Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft
File: 1QibzgjFXapXtPOjyQcPs5GFPM8.mft (raw, json)
Hash identifier: F//mrt8+d4ztT0tQ0CsPAzuEKHajy6ntaBoTui911Dg=
Subject key identifier: EB:A8:2D:E9:3A:78:C5:2A:AE:0F:BF:01:B4:A3:55:1E:C5:AB:8D:94
Authority key identifier: D5:08:9B:CE:08:C5:5D:AA:57:B4:F3:A3:C9:07:0F:B3:91:85:3C:CF
Certificate issuer: /CN=d5089bce08c55daa57b4f3a3c9070fb391853ccf
Certificate serial: 018F41FA2F19EE4018B2B24DBD3F937C27A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft
Manifest number: 0627
Signing time: Sat 04 May 2024 05:01:05 +0000
Manifest this update: Sat 04 May 2024 05:01:05 +0000
Manifest next update: Sun 05 May 2024 05:01:05 +0000
Files and hashes: 1: 1QibzgjFXapXtPOjyQcPs5GFPM8.crl (hash: YKj/Zp02it2TXyKlZeUa3VM7HUB235RjK7Fp9b6/Hy8=)
2: Hk8XpTmh5JAxcOPxWA0BNww-HiY.roa (hash: 53mPaoMvf+Ky8W9T7oEqF1qPddb1lcszNaHnkS2beVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:41:fa:2f:19:ee:40:18:b2:b2:4d:bd:3f:93:7c:27:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5089bce08c55daa57b4f3a3c9070fb391853ccf
Validity
Not Before: May 4 05:01:05 2024 GMT
Not After : May 5 05:01:05 2024 GMT
Subject: CN=eba82de93a78c52aae0fbf01b4a3551ec5ab8d94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1f:dd:b6:4b:ff:9c:25:26:2b:61:de:f6:29:
d2:ef:bd:ba:27:f9:67:0a:98:eb:6d:c3:42:84:be:
78:ad:c6:87:46:61:0a:fa:94:1a:a3:ef:b6:2a:f6:
89:7f:82:73:bb:76:19:42:9b:73:6f:e1:8c:6c:a2:
ac:0c:14:4d:0f:a3:3a:85:92:f6:b0:b2:00:cf:59:
59:2b:ca:a4:2c:61:45:00:88:d4:9a:43:65:4b:c6:
9e:38:ae:bd:cd:63:bc:7e:ba:4d:d3:f1:a1:2c:57:
84:a0:62:8b:e8:52:cc:8a:68:0f:4e:35:0d:e5:c4:
10:5c:81:38:bb:f6:a3:8c:e3:e4:50:0b:30:58:4f:
03:84:63:cc:4d:0d:22:0a:2c:4c:9a:69:6c:b8:9f:
28:f1:f4:2c:37:e1:c7:13:85:d2:3c:53:32:ea:75:
c8:62:cf:bf:de:ab:eb:7b:6b:7a:42:f1:a7:44:c7:
7b:06:e5:bc:ab:d1:f7:88:57:ec:2a:1b:0e:39:ae:
98:77:7f:93:be:a1:84:59:73:79:85:1a:9d:e1:a1:
57:e9:7c:a7:f9:1e:5e:dc:20:7e:06:11:89:aa:ab:
42:5e:38:7a:5d:b8:53:28:8b:81:52:e7:7e:29:91:
fd:5d:49:87:44:64:fd:d7:1b:6b:a2:ae:f3:49:85:
1b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:A8:2D:E9:3A:78:C5:2A:AE:0F:BF:01:B4:A3:55:1E:C5:AB:8D:94
X509v3 Authority Key Identifier:
keyid:D5:08:9B:CE:08:C5:5D:AA:57:B4:F3:A3:C9:07:0F:B3:91:85:3C:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:2f:b3:6b:91:f8:21:1a:e8:57:7d:3e:30:d8:9f:40:a8:59:
25:a5:92:7f:19:eb:b5:b4:d1:71:d0:02:de:c7:fd:cf:35:45:
f4:9f:57:9c:42:41:d7:34:16:4e:7e:01:d5:e0:a6:a2:06:dd:
91:a8:8c:31:ac:58:11:48:be:a8:6c:1d:54:41:7f:ec:7a:88:
f1:0b:e3:c3:29:42:1a:e8:fa:be:a8:56:31:59:3d:ec:03:54:
af:a5:26:3d:e2:49:5b:bd:a7:23:ab:11:1e:bc:74:49:53:22:
a0:87:e9:e5:c1:ed:91:f2:df:5a:65:6f:ba:7d:5e:93:5b:7f:
f1:70:cf:c4:ac:ca:bc:92:13:10:00:f0:b6:50:1f:13:05:15:
32:58:c2:08:45:33:a7:8d:e4:00:ca:2c:b1:2e:51:22:4c:53:
3f:8e:f2:32:cb:51:85:fa:0c:c6:0e:05:45:26:33:93:37:c7:
39:5d:48:6b:ee:4a:1b:ea:0e:b8:5b:42:b6:e3:e6:e6:61:b6:
6d:7b:1b:03:d5:8d:39:0a:6d:7a:19:ed:1e:2e:99:ce:43:37:
54:cb:b0:20:20:14:e8:9a:8c:0b:a5:61:0f:27:76:17:79:c9:
e9:8d:43:ba:c1:6a:00:2d:7d:55:87:df:a1:2f:a0:44:b6:49:
eb:83:46:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 10:03:30 2024 by rpki-client on console-fra.rpki-client.org