Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.mft
File: bchbZ4jkUMBUE0row2V0iyP3Qmc.mft (raw, json)
Hash identifier: A4/r6ARmrAYQzY9k5RSJxUs983m8DPirqYgHOZXU0ck=
Subject key identifier: A3:3C:BE:0E:27:64:D7:8E:50:90:0B:EB:65:60:95:73:B0:28:1D:18
Authority key identifier: 6D:C8:5B:67:88:E4:50:C0:54:13:4A:E8:C3:65:74:8B:23:F7:42:67
Certificate issuer: /CN=6dc85b6788e450c054134ae8c365748b23f74267
Certificate serial: 018F8749FAEE9BD3BC14854C252062146257
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bchbZ4jkUMBUE0row2V0iyP3Qmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.mft
Manifest number: 02F1
Signing time: Fri 17 May 2024 16:02:03 +0000
Manifest this update: Fri 17 May 2024 16:02:03 +0000
Manifest next update: Sat 18 May 2024 16:02:03 +0000
Files and hashes: 1: NFAa9NhiOkNEDTFzlMLx2-FYBTo.roa (hash: D+hqSc9AGs8/0rb1PIJWbIlCilWv4UaD3CRAWBCX26Q=)
2: bchbZ4jkUMBUE0row2V0iyP3Qmc.crl (hash: a6qXwEH+loEWOmz9YPrf5ZY0xh/pel4r9F0EuhUpkuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bchbZ4jkUMBUE0row2V0iyP3Qmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:fa:ee:9b:d3:bc:14:85:4c:25:20:62:14:62:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dc85b6788e450c054134ae8c365748b23f74267
Validity
Not Before: May 17 16:02:03 2024 GMT
Not After : May 18 16:02:03 2024 GMT
Subject: CN=a33cbe0e2764d78e50900beb65609573b0281d18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:95:d1:25:a0:08:86:70:34:1a:4a:31:45:c3:
ea:a7:f5:a2:92:a6:0b:03:72:3b:e4:af:3a:7c:0c:
04:be:5c:f7:b5:75:31:e8:7e:16:d7:81:79:f5:28:
02:98:f2:7a:a7:5c:42:8d:81:6b:74:3f:91:e6:c4:
e7:5c:99:9b:5e:3a:a9:b5:4b:23:f9:36:8a:88:79:
51:d5:7c:dc:a2:89:34:8d:13:d2:a6:85:67:4f:13:
5a:5f:4c:27:5d:21:c3:3f:3f:a6:15:d9:fe:28:94:
9c:6a:39:ee:bb:af:c2:96:7d:16:d9:c5:26:94:87:
83:a8:21:fd:ac:fc:71:1e:60:17:b6:d1:54:8e:55:
1f:97:53:cc:9a:37:68:ca:fa:f2:b5:ee:ba:34:0b:
b4:30:93:d3:d5:3f:d2:5d:dd:16:ae:e9:fd:e4:0f:
e2:0a:56:63:f6:68:9f:b6:58:3a:a6:5a:93:b5:83:
6c:19:87:dc:dd:f6:3d:54:7d:9e:d8:a6:70:ba:93:
c9:5b:f5:4c:47:23:4d:c3:66:20:52:ff:32:75:11:
2b:4c:92:ed:79:88:95:cb:99:f5:b7:54:a1:ec:5b:
22:e4:2e:2a:28:64:01:f0:a2:93:69:9e:17:68:57:
2c:7e:d5:78:86:59:49:d7:3f:15:c6:78:84:60:c9:
5d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:3C:BE:0E:27:64:D7:8E:50:90:0B:EB:65:60:95:73:B0:28:1D:18
X509v3 Authority Key Identifier:
keyid:6D:C8:5B:67:88:E4:50:C0:54:13:4A:E8:C3:65:74:8B:23:F7:42:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bchbZ4jkUMBUE0row2V0iyP3Qmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:3b:2d:35:8e:89:d1:52:ea:e3:2a:f0:57:75:bb:ee:93:10:
8a:d3:3a:24:a9:b6:29:8e:18:9f:39:05:ae:7c:1e:4f:bf:cb:
4a:ad:4a:90:73:11:30:f5:3e:6e:c8:ca:50:3d:19:0e:79:f6:
1e:a8:34:3a:86:7b:94:e1:fb:cf:73:af:ae:b8:bf:38:2d:d6:
41:89:a2:a9:4e:87:1f:a5:d5:fe:2c:2e:7f:ae:96:16:2a:84:
21:9b:6c:eb:53:1a:d1:9b:b7:ef:51:12:c2:06:83:aa:b4:5a:
2e:b6:18:62:dd:28:f0:6e:f9:ab:8f:94:9b:27:fc:a7:a1:2b:
c6:a5:93:59:2c:94:a9:e9:ea:6f:3d:a4:64:f9:d2:99:0a:ab:
a1:22:77:22:7a:d3:31:94:12:96:41:c5:5d:1b:89:88:69:d2:
45:20:3c:ab:b6:b8:6c:11:0b:7b:8e:7b:a7:5a:fa:0f:53:cf:
13:8b:1b:7e:cb:41:9e:a6:7f:02:7b:7e:b6:ed:81:32:ad:ad:
25:53:3a:06:a6:f7:77:dc:a2:5e:8e:cd:67:e1:a3:4a:ea:38:
1e:bb:ab:9e:f9:5f:7c:c2:d3:43:af:1e:f0:f3:8f:41:ef:06:
3e:2c:25:f2:95:fd:1f:7b:9b:4e:f3:05:da:ea:fc:51:8e:29:
1f:3a:36:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 19:14:28 2024 by rpki-client on console-fra.rpki-client.org