Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
File: a0P3ovQ2ixel4DXOS9km-KFC1os.mft (raw, json)
Hash identifier: IpKTg7VmsxepUMVkUqwR6DnZXAxlYEwDIj3kKYcnxwA=
Subject key identifier: 2D:BD:EB:7A:CA:EE:71:A8:53:8E:7F:CE:02:39:91:48:1A:CA:7E:4E
Authority key identifier: 6B:43:F7:A2:F4:36:8B:17:A5:E0:35:CE:4B:D9:26:F8:A1:42:D6:8B
Certificate issuer: /CN=6b43f7a2f4368b17a5e035ce4bd926f8a142d68b
Certificate serial: 018F893821E7EDE0E7859C339F737D1B2F89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
Manifest number: 1177
Signing time: Sat 18 May 2024 01:01:48 +0000
Manifest this update: Sat 18 May 2024 01:01:48 +0000
Manifest next update: Sun 19 May 2024 01:01:48 +0000
Files and hashes: 1: 9m_gM-9aKg7DOtqVjLo4mmWy16c.roa (hash: jk2b7jreM0RgtDBPZLETOwSfDV7UGdngAwjx5uCw5m0=)
2: a0P3ovQ2ixel4DXOS9km-KFC1os.crl (hash: KfZa0vZThJySLk8c6Tz0dRaMlnTPPyayTTZXXaCf+/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:89:38:21:e7:ed:e0:e7:85:9c:33:9f:73:7d:1b:2f:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b43f7a2f4368b17a5e035ce4bd926f8a142d68b
Validity
Not Before: May 18 01:01:48 2024 GMT
Not After : May 19 01:01:48 2024 GMT
Subject: CN=2dbdeb7acaee71a8538e7fce023991481aca7e4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:8c:08:99:1d:68:22:33:28:f8:df:1b:4e:45:
77:80:07:88:3b:c4:3f:72:5b:08:52:ec:22:25:b8:
64:ae:2a:6e:a8:ff:07:a2:5e:04:b2:bb:38:38:aa:
17:b3:64:d9:df:41:47:b3:70:81:16:a0:92:01:8d:
de:e6:04:d8:56:df:bb:28:eb:e4:f4:ab:15:ce:91:
79:ee:f6:3f:3d:f6:b1:06:bf:b6:74:04:22:54:d5:
33:23:c6:f4:41:dc:3f:b3:9d:a7:cd:22:47:02:27:
a3:5d:0a:66:73:f5:70:d5:0f:70:41:b6:19:94:ed:
b6:8a:bf:fd:97:e7:b9:18:b9:a7:7b:0e:f1:07:72:
4d:b0:34:81:63:a8:46:8e:e9:47:2c:40:48:b0:55:
65:b4:55:25:69:44:0e:1b:d9:b3:46:30:ec:b5:39:
59:36:04:01:e1:88:db:4c:13:18:12:75:b1:0b:18:
df:2f:47:cc:dd:30:5b:45:99:f7:64:70:ff:1e:f2:
f6:03:96:a9:e8:0d:44:4a:0a:95:fd:39:9c:11:c4:
76:43:eb:9e:a4:01:ef:40:b1:6f:37:20:67:fa:bb:
f2:3e:a5:b7:b8:4d:6e:f1:a8:ea:54:6d:a0:8a:af:
a0:e6:5f:cb:70:ac:6f:a2:b1:f4:01:7e:b7:8c:26:
14:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:BD:EB:7A:CA:EE:71:A8:53:8E:7F:CE:02:39:91:48:1A:CA:7E:4E
X509v3 Authority Key Identifier:
keyid:6B:43:F7:A2:F4:36:8B:17:A5:E0:35:CE:4B:D9:26:F8:A1:42:D6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:fa:36:3b:81:5b:c6:de:fb:f1:df:34:b7:c3:33:5c:07:7f:
a1:ab:04:05:81:fe:da:75:25:e9:e6:e9:c2:a7:dc:65:78:e7:
f5:1a:ff:39:f3:52:75:d7:9d:09:b6:db:ba:80:00:9f:fe:c6:
dd:ea:7d:d4:d5:c9:82:ed:61:4f:07:e9:71:3d:10:2f:8d:ba:
01:22:92:3e:88:1b:46:a4:38:94:e5:ec:9d:ff:56:b7:e2:4b:
18:5d:01:21:e3:a3:f7:24:cc:d3:e0:30:fe:da:1b:6d:47:e4:
84:7f:c2:15:47:ec:69:f8:bc:d5:39:b9:32:09:4b:b6:36:31:
7e:5b:cb:93:cc:94:f0:ae:3e:bd:a0:82:2b:a8:55:3d:61:dd:
22:d3:c1:93:a1:2c:f7:cd:c6:eb:fc:8f:81:77:8d:42:f0:a4:
24:ec:b4:92:67:1a:c3:75:99:89:46:b2:ee:43:d5:e8:74:af:
8c:ed:f4:63:b3:3e:19:e8:b2:6f:99:42:80:32:e9:fa:af:ea:
45:83:4b:cc:fd:a4:0a:9e:d3:bb:a5:b4:a4:d2:52:a1:a1:e7:
36:58:2d:9f:94:02:4a:e6:2b:f9:cf:04:1d:45:f7:65:36:f8:
15:cd:35:80:cd:94:fd:51:c3:fa:68:26:30:e6:f5:97:8c:20:
a1:ab:3f:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 03:00:24 2024 by rpki-client on console-ams.rpki-client.org