Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
File: otCM3GpDDvDaiCmRcla2rY0KNvk.mft (raw, json)
Hash identifier: 92ZFm2ONbMXxBL1j4+mp9MpAhE2URkODCBfJ2zJ1i6w=
Subject key identifier: 5A:61:A9:B4:9D:90:CA:D8:7D:0C:A5:2F:5A:35:60:BD:AE:8E:95:56
Authority key identifier: A2:D0:8C:DC:6A:43:0E:F0:DA:88:29:91:72:56:B6:AD:8D:0A:36:F9
Certificate issuer: /CN=a2d08cdc6a430ef0da8829917256b6ad8d0a36f9
Certificate serial: 018F87B6A6EFB742FA5815AEEEB57B5BCFDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
Manifest number: 039B
Signing time: Fri 17 May 2024 18:00:45 +0000
Manifest this update: Fri 17 May 2024 18:00:45 +0000
Manifest next update: Sat 18 May 2024 18:00:45 +0000
Files and hashes: 1: oIK-YJSLFYwKQNNe6i0Ku3anoFw.roa (hash: gxx0qA2WMviDrQVyiaazNA3Ns0Y5DxvZLR6U6D6BLZU=)
2: otCM3GpDDvDaiCmRcla2rY0KNvk.crl (hash: FL45eIAxO3sq1r1seOWhcT+Ug/sBQSfpmUy5jUcimio=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:b6:a6:ef:b7:42:fa:58:15:ae:ee:b5:7b:5b:cf:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2d08cdc6a430ef0da8829917256b6ad8d0a36f9
Validity
Not Before: May 17 18:00:45 2024 GMT
Not After : May 18 18:00:45 2024 GMT
Subject: CN=5a61a9b49d90cad87d0ca52f5a3560bdae8e9556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:bb:e9:01:c3:b0:7b:57:4e:36:e7:7d:ff:84:
6c:f6:9a:bd:03:a8:76:d9:4c:cb:09:1f:fb:ee:a1:
87:56:f2:04:43:41:8a:e0:d3:6b:c3:92:99:59:a6:
bb:94:d3:60:66:97:1e:68:00:be:d7:8d:17:e0:8f:
4d:ee:55:d7:8e:54:a0:7f:a8:8d:48:6e:ae:03:6b:
c3:15:78:dd:19:04:59:a7:f1:06:90:18:1b:b9:d7:
df:7f:13:a2:b8:db:cb:43:2c:34:30:85:6a:a3:fa:
31:2c:28:e7:1a:97:7b:89:39:e7:04:e5:48:f5:95:
62:0f:b5:78:a7:97:b8:99:13:cb:79:19:73:f2:98:
97:10:d5:ea:c3:16:b6:8e:81:b8:ea:e2:f5:36:ff:
83:75:fa:27:70:e3:49:78:e1:d5:80:87:d1:62:80:
1e:76:91:b0:e0:69:d2:00:28:95:82:c4:5a:ef:55:
c3:b1:2b:cc:9d:56:68:9c:46:12:c6:41:44:df:71:
70:e7:1d:5d:8b:7a:f9:67:f6:9c:a3:c7:44:82:b6:
10:ed:d6:c5:41:ce:4f:7e:8a:c2:fb:5c:45:ea:bf:
93:3b:13:1c:a9:bd:eb:d9:91:1c:36:88:1e:74:1f:
12:26:e4:2c:25:1a:29:d2:39:a7:40:46:f0:aa:55:
7f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:61:A9:B4:9D:90:CA:D8:7D:0C:A5:2F:5A:35:60:BD:AE:8E:95:56
X509v3 Authority Key Identifier:
keyid:A2:D0:8C:DC:6A:43:0E:F0:DA:88:29:91:72:56:B6:AD:8D:0A:36:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:a3:16:b2:7e:82:ad:de:a1:c0:74:09:c8:a0:51:3c:c4:d0:
75:2b:dc:fa:e7:4b:39:01:81:40:49:3f:f9:93:72:d1:54:a7:
07:33:e9:07:39:c1:0b:47:95:41:32:25:55:d6:3a:21:4f:d9:
e6:fd:af:c1:cd:23:52:34:66:4c:82:04:cb:4b:0a:cd:95:29:
bf:cc:37:1c:4f:3e:62:7f:24:d5:c1:08:38:62:2a:85:07:89:
66:7c:17:95:b1:bc:fa:ff:1d:0a:96:fa:bb:18:32:93:ae:64:
01:ed:ec:80:f2:b1:ae:8c:b7:41:38:11:07:61:6e:b7:ce:67:
36:52:37:e8:da:37:c6:84:0e:ea:a9:e1:df:73:c0:fd:ec:5d:
24:f0:80:b9:88:57:ec:36:9e:cc:03:2a:32:5e:0c:84:42:2f:
97:a0:99:65:3f:55:ed:56:f8:ef:f3:ed:dc:f6:e6:f5:8b:c7:
74:fb:5f:6f:50:8d:48:fe:6e:42:66:3f:09:98:81:60:5b:b8:
9f:dd:ca:a8:7c:f5:e7:d5:60:29:7b:24:76:d5:b8:2f:42:1c:
e0:34:48:84:ac:a4:60:db:6c:fb:87:85:43:23:f5:06:1d:fe:
cd:82:4e:45:07:c9:76:20:d4:13:83:f5:c9:4d:b1:67:2a:e7:
84:20:9b:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 02:50:46 2024 by rpki-client on console-fra.rpki-client.org