Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
File: rysOIXo1FoOSIGvac85hlTWgLzU.mft (raw, json)
Hash identifier: 8lgp/Ra2+EvnPW++qcC4+eXoLHWnge7tSMonXWQXFLI=
Subject key identifier: 8E:1C:C1:C5:9A:F5:32:CB:9B:91:40:BD:78:B9:77:DB:1E:F4:71:AE
Authority key identifier: AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
Certificate issuer: /CN=af2b0e217a35168392206bda73ce619535a02f35
Certificate serial: 018F8711542BC17ED7550FB7958A89318DE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
Manifest number: 061E
Signing time: Fri 17 May 2024 15:00:10 +0000
Manifest this update: Fri 17 May 2024 15:00:10 +0000
Manifest next update: Sat 18 May 2024 15:00:10 +0000
Files and hashes: 1: rysOIXo1FoOSIGvac85hlTWgLzU.crl (hash: 3ES0/Z1pBzZTA5693EVuCDdhmxQVjxoo3fe0t5xIoMQ=)
2: tkwQcA8HZb1dSVXwb62SermEjoc.roa (hash: aQyv+YUVzHDIYUVsp5APla9LuUy/BcxfYrqbP719tZM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:11:54:2b:c1:7e:d7:55:0f:b7:95:8a:89:31:8d:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b0e217a35168392206bda73ce619535a02f35
Validity
Not Before: May 17 15:00:10 2024 GMT
Not After : May 18 15:00:10 2024 GMT
Subject: CN=8e1cc1c59af532cb9b9140bd78b977db1ef471ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6c:32:e0:87:8d:fd:63:15:83:3b:44:ea:cd:
cd:33:af:48:95:b3:24:42:64:62:8d:3c:0a:d1:d1:
e0:3b:69:9a:2d:4e:b1:42:40:ec:fd:5d:32:4e:7a:
92:be:b7:4e:6c:9f:12:5d:25:4c:c6:48:0d:6c:e5:
3d:58:6d:75:33:1e:f5:0f:05:f3:72:c1:fe:18:a2:
89:be:cc:69:f3:3c:ef:35:14:d8:51:6f:95:0c:32:
21:e2:9f:03:af:b7:d1:33:3f:a7:d2:64:52:27:f4:
1f:53:58:aa:9f:fa:e6:48:63:02:49:f8:27:99:36:
3b:e1:1b:8d:8f:20:f1:6c:8a:74:11:0d:fb:e2:19:
cb:3a:40:2e:19:4b:54:ce:d3:fc:a7:21:2f:bb:26:
a1:ae:1b:a4:ae:a5:dc:85:1b:f7:18:d5:3a:47:27:
68:74:ca:03:e6:b0:40:9f:80:3e:02:ff:53:57:ff:
ae:9c:ee:65:a1:7d:07:8d:eb:78:68:bd:25:ea:84:
25:65:60:06:29:6e:4f:64:59:d5:ce:3a:d1:e7:79:
cc:a7:83:10:9e:45:10:88:94:52:f7:c8:26:ac:1f:
27:cd:71:ee:c0:67:10:56:64:8f:88:60:72:27:b0:
0e:95:b0:68:c8:84:67:41:04:4b:85:98:f4:ea:7e:
b5:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:1C:C1:C5:9A:F5:32:CB:9B:91:40:BD:78:B9:77:DB:1E:F4:71:AE
X509v3 Authority Key Identifier:
keyid:AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:c4:42:92:94:f3:5a:4f:ff:46:8b:42:92:ac:69:6b:0e:92:
c6:9a:7d:6a:a8:46:b8:47:f3:58:65:8e:ce:70:e4:e4:94:7f:
00:77:24:2e:71:c0:6e:a3:d7:16:07:b2:e4:ef:17:0a:08:94:
2d:91:d3:89:5a:da:02:6b:59:3a:d6:96:ab:b4:aa:e2:b4:57:
0f:15:5a:44:c4:87:df:44:3d:23:8c:86:0e:b0:df:01:e4:47:
82:a4:ef:51:02:7a:9c:1c:05:bf:99:6b:73:9f:26:cd:27:9d:
c7:48:67:a2:69:dc:7f:e6:61:30:f9:f9:8b:fb:fd:5d:83:50:
a5:ed:81:69:76:fd:25:a2:ac:29:e2:bf:33:8c:e4:90:dd:d7:
88:83:79:78:16:b9:13:36:8c:f5:b1:35:36:6b:10:4b:46:d8:
4b:52:19:0e:1f:68:24:58:73:25:f6:26:47:be:23:ce:2f:25:
9b:08:db:2c:f0:e6:cf:ae:0e:ee:0b:72:b2:1f:e3:1c:2b:40:
c7:e6:0a:f6:d6:2e:19:3e:79:1a:af:e9:d0:9e:ba:2f:f6:d5:
cc:c5:ad:12:7d:6a:29:2d:25:cc:72:7d:64:c9:cf:32:14:bd:
af:0b:d2:3e:90:d8:84:96:dc:4f:97:04:84:72:85:27:61:e9:
fb:d1:1b:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 19:19:05 2024 by rpki-client on console-fra.rpki-client.org