000
Manifest this update: Fri 17 May 2024 22:00:25 +0000
Manifest next update: Sat 18 May 2024 22:00:25 +0000
Files and hashes: 1: MHoDlQLUamuZCREM4qsTlod70I4.crl (hash: ycMQs56gSu/Dt37HjzVNgsGGZ0lskP+AWiqGEeLtht8=)
2: vtUmvZqkjRWLMXQdqNDoO1hWltM.roa (hash: 3Jl54Zm/86t3VpzpSb/5MnxT/UQF+ro1pWAG8pqA4fg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:92:15:17:4a:fe:55:33:8e:25:3f:44:d3:cc:3e:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307a039502d46a6b9909110ce2ab1396877bd08e
Validity
Not Before: May 17 22:00:25 2024 GMT
Not After : May 18 22:00:25 2024 GMT
Subject: CN=5389dffb680e0ca3ea505d6d70d8ed2c62cd8225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:3f:fb:e4:c4:bf:e0:93:8d:d7:a6:bb:0d:c5:
36:41:56:79:96:de:6d:b5:47:f5:82:b4:6b:9c:83:
55:98:78:2b:6c:07:7b:00:e9:08:36:a4:17:e8:9a:
03:ed:3e:fc:91:71:89:6b:01:4e:59:ae:d9:b1:ac:
04:e4:31:6e:df:84:c2:c1:0d:0b:33:b6:0b:52:74:
05:50:05:fb:3f:d4:61:9a:09:9b:4f:fd:61:a5:2f:
35:d7:04:d4:ff:0a:19:1c:3c:f6:f9:15:e0:38:01:
16:92:ed:17:0f:4f:ad:db:6b:08:72:1a:cc:b5:d3:
3d:84:66:31:47:fc:65:aa:a8:64:d8:67:f0:5a:cc:
21:0f:54:98:9e:c0:31:a0:25:47:74:ec:14:c0:1d:
50:30:2f:32:6b:58:6a:de:ca:8c:69:32:eb:6e:ad:
31:89:84:80:59:48:73:07:91:d3:96:4b:5b:e1:d7:
42:93:91:e6:77:0d:04:fa:ef:b5:3b:d0:bc:5e:53:
2d:65:e7:3b:03:e0:85:9d:93:7c:15:26:f1:9d:04:
7e:c8:f2:d7:3a:8d:4c:e3:4b:b4:97:43:d3:5f:1f:
99:6b:46:1a:a0:c0:45:5e:d2:19:02:90:28:b3:47:
eb:46:63:70:9a:1f:6e:40:b0:de:06:51:b7:67:a7:
a8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:89:DF:FB:68:0E:0C:A3:EA:50:5D:6D:70:D8:ED:2C:62:CD:82:25
X509v3 Authority Key Identifier:
keyid:30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:33:fb:1a:39:79:6a:9a:39:2d:5a:c3:be:47:5c:bf:69:2a:
08:b5:31:1d:a1:cf:9a:59:c4:16:fc:52:22:e8:03:25:d8:73:
23:ae:af:2c:82:39:a7:a2:f5:80:e5:85:65:a9:46:96:63:4b:
f1:f0:e1:6d:b6:0b:bd:52:c5:d2:c8:75:b6:53:51:36:9d:66:
f8:85:1e:0b:61:6c:fa:5f:44:12:af:94:29:e9:fb:86:28:fb:
ec:69:53:4f:9d:2a:12:4c:43:04:1f:f6:92:56:b3:6d:01:1a:
30:cd:7d:43:9a:3a:67:01:44:c4:be:29:9c:a6:b5:04:1e:fb:
76:e3:6f:01:4d:64:38:e3:84:3d:e1:89:91:5f:8b:05:43:05:
dc:68:c5:a5:00:ab:fb:64:43:7b:99:cd:16:16:18:73:8a:5e:
e8:65:57:72:f3:51:a6:8b:c5:3e:9d:8c:37:49:06:4c:b7:37:
18:ee:bd:bf:fe:cb:3d:e9:d1:e7:d0:ed:d7:51:c2:39:cd:a4:
3b:e6:29:5f:06:80:7f:26:7d:46:74:88:f2:45:44:08:ca:e6:
37:42:b8:38:5a:e1:0c:ad:b4:95:69:20:32:da:20:d5:d0:47:
de:20:c8:af:ea:f4:40:ab:b2:3c:25:e8:70:d1:38:b8:cd:5d:
42:2a:43:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 22:56:14 2024 by rpki-client on console-ams.rpki-client.org