Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/5f8cea-54ba-4965-a454-07a449a50f08/1/xagvOTbyRO3LYBPhIdUadpDRNZk.mft
File: xagvOTbyRO3LYBPhIdUadpDRNZk.mft (raw, json)
Hash identifier: 34sguCjkTAqA42qvEEObxBJSdjHMQI8S0jd5r25bhqk=
Subject key identifier: 7C:ED:65:88:EF:46:27:30:3A:F4:92:C8:F9:57:44:9F:7C:0C:A2:73
Authority key identifier: C5:A8:2F:39:36:F2:44:ED:CB:60:13:E1:21:D5:1A:76:90:D1:35:99
Certificate issuer: /CN=c5a82f3936f244edcb6013e121d51a7690d13599
Certificate serial: 018F136B2CBA1F7598598DF00B08D0BFB3A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xagvOTbyRO3LYBPhIdUadpDRNZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/5f8cea-54ba-4965-a454-07a449a50f08/1/xagvOTbyRO3LYBPhIdUadpDRNZk.mft
Manifest number: 0E8B
Signing time: Thu 25 Apr 2024 04:02:21 +0000
Manifest this update: Thu 25 Apr 2024 04:02:21 +0000
Manifest next update: Fri 26 Apr 2024 04:02:21 +0000
Files and hashes: 1: 6jFqyae1Vr3T5vvLtbSqSwdARfc.roa (hash: gtkxQkEL3buyah6sBdYRakHs55aCVjSS/6hNttKvjtw=)
2: xagvOTbyRO3LYBPhIdUadpDRNZk.crl (hash: iJxrMAARWHBJZsQyVl7m71ZdNNGia0wi+5TmVhdDapo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/5f8cea-54ba-4965-a454-07a449a50f08/1/xagvOTbyRO3LYBPhIdUadpDRNZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/5f8cea-54ba-4965-a454-07a449a50f08/1/xagvOTbyRO3LYBPhIdUadpDRNZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/xagvOTbyRO3LYBPhIdUadpDRNZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 04:02:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:13:6b:2c:ba:1f:75:98:59:8d:f0:0b:08:d0:bf:b3:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a82f3936f244edcb6013e121d51a7690d13599
Validity
Not Before: Apr 25 04:02:21 2024 GMT
Not After : Apr 26 04:02:21 2024 GMT
Subject: CN=7ced6588ef4627303af492c8f957449f7c0ca273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:12:ac:12:7d:7f:ec:ac:0e:5f:78:45:a7:cc:
3c:3b:2e:cf:12:c3:f7:bb:54:02:58:9e:d7:07:af:
ab:c9:15:14:3a:31:9b:44:0f:0c:f0:ec:2d:d5:df:
6c:da:5d:5d:45:c0:9a:d3:f2:da:a0:c3:fe:5e:c2:
30:03:44:e4:5a:90:f7:9d:18:fd:0e:83:7a:da:8e:
9d:ae:29:7e:12:da:09:a0:83:e9:bf:aa:da:03:37:
d7:ae:b6:54:59:60:66:fe:6e:eb:c6:6f:ce:be:4f:
03:bd:d4:4f:90:fc:50:67:c9:b3:bc:37:51:bc:9e:
57:af:9a:fd:a1:f2:15:a3:4c:3e:85:08:56:16:81:
95:1c:31:84:52:f3:b8:ac:28:a2:3e:6e:a8:c0:c8:
49:b9:75:83:ad:2c:62:37:7b:1f:a4:ee:f1:b2:cd:
9f:59:e5:66:3d:6d:89:1e:09:43:41:ea:cb:54:1f:
a5:8c:c8:0c:4f:35:d9:1c:50:c6:70:37:f5:f3:49:
cf:c4:aa:63:ac:f2:79:cc:04:38:24:d3:3b:29:4c:
b4:24:e6:c4:03:74:22:66:0f:d0:02:2a:3f:33:c6:
5a:5f:78:66:4a:7b:2a:8c:04:08:30:75:f5:85:ff:
49:ae:f0:55:57:1e:bc:2c:2c:c2:c6:8b:1d:f1:a5:
13:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:ED:65:88:EF:46:27:30:3A:F4:92:C8:F9:57:44:9F:7C:0C:A2:73
X509v3 Authority Key Identifier:
keyid:C5:A8:2F:39:36:F2:44:ED:CB:60:13:E1:21:D5:1A:76:90:D1:35:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xagvOTbyRO3LYBPhIdUadpDRNZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/5f8cea-54ba-4965-a454-07a449a50f08/1/xagvOTbyRO3LYBPhIdUadpDRNZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/5f8cea-54ba-4965-a454-07a449a50f08/1/xagvOTbyRO3LYBPhIdUadpDRNZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:45:6b:8b:df:28:be:c1:79:d9:70:1c:7c:f3:8a:47:0d:28:
47:29:f8:6f:0f:38:ff:b7:df:0c:13:19:d5:64:3b:f4:73:1e:
33:2d:7c:7f:fa:9d:c4:59:bf:bf:64:af:b3:25:44:bd:2f:eb:
1a:54:42:b3:e2:10:7f:fa:df:24:80:7e:56:45:1e:70:28:19:
52:30:ab:82:50:54:6a:25:ff:9a:a9:d2:2d:d0:f9:4d:52:49:
be:46:d8:dc:9e:43:63:dc:f7:9e:23:5c:21:bd:8a:06:29:30:
0e:9f:28:e1:44:af:96:0e:db:a9:07:19:7e:5e:71:6d:b8:f5:
c6:0d:05:fd:51:05:eb:8b:6f:e5:35:1e:0e:7b:70:0f:6d:f7:
c2:cc:6c:fb:6d:71:6e:2c:27:af:39:48:18:45:81:e9:06:4b:
be:2a:8d:1d:1f:ed:a3:ad:63:c5:1b:26:ae:69:3f:00:ec:4d:
63:a1:a6:a1:e4:3d:7d:9b:64:75:8a:fb:6d:99:12:6e:39:e3:
33:61:2c:62:d5:fa:1f:e7:e6:9e:5c:b3:ee:2e:2f:6f:3d:f5:
43:69:da:37:82:10:11:dd:d7:6a:46:3d:65:27:9a:60:12:92:
5c:45:4b:d9:d9:78:21:4f:1e:4f:4d:69:f5:f3:5f:6f:75:ea:
5b:b1:b9:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 11:36:18 2024 by rpki-client on console-fra.rpki-client.org