Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.mft
File: c4DHWfVY-ca-iN0iakOdmcnqzww.mft (raw, json)
Hash identifier: M3WuQXuPbCGldAfq0S0xehpGwcY4fR63TtBJ2ep/OPQ=
Subject key identifier: 74:E1:8D:14:51:49:6F:72:0D:2F:08:AA:C2:0B:D1:F4:DD:D6:DB:66
Authority key identifier: 73:80:C7:59:F5:58:F9:C6:BE:88:DD:22:6A:43:9D:99:C9:EA:CF:0C
Certificate issuer: /CN=7380c759f558f9c6be88dd226a439d99c9eacf0c
Certificate serial: 018F957201698EB5512933B46518FE0B91EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c4DHWfVY-ca-iN0iakOdmcnqzww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.mft
Manifest number: 08B0
Signing time: Mon 20 May 2024 10:00:27 +0000
Manifest this update: Mon 20 May 2024 10:00:27 +0000
Manifest next update: Tue 21 May 2024 10:00:27 +0000
Files and hashes: 1: b29jwASOcX8giqKYja-ndLLxVbs.roa (hash: LbX4Rx8by/KH3kL2uZ7wj6X06ELDVJ80czTwcO0ue6A=)
2: c4DHWfVY-ca-iN0iakOdmcnqzww.crl (hash: Ic8Da6wl6HCovnzENjdqu7eljZQ8BLFzI00G6UBpgTw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.mft
rsync://rpki.ripe.net/repository/DEFAULT/c4DHWfVY-ca-iN0iakOdmcnqzww.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:95:72:01:69:8e:b5:51:29:33:b4:65:18:fe:0b:91:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7380c759f558f9c6be88dd226a439d99c9eacf0c
Validity
Not Before: May 20 10:00:27 2024 GMT
Not After : May 21 10:00:27 2024 GMT
Subject: CN=74e18d1451496f720d2f08aac20bd1f4ddd6db66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:9c:9d:89:84:74:a5:18:99:33:42:87:0b:34:
13:82:c7:a5:73:5b:01:a8:ca:e3:90:06:a7:28:bd:
d5:3a:6c:51:69:e3:26:d8:73:b8:79:54:a6:46:05:
ad:c5:11:01:0d:15:1c:44:80:a1:a5:32:c9:f7:81:
60:a8:bc:f6:71:4c:dc:7c:8e:c8:05:ea:49:3a:70:
c8:ba:d9:81:cc:0d:d6:46:cc:86:31:d8:05:5a:90:
a2:e7:30:c1:22:b7:1b:1d:31:af:82:c5:c9:db:46:
ec:70:d6:98:16:eb:73:56:6d:06:17:7c:2c:5d:b5:
7b:3e:b2:64:4b:d2:bd:32:4d:69:1c:f5:3a:e8:7b:
53:b2:d9:0f:9f:f6:e9:85:2c:b2:c6:24:99:e5:dd:
73:be:24:55:ed:82:3c:da:fd:c5:63:76:7a:c7:a9:
7d:1b:26:f6:41:02:3f:77:3a:d4:64:a6:d0:aa:ae:
dd:fa:1d:5f:88:2b:e7:47:41:10:5f:77:73:81:80:
1b:48:9c:73:15:07:46:48:c0:6a:f6:da:b3:54:2b:
6c:aa:bf:0a:09:a4:f4:98:a8:12:ee:d7:70:0f:45:
26:38:62:88:e6:f1:9e:c9:38:d0:85:2b:15:b7:d2:
bb:4f:01:bc:7e:07:b6:ee:f3:05:c5:da:b4:cf:93:
5d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E1:8D:14:51:49:6F:72:0D:2F:08:AA:C2:0B:D1:F4:DD:D6:DB:66
X509v3 Authority Key Identifier:
keyid:73:80:C7:59:F5:58:F9:C6:BE:88:DD:22:6A:43:9D:99:C9:EA:CF:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4DHWfVY-ca-iN0iakOdmcnqzww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:e3:a7:ba:1f:f4:eb:c1:b1:07:dd:1d:00:df:c2:c9:08:06:
a6:fa:26:7b:1b:44:32:cf:c8:d2:16:71:f7:68:d6:93:cb:36:
1a:e1:f9:28:3c:8b:16:db:a4:ab:72:01:e2:84:dd:33:60:17:
f1:6b:5f:cb:25:87:ab:32:26:e4:da:29:62:2b:6d:6d:b6:c5:
ac:4c:c7:cc:03:65:d2:15:ac:6e:6f:4d:3d:72:a6:8c:5f:0c:
c5:9c:5d:34:22:91:e7:77:59:13:d2:f9:5c:8d:83:c9:eb:4c:
57:ea:89:7a:f9:8b:e0:e2:c7:d3:ae:d2:66:a7:58:f3:af:f6:
8f:cb:44:de:c5:51:f8:43:ee:16:1a:79:d5:a8:42:c4:1c:98:
18:1a:70:07:f6:c1:a1:26:d5:9a:1f:cc:53:11:a5:16:17:fa:
4b:c9:7a:11:2d:6a:0b:28:f9:16:1a:ad:4f:69:b4:cf:ef:33:
56:92:6f:6d:81:42:bd:45:17:e0:03:b9:ea:9c:3a:da:cd:d1:
33:bf:74:ef:13:58:20:56:06:e3:ff:e8:c9:9d:a6:b1:26:eb:
20:9f:13:dc:08:f6:38:96:bf:2d:b1:c6:3f:8e:34:fd:98:93:
f6:12:a5:b8:7d:29:b9:3b:ae:f1:95:dd:95:04:d7:6b:f4:2b:
d3:86:b2:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 18:24:25 2024 by rpki-client on console-fra.rpki-client.org