Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.mft
File: IsX-stJfrE3YuqT3HY3CJoGGoDk.mft (raw, json)
Hash identifier: jb0tQ0JbeSSgUzS+6nIO2qxYFtbyu3b0sgb32jX6xOU=
Subject key identifier: 58:5F:71:B5:59:89:86:99:28:0D:2C:02:E9:AE:48:E1:56:0C:48:DE
Authority key identifier: 22:C5:FE:B2:D2:5F:AC:4D:D8:BA:A4:F7:1D:8D:C2:26:81:86:A0:39
Certificate issuer: /CN=22c5feb2d25fac4dd8baa4f71d8dc2268186a039
Certificate serial: 018F426836961A38EF8C07FA2B301BCCE76A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsX-stJfrE3YuqT3HY3CJoGGoDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.mft
Manifest number: 1152
Signing time: Sat 04 May 2024 07:01:16 +0000
Manifest this update: Sat 04 May 2024 07:01:16 +0000
Manifest next update: Sun 05 May 2024 07:01:16 +0000
Files and hashes: 1: 0z1zcJACNk-AqVVNlAg_J-wstCk.roa (hash: 20ezlhRPb3HvHkDGEzd8T4fvbAGpnsoaLtIwyFsAO3w=)
2: IsX-stJfrE3YuqT3HY3CJoGGoDk.crl (hash: 1E6WMXpmmADa2sV/PY86F1ZqPHOLhilJ7VitixL/kqE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsX-stJfrE3YuqT3HY3CJoGGoDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:42:68:36:96:1a:38:ef:8c:07:fa:2b:30:1b:cc:e7:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c5feb2d25fac4dd8baa4f71d8dc2268186a039
Validity
Not Before: May 4 07:01:16 2024 GMT
Not After : May 5 07:01:16 2024 GMT
Subject: CN=585f71b559898699280d2c02e9ae48e1560c48de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:79:66:2e:ce:59:47:c6:77:fc:b0:3d:1a:dc:
0e:74:9a:1c:35:43:7b:93:41:e4:bb:76:b1:9a:e0:
bc:09:aa:f8:01:86:b8:da:fd:d3:75:a9:5b:e5:13:
32:a4:23:9a:f4:c7:8d:a8:9d:71:ed:7d:42:4e:f4:
b6:47:81:dd:a0:2c:2a:52:a8:89:8d:db:f8:d1:30:
f2:e1:36:82:61:06:d7:08:2b:26:13:7e:77:24:9b:
e3:93:4c:b9:6a:7a:75:cc:57:73:e8:2c:d8:d0:3a:
c7:6b:18:50:ec:5f:b4:86:e0:29:20:b8:4c:39:82:
54:60:8e:84:79:40:41:41:65:8b:95:45:0d:0d:63:
28:94:11:5b:c9:ab:28:b8:29:c3:bd:13:3b:61:8a:
a2:77:c6:22:49:56:4e:87:ee:7d:30:ab:cf:4b:53:
ef:f6:83:f6:27:36:8c:5c:a2:1f:55:60:f9:c5:8d:
46:13:5e:45:85:28:61:87:37:3b:9a:a5:b2:aa:0b:
31:80:e1:03:8a:1a:a6:51:dc:88:30:30:b3:ff:64:
e3:d4:d8:70:02:84:fe:b5:4d:55:30:4f:1a:6b:67:
4e:a9:0c:95:d0:dc:b2:c0:06:72:65:6e:0e:bc:7d:
62:35:94:b9:02:d9:e1:1a:3e:20:be:b1:a9:6b:9c:
67:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:5F:71:B5:59:89:86:99:28:0D:2C:02:E9:AE:48:E1:56:0C:48:DE
X509v3 Authority Key Identifier:
keyid:22:C5:FE:B2:D2:5F:AC:4D:D8:BA:A4:F7:1D:8D:C2:26:81:86:A0:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsX-stJfrE3YuqT3HY3CJoGGoDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:a2:12:cf:88:1e:71:a1:c2:99:d9:c0:19:7e:11:82:7f:a7:
40:46:d5:94:da:6e:1a:5d:92:90:8d:1b:7b:32:dd:db:23:08:
22:2c:93:34:9f:67:fa:5b:5a:c7:1f:56:b7:85:f6:d5:58:45:
95:95:22:18:c5:db:1e:da:68:f7:be:24:b3:66:b9:04:3d:65:
83:b6:26:0d:c3:cc:a5:b4:5c:c5:18:50:db:72:d8:eb:30:0f:
c0:82:1d:9f:b2:ad:36:16:a7:50:35:8f:62:80:e8:cc:d4:68:
fc:bd:56:c6:2e:a0:ab:a4:df:ea:c8:79:95:8b:59:c7:f1:69:
48:29:63:10:9f:23:7b:96:bb:9a:1e:bb:67:89:a1:0f:cf:97:
2c:97:84:c0:87:d4:ad:e8:07:f1:f7:18:24:25:26:32:9b:43:
18:9f:97:65:f1:e2:59:dd:82:5f:2a:c7:28:21:d7:67:66:a2:
78:7c:f1:0d:8c:84:f7:a7:9a:0b:ca:39:eb:d7:d0:f9:37:af:
62:f7:e5:54:5c:86:38:db:24:36:60:99:6c:e3:0d:99:d2:34:
60:dd:1e:da:40:9b:f7:6b:d8:7a:8a:77:34:9a:21:ec:03:fa:
36:e6:9d:e4:58:ed:04:42:3b:9f:60:ea:d7:68:13:f6:d7:60:
50:65:ff:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 09:56:12 2024 by rpki-client on console-ams.rpki-client.org