Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
File: cHdwf2aXiCaodeuNLrMzvthWlmc.mft (raw, json)
Hash identifier: P2dJ6Qj9FbB/siS2roqOwkFKiqZDGcv5820pjLFl0GA=
Subject key identifier: 9A:4F:72:1C:DA:67:15:11:03:4A:E5:8A:8D:BD:D8:E6:62:0D:CD:54
Authority key identifier: 70:77:70:7F:66:97:88:26:A8:75:EB:8D:2E:B3:33:BE:D8:56:96:67
Certificate issuer: /CN=7077707f66978826a875eb8d2eb333bed8569667
Certificate serial: 018F97CE41A06CAE74BE0776C53E2DCFE6E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
Manifest number: 0366
Signing time: Mon 20 May 2024 21:00:27 +0000
Manifest this update: Mon 20 May 2024 21:00:27 +0000
Manifest next update: Tue 21 May 2024 21:00:27 +0000
Files and hashes: 1: XsbB7iqCszde2dT3Yqvuj8gTHCs.roa (hash: 3tXg6LjP2/pU6o0RRov8HoJakBg1bBB4CX5SoHX0R/w=)
2: cHdwf2aXiCaodeuNLrMzvthWlmc.crl (hash: mQzRMFsJUMZBvKbr7JoRl6puPUbplSorBSLyL7UJX2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:97:ce:41:a0:6c:ae:74:be:07:76:c5:3e:2d:cf:e6:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7077707f66978826a875eb8d2eb333bed8569667
Validity
Not Before: May 20 21:00:27 2024 GMT
Not After : May 21 21:00:27 2024 GMT
Subject: CN=9a4f721cda671511034ae58a8dbdd8e6620dcd54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9d:1d:56:57:5f:4a:68:74:f0:03:f7:04:2c:
17:01:75:24:34:1b:f7:6f:42:fd:47:e8:30:f8:5e:
1f:69:a3:13:52:5d:4c:e5:0d:e2:db:a0:86:89:70:
f0:11:57:a2:3a:a5:cf:2c:de:fa:d9:0c:9e:2e:c5:
6b:c9:df:0e:47:d3:ae:c7:3a:14:48:5d:6c:6a:67:
0c:27:b2:af:c5:d6:a4:1e:ea:fb:8f:d8:90:d2:9d:
91:4d:de:3a:42:e8:99:cb:81:59:70:c3:13:4b:b3:
15:f0:04:55:d1:ee:dd:f9:96:89:f6:50:c6:58:eb:
5e:dd:3e:01:d9:10:7b:2e:a5:38:81:90:bb:95:74:
3a:88:76:1b:ce:92:7a:b9:5a:4e:8d:54:76:91:1f:
74:94:a1:4b:bc:7e:fa:bf:6e:3e:15:6d:ab:83:04:
24:22:bd:ec:99:c1:c3:40:e6:8d:1c:b9:79:40:fe:
d2:36:49:e5:6a:c8:d7:03:73:dc:f5:7b:13:75:f0:
74:fc:74:03:4c:39:53:52:88:7e:60:82:d5:fb:4f:
bb:1c:26:05:ff:31:9f:32:b1:3a:f4:ee:71:d8:b0:
f6:f1:e0:7c:68:bc:be:cf:b9:59:e2:a9:a1:b4:90:
74:d7:69:88:1e:96:b7:96:ec:2a:31:d2:9d:e4:12:
88:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:4F:72:1C:DA:67:15:11:03:4A:E5:8A:8D:BD:D8:E6:62:0D:CD:54
X509v3 Authority Key Identifier:
keyid:70:77:70:7F:66:97:88:26:A8:75:EB:8D:2E:B3:33:BE:D8:56:96:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:40:fd:a5:49:71:51:42:c8:2a:fb:6e:6c:e3:9d:a8:e1:1f:
57:cd:e3:b5:84:5d:ec:b6:82:d3:3b:ad:cd:10:7b:8e:34:de:
16:54:49:34:34:ef:1f:18:1a:57:78:0d:2d:3f:f0:7f:ec:e9:
ae:d4:18:24:ee:ee:90:ee:3d:cb:7a:ef:ef:af:a4:53:e7:08:
97:df:1c:b1:0b:d4:db:d2:a2:84:e9:b9:fd:23:07:86:f8:84:
01:82:00:8e:4e:58:c1:3c:88:56:58:76:09:68:75:50:7c:ad:
b6:e4:f9:b6:e7:5b:e1:4d:ae:fa:3d:32:16:ae:b7:c6:40:90:
b0:18:4c:6e:5a:f1:b9:25:f8:7f:17:8d:8f:d1:10:f3:07:cf:
d5:e6:f1:9f:d8:16:68:37:5f:99:63:56:7d:43:72:24:b6:23:
98:95:e2:87:13:eb:21:fc:3b:ad:37:92:af:7e:1f:84:eb:e3:
88:04:db:de:35:a7:0e:74:1f:3d:92:fd:a0:8d:4d:4f:73:78:
1a:c1:0d:94:65:ff:f7:ea:8c:e8:40:43:81:12:1e:47:de:d2:
0e:c0:a1:69:7b:ce:4d:b3:f4:76:60:56:cc:d9:01:2d:00:bf:
83:ee:43:1c:77:5f:40:74:97:93:a5:45:f9:7b:23:36:f9:9a:
fd:f2:2f:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 00:54:00 2024 by rpki-client on console-fra.rpki-client.org