Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
File: CUSqrH8uuymBwkdj6z1gRe-9bwY.mft (raw, json)
Hash identifier: RyrGwb/PFY32AIdqzXehpD2hqrmJJcyO+eAT+slmLnM=
Subject key identifier: DF:89:C1:E3:0B:0C:F3:88:B1:54:D6:75:F5:C1:B3:EA:AF:5F:06:99
Authority key identifier: 09:44:AA:AC:7F:2E:BB:29:81:C2:47:63:EB:3D:60:45:EF:BD:6F:06
Certificate issuer: /CN=0944aaac7f2ebb2981c24763eb3d6045efbd6f06
Certificate serial: 018F584B70BCB3DCDC267DE63730AE57DCE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
Manifest number: 079E
Signing time: Wed 08 May 2024 13:01:30 +0000
Manifest this update: Wed 08 May 2024 13:01:30 +0000
Manifest next update: Thu 09 May 2024 13:01:30 +0000
Files and hashes: 1: CUSqrH8uuymBwkdj6z1gRe-9bwY.crl (hash: sTwjYNNRncTDffCkTgJfyOiSJ964xPhRFs+RlQ7QqKE=)
2: X48PuN0I7twDWfuXlpQ2ewOmYX4.roa (hash: UQ213zkRZ1Zm6JR2ufnXKzJL/Wi9dHXoT5u1+azheac=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 13:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:58:4b:70:bc:b3:dc:dc:26:7d:e6:37:30:ae:57:dc:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0944aaac7f2ebb2981c24763eb3d6045efbd6f06
Validity
Not Before: May 8 13:01:30 2024 GMT
Not After : May 9 13:01:30 2024 GMT
Subject: CN=df89c1e30b0cf388b154d675f5c1b3eaaf5f0699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ce:24:e9:d7:b3:fe:a1:7c:d6:05:5b:50:53:
dc:d8:7f:0f:0b:27:f2:19:88:cf:42:60:ac:7e:c3:
a2:8c:fd:5b:f4:22:bf:21:50:2a:ae:2d:7b:56:cc:
32:50:1e:50:6c:37:4a:9b:cd:d2:5e:fe:b5:c5:62:
63:0c:21:00:47:b5:b4:8b:fe:27:50:0c:17:17:e6:
1f:30:bf:15:cc:02:7a:61:16:a6:c3:d7:de:43:76:
e6:e5:3c:fd:1f:ac:fe:fc:d5:18:31:94:f6:2c:19:
35:5e:23:2f:39:88:ae:43:88:bf:b3:d4:89:32:37:
19:6b:22:54:95:60:90:b6:a4:3e:a5:08:6b:33:f8:
31:17:43:59:7f:ff:e2:03:6a:bb:c3:a3:70:06:a0:
ae:93:9c:91:8e:c0:91:10:8b:ce:c2:ef:93:a9:a4:
63:60:aa:f0:d7:20:c1:8c:9e:aa:39:c8:fb:77:73:
a8:84:43:76:91:07:e2:31:4a:44:b6:81:4c:e8:af:
c0:97:29:01:30:d0:16:ca:a8:af:6d:62:40:ed:89:
da:90:99:27:cc:fc:35:0a:28:79:91:46:ae:ed:2e:
a3:12:b1:53:d6:d6:11:34:90:7e:44:6b:53:2c:82:
9a:0d:23:80:4a:c2:d8:13:8c:78:4b:29:b6:74:45:
23:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:89:C1:E3:0B:0C:F3:88:B1:54:D6:75:F5:C1:B3:EA:AF:5F:06:99
X509v3 Authority Key Identifier:
keyid:09:44:AA:AC:7F:2E:BB:29:81:C2:47:63:EB:3D:60:45:EF:BD:6F:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:c6:f7:e3:ca:48:58:37:f2:66:08:d6:f0:ff:f0:6d:20:c7:
54:2a:79:95:1b:88:f5:9f:bd:5b:d0:2d:a0:6b:f7:b7:e2:23:
02:1d:7b:d7:97:47:4a:ba:98:a2:66:f8:72:b3:b7:cb:78:0c:
f7:7f:5d:9c:cc:f4:23:7f:b4:f7:db:92:6a:cc:5f:31:16:40:
7c:15:82:7e:d0:92:a1:cb:e6:6e:ba:7f:d2:e4:0c:07:19:9b:
2d:c6:81:36:3b:95:0b:a1:70:da:50:fc:02:f7:c4:69:da:bb:
13:12:0e:3c:a7:69:9c:75:39:d1:1d:36:78:e8:40:97:bf:5f:
cf:30:66:bb:67:60:f6:4f:46:b6:df:2c:9c:0d:1e:25:75:3a:
e4:7e:01:e6:4c:9f:76:59:7c:14:b4:49:03:10:db:b6:75:ec:
10:28:c6:ce:dd:34:4b:22:6d:d0:bb:b3:f4:d0:1a:b2:f3:c5:
2e:a3:ac:f4:51:66:a7:6b:3d:c0:d1:24:88:61:e4:25:3c:de:
ea:73:b7:1f:14:66:2d:d9:25:e0:b9:10:1e:7d:9f:97:05:75:
09:42:35:7d:86:6f:7b:97:a3:f0:fd:20:67:3b:bc:f6:46:7d:
ba:1c:6d:26:15:d6:38:57:6c:21:a5:07:2c:3f:8a:40:92:43:
e2:97:29:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 21:46:18 2024 by rpki-client on console-ams.rpki-client.org