Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/df3a15-2e49-4d8e-855a-1c2758651efa/1/lxx4swX7ScvUAF1EJ8H2LGpFWmg.mft
File: lxx4swX7ScvUAF1EJ8H2LGpFWmg.mft (raw, json)
Hash identifier: 3Ed1s/DXySWIsWIEFJ4vLIswAaAyS16KwfJfWyi1MUs=
Subject key identifier: 09:A4:75:81:9F:1A:98:D0:C6:BD:21:8D:76:E1:C3:5F:8D:32:17:D3
Authority key identifier: 97:1C:78:B3:05:FB:49:CB:D4:00:5D:44:27:C1:F6:2C:6A:45:5A:68
Certificate issuer: /CN=971c78b305fb49cbd4005d4427c1f62c6a455a68
Certificate serial: 018F87B66747FEE5C6D9B52F473D6119D4E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lxx4swX7ScvUAF1EJ8H2LGpFWmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/df3a15-2e49-4d8e-855a-1c2758651efa/1/lxx4swX7ScvUAF1EJ8H2LGpFWmg.mft
Manifest number: 1178
Signing time: Fri 17 May 2024 18:00:29 +0000
Manifest this update: Fri 17 May 2024 18:00:29 +0000
Manifest next update: Sat 18 May 2024 18:00:29 +0000
Files and hashes: 1: L9l2WKuLS0IL4iJjW9I7LF5mqDQ.roa (hash: o5KgkcatAJwBk6xXwvqwrJnk519QYfgetKFADDg05Ww=)
2: foDU7Clw2KLrV9JWfG1I9w_ZHZA.roa (hash: orFqcHmUANejTrXnfsYZ5Pg0X1LwuOFCzjCW+txtEas=)
3: lxx4swX7ScvUAF1EJ8H2LGpFWmg.crl (hash: R9a1ZK1bllB245KuIzF3r7eyd+aB2W5ID7GiJVEXmS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/df3a15-2e49-4d8e-855a-1c2758651efa/1/lxx4swX7ScvUAF1EJ8H2LGpFWmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/df3a15-2e49-4d8e-855a-1c2758651efa/1/lxx4swX7ScvUAF1EJ8H2LGpFWmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lxx4swX7ScvUAF1EJ8H2LGpFWmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:b6:67:47:fe:e5:c6:d9:b5:2f:47:3d:61:19:d4:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=971c78b305fb49cbd4005d4427c1f62c6a455a68
Validity
Not Before: May 17 18:00:29 2024 GMT
Not After : May 18 18:00:29 2024 GMT
Subject: CN=09a475819f1a98d0c6bd218d76e1c35f8d3217d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:34:a5:e1:a1:b3:19:19:1f:aa:71:ba:0b:0d:
61:5a:5c:48:2d:f3:f2:1d:d4:c5:fa:d1:97:1b:1a:
b3:0f:e2:96:30:4b:07:96:30:2f:e1:59:5f:42:70:
a2:1b:a4:49:df:77:86:1f:88:46:c3:5d:68:2a:7b:
9d:45:5e:68:28:37:48:53:20:a8:cf:2e:bb:97:bc:
a0:f5:c0:4a:bc:c8:15:a0:72:1b:a4:32:de:47:e4:
a3:ca:29:97:68:12:81:72:db:b1:47:31:d1:be:86:
76:2d:fe:d5:e8:df:21:21:e2:8f:fc:c2:05:c8:26:
2b:ec:bb:05:81:0e:20:4b:1c:d4:ed:4a:70:d6:6c:
d7:62:b3:ac:dd:d8:b9:5e:98:7c:aa:7c:14:84:de:
1e:bf:49:39:62:19:3f:38:8d:ee:34:08:88:fb:b1:
df:e2:46:bd:a3:d4:5f:db:d2:28:cd:69:f7:74:f7:
9b:39:fa:03:c7:20:8f:ee:37:e2:f8:6b:68:a7:5c:
b8:5d:b1:f0:59:5a:b1:48:6f:1c:4d:86:4b:77:6b:
e0:85:0b:2e:84:62:e1:ea:7a:b1:54:ee:14:0e:6a:
2a:3f:82:b3:33:83:2a:d1:62:28:51:4f:46:43:40:
1f:a9:bb:8b:5f:9d:dc:6f:c2:a3:6f:cb:32:5f:cb:
58:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:A4:75:81:9F:1A:98:D0:C6:BD:21:8D:76:E1:C3:5F:8D:32:17:D3
X509v3 Authority Key Identifier:
keyid:97:1C:78:B3:05:FB:49:CB:D4:00:5D:44:27:C1:F6:2C:6A:45:5A:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lxx4swX7ScvUAF1EJ8H2LGpFWmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/df3a15-2e49-4d8e-855a-1c2758651efa/1/lxx4swX7ScvUAF1EJ8H2LGpFWmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/df3a15-2e49-4d8e-855a-1c2758651efa/1/lxx4swX7ScvUAF1EJ8H2LGpFWmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:26:d2:c3:89:b5:12:fe:18:7e:07:f8:33:08:08:c9:31:ed:
26:b5:27:36:18:1b:39:b3:37:83:37:9c:d0:e4:11:c7:46:95:
f4:e1:66:7b:8c:97:b3:5a:96:74:8c:83:ac:c6:2a:f8:bf:08:
3b:fb:8a:e6:03:c6:90:96:63:87:81:5c:0a:6f:c3:96:e4:de:
ae:7f:fa:cf:48:a3:f3:7f:1f:d4:ad:a6:1b:21:df:e5:aa:11:
e4:92:6f:9e:c4:25:45:bc:17:7a:3b:25:e7:88:62:3f:bb:e0:
2f:cf:81:b6:6c:8f:53:db:3e:28:77:9d:db:a5:3c:6e:e8:e4:
a3:67:3e:3d:5b:c2:38:dd:4a:2f:02:bd:94:7e:c6:a9:8e:73:
e8:88:91:6d:90:20:b3:a9:7b:a2:af:f4:64:7c:07:36:07:ee:
48:b5:d2:84:12:8f:33:7c:d8:00:d1:61:22:99:9d:a0:07:df:
c0:2c:f7:93:b0:f4:3c:b2:cd:55:81:76:0d:7d:87:57:2e:8c:
af:40:6f:7a:c6:98:ea:c0:99:0e:47:52:f9:05:2f:9e:41:aa:
bf:12:36:bb:74:56:55:a7:fc:12:84:93:38:9a:d0:82:b2:81:
3a:a1:d3:ed:5e:78:3e:09:16:83:a8:a5:56:2a:01:57:4e:7e:
61:0a:28:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 20:20:37 2024 by rpki-client on console-fra.rpki-client.org