Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
File: CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft (raw, json)
Hash identifier: 1lKx83rRSnJ5zZlNlhX7kX7EJUKzpU4MLLXZjASVYZo=
Subject key identifier: 3A:F4:11:76:1E:D0:40:00:E3:04:9F:C2:05:7D:B1:16:1C:1F:01:BF
Authority key identifier: 08:D1:F1:F8:B4:1D:74:F7:D8:66:B1:E5:AD:FD:18:AF:E2:02:71:08
Certificate issuer: /CN=08d1f1f8b41d74f7d866b1e5adfd18afe2027108
Certificate serial: 018F40E7CA6DFC76B91470B6839B8E2AD116
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
Manifest number: 0D57
Signing time: Sat 04 May 2024 00:01:23 +0000
Manifest this update: Sat 04 May 2024 00:01:23 +0000
Manifest next update: Sun 05 May 2024 00:01:23 +0000
Files and hashes: 1: CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl (hash: c2Uck9/TNf3wpTCGhntD+plv7LzbDaTNj4nGYuPHdjE=)
2: RRSrei0daMKFpGD4tjLj10dTj94.roa (hash: bwrqITx1fF/iLkF2SNzXpzhVmx9R2jxpYIoe20tzTKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:40:e7:ca:6d:fc:76:b9:14:70:b6:83:9b:8e:2a:d1:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08d1f1f8b41d74f7d866b1e5adfd18afe2027108
Validity
Not Before: May 4 00:01:23 2024 GMT
Not After : May 5 00:01:23 2024 GMT
Subject: CN=3af411761ed04000e3049fc2057db1161c1f01bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3a:b2:44:03:21:cf:dd:b5:45:ce:01:f5:de:
7b:2a:5f:31:9e:90:77:a9:38:5d:44:08:50:90:74:
2a:8c:79:ec:f9:3a:63:85:39:f7:de:fd:7a:0b:a7:
36:bd:d1:8a:67:fb:96:8c:26:bd:b9:11:33:8b:9d:
07:f6:40:17:c1:bf:8b:88:53:e5:a1:91:a7:ef:a8:
61:63:ec:34:1b:e1:d6:8e:95:85:cf:c7:b2:c2:bf:
83:76:14:0e:42:40:32:d1:1f:05:5b:a3:c1:73:f9:
7d:e1:bf:b9:28:0b:59:75:74:b3:65:72:a2:14:a3:
b0:c7:5a:a9:b1:48:4f:bf:8f:75:42:fb:e5:fc:e2:
b0:8c:05:97:02:ae:9c:05:4d:72:36:5b:b4:36:0f:
56:33:fd:c4:06:4f:3b:56:e2:30:1c:78:91:ef:85:
a2:82:d0:10:c2:34:00:80:b4:db:50:77:a8:65:46:
e6:8b:1d:bb:d8:a6:1f:02:e3:a7:5c:a7:c8:4b:0c:
e1:40:d3:37:53:3a:1b:80:06:ca:10:44:a1:f4:66:
01:38:d2:a2:8a:59:02:6b:30:8d:cd:6b:f4:cd:8e:
b0:f1:c8:2d:f6:4a:08:70:f0:e2:b9:0c:ff:85:21:
c9:c5:5d:24:40:da:9a:f1:9f:97:b5:26:e4:5e:ba:
79:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:F4:11:76:1E:D0:40:00:E3:04:9F:C2:05:7D:B1:16:1C:1F:01:BF
X509v3 Authority Key Identifier:
keyid:08:D1:F1:F8:B4:1D:74:F7:D8:66:B1:E5:AD:FD:18:AF:E2:02:71:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:3f:40:f0:df:81:4a:03:dc:68:7c:4e:7b:80:be:75:cb:e2:
11:33:4f:a9:56:72:bf:28:21:0c:22:4f:c0:3d:30:ef:f5:d4:
f0:43:02:22:ca:22:e6:3f:5f:8e:76:bf:05:7b:f9:56:4a:1f:
8f:85:df:2c:19:2f:a7:da:ad:ad:53:b1:e6:b8:b7:5a:ca:ca:
15:c0:98:c3:d7:37:02:37:e2:f0:f4:16:21:a5:9f:3d:01:03:
59:8f:08:86:ca:51:51:53:a9:5e:07:9b:26:3a:74:79:ea:25:
a9:54:38:d1:3e:75:40:3d:de:6e:15:4f:5c:50:df:55:c1:d4:
b2:17:d2:d8:86:40:df:ac:0e:38:38:32:c9:52:25:d4:9f:21:
72:01:0f:d1:b3:90:5f:0c:4d:cc:6f:79:26:18:88:cb:64:73:
c0:ae:29:f1:58:04:2d:1d:30:1d:ac:d4:26:de:2d:2e:86:57:
97:c4:c2:fe:d7:9e:59:ff:00:b3:69:e7:2d:c0:9c:6a:aa:9f:
1e:7b:d6:fb:ed:20:ab:44:c3:7e:f8:30:70:a6:df:94:2e:d2:
f9:81:18:59:7f:1a:ae:73:f5:ea:e6:35:c7:1a:85:0e:8e:89:
c9:8f:19:0d:62:f6:88:84:ba:2c:95:29:b7:ea:1f:b4:49:a1:
8e:9d:f9:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 03:14:01 2024 by rpki-client on console-fra.rpki-client.org