Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.mft
File: 0KOFQs_bHubgdermsQHnu1sUxDY.mft (raw, json)
Hash identifier: LRwBBxNJGS8eccHc6TUQn86EP0ukeN3tClY1QQ8Y2NY=
Subject key identifier: 22:C8:C1:04:C6:17:D0:C1:B0:F8:09:04:16:C1:66:84:8F:62:DC:E3
Authority key identifier: D0:A3:85:42:CF:DB:1E:E6:E0:75:EA:E6:B1:01:E7:BB:5B:14:C4:36
Certificate issuer: /CN=d0a38542cfdb1ee6e075eae6b101e7bb5b14c436
Certificate serial: 018F55140EC1737DB5F301EF78B805889C23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KOFQs_bHubgdermsQHnu1sUxDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.mft
Manifest number: 0DF5
Signing time: Tue 07 May 2024 22:02:08 +0000
Manifest this update: Tue 07 May 2024 22:02:08 +0000
Manifest next update: Wed 08 May 2024 22:02:08 +0000
Files and hashes: 1: 0KOFQs_bHubgdermsQHnu1sUxDY.crl (hash: l1NkiE038xBwWOL3XyeSjry2mHw+MPas6iXLotuqL30=)
2: Kbuh4st5qjjYGTTHYCUlTVQP7eE.roa (hash: GEdIY1fm6FwouXlMtfOccW+drS5xbX5zLMefGDZ9hJc=)
3: sGMysdCe-pZPdXcbJzM8V1RQi-g.roa (hash: 5aNze1guaywDPejF9LWpTOmRkIz2Lqp1/wcXfH2qqtI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KOFQs_bHubgdermsQHnu1sUxDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:55:14:0e:c1:73:7d:b5:f3:01:ef:78:b8:05:88:9c:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0a38542cfdb1ee6e075eae6b101e7bb5b14c436
Validity
Not Before: May 7 22:02:08 2024 GMT
Not After : May 8 22:02:08 2024 GMT
Subject: CN=22c8c104c617d0c1b0f8090416c166848f62dce3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:d9:84:e8:92:76:e9:29:50:d9:eb:96:c8:bc:
c0:c7:a1:26:8a:dd:3e:c8:8b:bc:70:62:0e:30:16:
d6:72:46:ad:53:db:9b:76:86:34:41:f0:e3:d5:0e:
22:e3:86:72:c8:d9:dd:46:13:42:62:02:3b:1c:b4:
07:04:03:aa:10:52:7b:34:f8:6e:79:9a:9d:98:64:
10:54:59:7b:6f:5f:5f:cf:d6:b2:b4:17:25:51:0e:
de:c7:0b:25:93:b5:a4:4a:3e:c6:fc:f5:2f:55:ee:
15:33:d1:ad:37:a9:b7:25:01:71:6e:2a:bf:88:30:
4f:5a:e1:77:14:36:63:45:1c:bb:64:fe:d9:a5:68:
5a:c1:a8:b6:6b:c4:df:cc:03:20:55:a7:52:e5:38:
6d:bd:a4:15:c7:0d:21:dc:87:85:a1:49:64:3b:b7:
66:d4:ab:d0:8d:ad:ff:26:68:2d:bc:de:bd:d9:fa:
0b:fe:ae:12:75:f4:ad:5d:84:ea:c6:9a:c3:63:c5:
14:64:f1:af:2d:af:04:ae:e7:16:2f:51:20:f4:b0:
ef:fe:78:eb:01:f5:68:4e:c0:a4:21:cf:35:73:81:
bc:7e:7d:a3:55:b3:b8:d8:c7:d5:f6:54:9b:c7:1c:
67:4b:46:32:11:bd:12:d3:b0:62:0f:47:cd:01:1d:
8e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:C8:C1:04:C6:17:D0:C1:B0:F8:09:04:16:C1:66:84:8F:62:DC:E3
X509v3 Authority Key Identifier:
keyid:D0:A3:85:42:CF:DB:1E:E6:E0:75:EA:E6:B1:01:E7:BB:5B:14:C4:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KOFQs_bHubgdermsQHnu1sUxDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:23:b0:fa:8d:a1:aa:d2:97:e1:97:3c:bf:81:58:f2:ef:53:
ba:31:8e:ef:f2:67:ec:f1:10:ac:5c:3b:52:b9:cd:0c:57:dc:
0c:c5:4d:5c:d6:54:17:17:d0:03:48:61:8b:df:da:b4:1f:20:
c9:08:98:36:79:c5:f3:da:88:76:a0:ce:b1:1d:c6:d6:13:3e:
41:e9:45:0b:18:49:01:fe:77:7d:11:d5:55:b1:62:27:8f:38:
39:c3:93:34:34:73:36:38:03:4a:a8:3b:f2:96:8b:de:24:3b:
f8:37:86:b1:ae:10:fb:64:4b:d8:f3:d5:98:35:7d:0e:57:3b:
52:da:47:65:b4:82:0e:3a:f3:68:37:d9:8d:81:d9:7f:b7:26:
77:45:c3:82:d4:d7:97:ed:5f:d8:ba:7c:b4:a3:da:d0:a5:37:
cb:83:f2:6b:ce:b9:f9:25:ae:26:3c:f2:c8:3e:67:fc:a1:8d:
48:1f:86:4d:5a:7f:25:69:61:7e:91:2e:ef:15:27:65:db:9f:
8c:d9:00:59:ef:cc:08:63:4a:85:35:53:1f:e2:4c:3f:92:e7:
a4:24:25:96:54:a8:7b:93:0e:dd:cf:97:52:13:f1:12:6e:1f:
68:b1:6a:58:39:48:50:a2:bd:8d:d5:a9:35:f7:bb:a0:3d:87:
92:40:df:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 23:30:00 2024 by rpki-client on console-fra.rpki-client.org