Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.mft
File: cr0ONuHCAjBKNRM7EWZmJeXW5e8.mft (raw, json)
Hash identifier: Oj7xbVJhCw9xeqQ2HK3alyrbWpSD9yDx9q6b0iGXAJc=
Subject key identifier: E7:3C:2C:48:9C:6D:81:D1:D4:FB:61:65:E4:F6:5B:50:8B:63:88:B8
Authority key identifier: 72:BD:0E:36:E1:C2:02:30:4A:35:13:3B:11:66:66:25:E5:D6:E5:EF
Certificate issuer: /CN=72bd0e36e1c202304a35133b11666625e5d6e5ef
Certificate serial: 018F87498498BE585B821B4AC34EB4646AFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cr0ONuHCAjBKNRM7EWZmJeXW5e8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.mft
Manifest number: 0518
Signing time: Fri 17 May 2024 16:01:33 +0000
Manifest this update: Fri 17 May 2024 16:01:33 +0000
Manifest next update: Sat 18 May 2024 16:01:33 +0000
Files and hashes: 1: Ue8t7ak-mdS7pdxiVsJenOH4auM.roa (hash: k9WX2UzIShjk00jzyDRYl9khq3bVFDyiQoOSD2d34B0=)
2: cr0ONuHCAjBKNRM7EWZmJeXW5e8.crl (hash: T4Mf6xIkGigUuBVW/+KOrXkMFzscZ+3V3FttPke817E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.mft
rsync://rpki.ripe.net/repository/DEFAULT/cr0ONuHCAjBKNRM7EWZmJeXW5e8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:84:98:be:58:5b:82:1b:4a:c3:4e:b4:64:6a:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72bd0e36e1c202304a35133b11666625e5d6e5ef
Validity
Not Before: May 17 16:01:33 2024 GMT
Not After : May 18 16:01:33 2024 GMT
Subject: CN=e73c2c489c6d81d1d4fb6165e4f65b508b6388b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:45:a5:91:2a:64:45:af:7b:eb:9d:0e:64:77:
1d:83:6f:f6:a7:35:18:3b:18:04:51:a6:4e:f4:c0:
09:8f:b6:b5:63:37:f8:48:72:b7:0f:c6:f1:5e:38:
1f:e0:ec:7d:4e:05:be:2d:27:20:26:79:fc:0f:be:
e4:54:ee:2b:e2:c0:3f:e2:68:92:7d:35:b5:d6:82:
c2:ef:26:1e:fb:c7:9e:67:c9:43:9e:98:3b:05:d3:
e4:43:ba:7c:e3:8d:44:84:25:ae:7b:5a:71:7c:d0:
14:2b:8d:5d:4a:22:f6:7b:ff:15:aa:b0:f6:15:ab:
28:0d:1e:51:dd:41:7a:8b:f7:52:df:ba:60:c3:48:
94:64:d4:f7:6c:ac:8d:6d:7b:eb:54:16:5b:83:d9:
ff:a9:78:aa:9f:a9:d6:0d:26:0b:14:10:b8:e4:b3:
13:8a:28:25:7c:49:c1:a2:8a:95:2f:7f:6c:3a:a9:
f0:64:b4:84:a3:f2:02:6b:60:29:4d:c2:1b:dd:bc:
ba:00:85:2d:df:48:e1:47:c9:b1:91:60:ac:84:6e:
51:01:9c:d9:d6:c5:4d:69:1d:af:bf:46:5a:0f:da:
2e:70:d3:93:26:57:2b:f5:56:31:b2:90:63:6d:81:
34:68:74:d4:94:dd:4a:f6:0c:f2:22:1f:3c:14:2f:
51:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:3C:2C:48:9C:6D:81:D1:D4:FB:61:65:E4:F6:5B:50:8B:63:88:B8
X509v3 Authority Key Identifier:
keyid:72:BD:0E:36:E1:C2:02:30:4A:35:13:3B:11:66:66:25:E5:D6:E5:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cr0ONuHCAjBKNRM7EWZmJeXW5e8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:9e:ba:5a:c8:92:b6:2b:b7:73:a4:cb:84:2c:2a:df:c5:be:
bf:9d:96:57:25:b1:1a:8b:89:18:b4:71:81:45:5b:e2:de:eb:
8f:ba:1f:36:ac:0b:f7:ac:cb:d4:3a:ad:6b:2e:c2:e9:ac:bc:
da:4b:cf:c8:96:2d:b8:a5:9c:9d:f6:2f:e8:c7:60:12:cd:b7:
34:14:e5:23:7d:5a:23:2b:44:a6:33:f0:95:2f:29:bc:82:53:
89:c7:9a:e3:87:18:c1:3c:cd:f0:be:db:b7:c7:73:84:50:fb:
3b:71:6b:0b:59:b1:ca:19:36:28:fd:67:7f:27:47:1d:2a:b9:
29:84:23:f2:35:7d:0d:26:07:e4:0e:18:0b:a2:06:47:fa:f0:
a4:64:35:be:9e:f7:17:4c:a3:29:da:9b:64:d0:14:15:98:ea:
91:fa:be:ed:7e:25:9d:93:1f:78:c9:ac:3d:66:fe:d4:12:ba:
06:b1:0b:7f:f2:1c:a8:4f:31:70:f7:7b:bb:98:34:6f:fa:d1:
67:c0:cc:21:21:e4:0c:90:da:57:e9:38:45:91:d1:46:45:58:
1f:59:8f:44:91:56:89:07:ab:15:1c:e9:76:a8:44:5e:03:dd:
e1:54:be:fa:da:41:9b:db:61:f9:76:4e:7c:bf:20:42:3b:31:
49:ed:20:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:56:00 2024 by rpki-client on console-ams.rpki-client.org