Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/1-kak8RQ6vjrfxLaDX6E0498srDQ.mft
File: 1-kak8RQ6vjrfxLaDX6E0498srDQ.mft (raw, json)
Hash identifier: bCCgZ5QVs1jp0MrgnXhhTAu9nmPBGQNQK82zq5LxaqE=
Subject key identifier: D4:C9:CD:10:99:CC:00:0A:37:5A:82:E9:37:E1:30:C5:83:D6:F5:62
Authority key identifier: FA:46:A4:F1:14:3A:BE:3A:DF:C4:B6:83:5F:A1:34:E3:DF:2C:AC:34
Certificate issuer: /CN=fa46a4f1143abe3adfc4b6835fa134e3df2cac34
Certificate serial: 018F362EA6574B942ED2DD6CB543A1384D1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-kak8RQ6vjrfxLaDX6E0498srDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/1-kak8RQ6vjrfxLaDX6E0498srDQ.mft
Manifest number: 114E
Signing time: Wed 01 May 2024 22:02:57 +0000
Manifest this update: Wed 01 May 2024 22:02:57 +0000
Manifest next update: Thu 02 May 2024 22:02:57 +0000
Files and hashes: 1: 1-kak8RQ6vjrfxLaDX6E0498srDQ.crl (hash: nLXnLP5EBNKaU/wkGE84vNlu7X4THJMH+IDFCHgkUMY=)
2: rDnNrQnwTrfOrZMmIHwUWK-HI2U.roa (hash: 4QfgVrGeNNYFMkZVI/yQb9umz2qeeG8HOzADltA5VBk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/1-kak8RQ6vjrfxLaDX6E0498srDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/1-kak8RQ6vjrfxLaDX6E0498srDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-kak8RQ6vjrfxLaDX6E0498srDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 22:02:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:36:2e:a6:57:4b:94:2e:d2:dd:6c:b5:43:a1:38:4d:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa46a4f1143abe3adfc4b6835fa134e3df2cac34
Validity
Not Before: May 1 22:02:57 2024 GMT
Not After : May 2 22:02:57 2024 GMT
Subject: CN=d4c9cd1099cc000a375a82e937e130c583d6f562
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:57:ce:d8:1c:1b:5c:5c:58:e0:d2:6d:7f:03:
d4:28:69:70:90:4c:08:c5:ef:05:2b:5a:d1:ea:15:
6d:98:11:64:55:17:6f:df:ce:a9:13:3a:af:2b:e2:
69:d4:d5:cb:fc:02:ae:cb:e5:8a:7e:db:a2:e8:d7:
61:80:8e:9c:3c:51:98:6f:27:e6:74:1f:45:b0:33:
1b:da:0a:55:7b:90:cb:54:c1:05:92:26:30:5f:94:
38:4f:60:c5:7c:a7:e6:4c:93:a6:69:46:4f:61:86:
c7:34:1b:46:ec:4e:10:e1:f1:f8:88:12:80:8e:74:
f8:26:ab:43:26:a1:5f:ad:3e:31:95:6a:d8:7c:c1:
11:bd:9c:71:30:8f:64:8a:3c:62:d1:7b:36:45:9b:
2e:fe:d3:a1:aa:c9:46:79:43:df:03:c1:f9:c8:bc:
af:e8:69:13:99:e2:b1:39:e1:04:30:84:b3:c5:61:
f8:58:7b:c8:6a:a7:73:87:2f:53:54:ce:3a:fc:af:
1b:fd:79:e4:c5:3f:dc:54:23:86:a1:02:90:e0:85:
55:25:a6:2d:00:3e:e8:33:e9:25:39:79:e7:03:67:
0f:60:05:3b:ea:eb:7d:c9:c4:e7:f0:bf:cf:32:61:
02:1c:aa:02:68:67:29:5f:6a:94:39:33:c5:7f:80:
71:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:C9:CD:10:99:CC:00:0A:37:5A:82:E9:37:E1:30:C5:83:D6:F5:62
X509v3 Authority Key Identifier:
keyid:FA:46:A4:F1:14:3A:BE:3A:DF:C4:B6:83:5F:A1:34:E3:DF:2C:AC:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-kak8RQ6vjrfxLaDX6E0498srDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/1-kak8RQ6vjrfxLaDX6E0498srDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/1-kak8RQ6vjrfxLaDX6E0498srDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:8e:a7:96:0e:02:8b:61:e0:38:4f:fd:df:5f:1f:76:e4:12:
47:2c:cb:c8:e0:d0:f8:82:e3:f0:6f:bb:fa:5c:0e:12:75:23:
49:fd:49:b3:0f:8e:80:6f:a0:77:7d:34:2c:5f:4a:f9:12:f2:
10:97:7e:af:f4:c5:02:bd:11:41:7d:c3:c7:97:95:b5:d4:16:
3b:94:e8:16:a2:95:ac:7e:46:e8:a4:06:08:e8:93:16:02:78:
59:24:1c:02:22:b6:a3:74:1f:d5:bf:86:e6:34:02:6a:f4:97:
e7:a8:55:b6:d3:16:9b:78:34:dc:82:da:e4:1a:e9:6b:21:fb:
d9:aa:35:68:2b:2f:03:2c:16:a1:ef:b8:e0:b0:73:68:f2:ee:
35:d4:f2:fc:54:b3:c5:fd:04:ab:6f:8c:7e:3c:91:d8:8a:e8:
e4:64:e7:7e:6d:76:d2:3f:8a:c0:33:6c:27:f6:c9:33:c0:e4:
d0:ae:29:00:92:9b:c8:45:57:4d:23:48:48:58:9b:b0:8d:25:
e3:77:58:d5:1a:67:e6:f4:52:c5:f1:6a:f9:23:46:7f:c8:c8:
e7:df:09:d5:0e:7a:82:ee:d3:d3:a0:3e:20:54:08:1d:d2:ff:
a9:15:d6:8f:75:3a:9a:3b:31:4a:da:5a:f1:1d:56:36:36:2d:
40:fc:53:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 02:53:46 2024 by rpki-client on console-fra.rpki-client.org