Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
File: oCN2bGLetRKXFVcI7MtCHIsEeAo.mft (raw, json)
Hash identifier: smJQ67RnW3oTxxEPuR6dDQuFwDpWPeyU0UCngIe0pyM=
Subject key identifier: DC:66:52:53:EC:2F:10:3A:C6:7F:5F:10:85:4C:C2:D6:39:84:BA:7D
Authority key identifier: A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
Certificate issuer: /CN=a023766c62deb51297155708eccb421c8b04780a
Certificate serial: 018F88925ADBB7B641F1A29EEEB3D2977748
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
Manifest number: 0ECA
Signing time: Fri 17 May 2024 22:00:43 +0000
Manifest this update: Fri 17 May 2024 22:00:43 +0000
Manifest next update: Sat 18 May 2024 22:00:43 +0000
Files and hashes: 1: gjFhkhuvaOCxfOTk5epc3PpEmds.roa (hash: If3iHhNvQMUbi6gXXAic6xHXzhgr5a6QJHF+o7gRhnU=)
2: oCN2bGLetRKXFVcI7MtCHIsEeAo.crl (hash: GoiQRTTpu5lbguiIbi3MKSQt6irSs+HshF+nj2QIdrc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:92:5a:db:b7:b6:41:f1:a2:9e:ee:b3:d2:97:77:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a023766c62deb51297155708eccb421c8b04780a
Validity
Not Before: May 17 22:00:43 2024 GMT
Not After : May 18 22:00:43 2024 GMT
Subject: CN=dc665253ec2f103ac67f5f10854cc2d63984ba7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a9:49:ef:8c:d9:ea:f5:3f:32:34:99:bd:17:
23:5d:c5:b3:e8:53:ca:07:42:c2:86:e8:75:39:69:
64:bf:ab:f9:5e:c2:7b:c7:8a:c6:5a:c7:bb:7f:07:
ce:ac:e7:11:fd:5f:76:6c:f5:88:08:40:91:cd:2f:
19:97:85:75:15:9f:5a:48:76:7d:2d:1d:61:f0:ca:
12:f4:5e:87:09:c6:3b:cc:ce:c5:fe:e1:36:ca:1f:
91:cf:4d:96:a5:d3:b6:44:38:33:bf:d0:d1:af:10:
8a:96:24:1c:a5:98:de:63:cf:86:ad:f5:16:5d:de:
a5:b2:b9:0e:12:e8:88:47:49:93:c9:2b:01:6a:b4:
50:b0:10:89:ec:14:59:39:f9:67:18:a3:7f:9d:fa:
c8:43:80:2b:6d:4e:26:f3:23:3b:a0:c6:fa:f7:07:
88:96:50:26:f9:ff:c7:2f:ee:a0:98:fc:a8:4e:da:
a5:ba:49:ee:10:e1:b1:df:3e:e8:7a:5b:f3:41:a8:
bc:91:96:c4:a7:87:96:35:30:bd:cc:e8:29:49:eb:
70:36:c2:5e:99:d8:6f:db:09:a3:32:eb:cb:28:e1:
05:8e:84:54:e5:f5:6f:b3:d4:bb:23:20:02:90:49:
f3:57:1b:f1:a8:dd:bc:1a:fc:96:0a:4b:c2:79:6b:
98:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:66:52:53:EC:2F:10:3A:C6:7F:5F:10:85:4C:C2:D6:39:84:BA:7D
X509v3 Authority Key Identifier:
keyid:A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:c2:7d:fe:01:18:58:97:c2:f0:99:a1:99:c3:0a:7c:da:f9:
c7:24:4b:14:31:12:66:cc:ea:20:e5:85:cb:d0:59:7a:a9:34:
7c:41:e9:0e:4a:b4:8f:21:a0:63:fa:42:00:fd:64:55:a0:c7:
9f:04:73:b3:52:27:79:7d:5e:c6:93:47:b7:66:34:b1:7e:e5:
37:22:3f:f2:40:20:d2:72:04:28:30:2d:da:ce:7a:ce:7e:69:
14:f4:73:2d:98:de:5b:37:71:b7:d4:e1:ac:7a:22:15:42:ab:
a0:66:f6:fe:2c:e6:38:da:b1:5a:2f:c2:40:b3:78:e7:91:f5:
d1:29:61:01:3d:33:26:61:9f:49:c6:0d:ad:14:de:5e:a7:48:
db:00:85:4b:b8:da:da:5b:e2:7c:b4:38:f8:dd:4c:c7:4f:03:
c7:f5:20:21:d8:c3:9d:33:fc:25:3c:60:08:e8:1e:b9:e3:99:
d9:2f:d5:a1:b1:03:2d:28:2d:5c:41:bf:17:77:cb:f8:c8:3b:
90:da:e1:4a:a7:ca:1c:c6:92:65:94:fc:ed:49:91:95:d0:5b:
e2:2b:65:6e:49:40:99:52:0c:3f:2d:8d:3a:28:27:1a:6b:37:
7c:68:4b:ed:c4:ef:20:b4:ab:91:92:88:1c:1a:7c:17:8f:14:
77:20:8f:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 00:32:33 2024 by rpki-client on console-fra.rpki-client.org