Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json)
Hash identifier: HOkLD3jQUIDZAQhb4Gr4AIsabXIOF1aRxBSF9zRJ/ZU=
Subject key identifier: 2A:28:C8:C7:84:A6:0F:19:56:09:30:92:69:EE:12:E8:21:D8:0E:6A
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 018F0F8DCB4C10CE0C7D0DAEEFE5C0D87B0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
Manifest number: 0975
Signing time: Wed 24 Apr 2024 10:01:41 +0000
Manifest this update: Wed 24 Apr 2024 10:01:41 +0000
Manifest next update: Thu 25 Apr 2024 10:01:41 +0000
Files and hashes: 1: 3nN8Vr9yMJ8KYpDk-U_EtSoyWzA.roa (hash: cHCFiGwuTeTiLaP8ffR1+nwmgGFYJnb8UZdu7tYUVPQ=)
2: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: J2jMDHrfrItqZ/Ccgr1SQvEHcOdv+b3r57i0iteFpBs=)
3: H45IyaaEr811i7_XBQJ1qb-WyiA.roa (hash: /pRri/d3HDJxbLpxuJZAk2pZWG7BxHfKtNpbOG98wl0=)
4: MtORRkj6KzBYdubYDseSTdp0h1I.roa (hash: BKam7PcrRKZE7SE6qK2CoqqGToCrXa4T9X6XMC+0n8I=)
5: OI0ouhfkNMHl-dyhdxvS-36TqHs.roa (hash: 4zQ8g5DbZ/V9wAKj+GchIVuhl5XocF5c4fpqaAbcd90=)
6: TOXEwMgPIZ3nZApYaDZhoXO5uK0.roa (hash: 04y9jyCkY5lBbFiyIipk3b6tQX+m3INXBU+Cg9JQYvE=)
7: VGXHAYnYw4P0CW2UNClbBzQixSk.roa (hash: Ts5Bf7fMj1dxLowyY/QS6cpQRN4d5JLetbKVbgoEnKg=)
8: hC2yuzpsvdYdaca2Mwwa1eLLvuw.roa (hash: rqnswvNx5PQWQSJhMgdxCY/qEwMWrSB7aESUAjx2qSw=)
9: uTqavOzXshbfOmcCVEm5icvSg9k.roa (hash: oRCR5prfFV83ScldQEdL5piG6MV9YpSYLu+0dbWK4EM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 10:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:0f:8d:cb:4c:10:ce:0c:7d:0d:ae:ef:e5:c0:d8:7b:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: Apr 24 10:01:41 2024 GMT
Not After : Apr 25 10:01:41 2024 GMT
Subject: CN=2a28c8c784a60f195609309269ee12e821d80e6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:64:81:b5:1f:90:13:c7:4d:ce:2d:52:53:4a:
1d:7f:71:32:22:df:b2:3f:ab:82:61:5f:ab:8f:69:
17:b7:a8:b6:11:a5:c2:21:54:db:24:64:08:96:2c:
25:a2:4f:f1:22:42:b1:fd:a9:a2:8e:e2:31:1b:db:
74:82:02:83:95:e6:90:85:04:94:b0:8a:96:94:5d:
5c:28:d8:c1:22:ea:6d:28:12:20:b8:67:d0:67:9c:
17:5f:43:a1:a3:8c:a8:49:cb:ad:10:61:66:dc:ae:
1d:3f:65:19:b3:31:f1:22:93:b4:e6:1f:20:27:8d:
31:5d:cd:0b:af:c6:32:8d:c9:87:65:19:c9:48:62:
2e:b9:f0:4e:82:e0:72:b9:f3:47:25:bd:09:0b:1d:
98:38:47:a3:da:5c:bc:04:a7:5a:40:2d:37:c5:18:
02:17:fc:c7:90:51:8d:b6:69:49:8e:53:09:59:1a:
ee:c6:94:30:60:2e:e7:ae:3d:a8:56:ae:dd:24:e7:
c4:55:c0:38:84:5e:2b:01:9d:5a:9d:87:fc:d5:65:
2c:f9:96:f9:11:b8:67:38:dc:80:11:55:3d:9c:13:
8d:9f:5d:dc:c2:73:3c:3d:6d:02:62:29:c2:3e:b4:
5c:08:c1:7b:e5:da:17:3f:d8:00:48:f3:c6:a7:7d:
15:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:28:C8:C7:84:A6:0F:19:56:09:30:92:69:EE:12:E8:21:D8:0E:6A
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:35:f7:58:26:99:b9:d4:64:0c:89:69:df:a3:de:a0:cb:11:
29:21:80:0b:4d:b5:1c:d6:40:4a:46:40:53:39:8b:3b:db:c1:
74:db:0e:cd:59:06:98:52:5d:ac:53:2e:05:f2:5e:36:38:a1:
3f:c1:60:5c:8e:99:b1:6b:28:a8:fe:d4:59:26:6d:13:bd:50:
02:e5:73:c7:a6:8c:65:94:3d:c9:7e:82:a7:4f:bd:71:5c:4c:
f1:c6:c9:dc:5d:82:2e:b3:9a:c5:19:15:34:f1:90:72:6b:0b:
cf:ef:6c:13:59:bd:a9:62:b1:59:f3:82:18:32:4d:d0:c5:64:
75:f9:bf:e1:eb:e7:b3:8e:b5:1b:f5:29:2e:16:42:24:e5:5c:
27:59:ae:c4:f0:b3:fe:b7:f9:8e:02:47:6f:29:e5:e4:bf:66:
71:eb:fb:d0:9e:2d:e8:64:5d:5d:ae:cd:c0:0c:82:59:dd:aa:
40:11:d8:31:cd:08:23:cd:0d:6d:15:62:cb:a1:94:12:a6:1b:
40:f7:e4:c3:f1:ca:d8:49:dd:a6:f7:f9:e1:69:96:c5:ff:7e:
e3:30:4b:22:e3:a0:c0:e8:df:10:53:06:32:0c:66:56:cd:9d:
ee:5f:03:10:f3:21:d1:3f:c4:dd:05:a7:57:cf:e4:52:0b:d3:
4e:12:46:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 19:39:48 2024 by rpki-client on console-fra.rpki-client.org