Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json)
Hash identifier: odIks0q6KfkXpbiBs2Xoi2BeWfvxgNTZGzrbbEoA3t4=
Subject key identifier: D9:79:84:63:28:08:F1:66:9D:C2:05:29:7F:12:91:07:1E:D8:10:08
Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Certificate serial: 018F87498980F0A4CEF5B6DAEE888609F3B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
Manifest number: 0316
Signing time: Fri 17 May 2024 16:01:34 +0000
Manifest this update: Fri 17 May 2024 16:01:34 +0000
Manifest next update: Sat 18 May 2024 16:01:34 +0000
Files and hashes: 1: RO4zjeQkeheRbDBuYx0fcd6al8I.roa (hash: jMMoQs9InoheM+pJMXFAOJkfiXLoeW+w5ZxWTOr3lZw=)
2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: GSesBOyid414KbzOUNXgksS1/xrvYBr+8Gj9dQZB+L4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:89:80:f0:a4:ce:f5:b6:da:ee:88:86:09:f3:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Validity
Not Before: May 17 16:01:34 2024 GMT
Not After : May 18 16:01:34 2024 GMT
Subject: CN=d97984632808f1669dc205297f1291071ed81008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4c:b2:b3:d0:6f:b1:4b:39:13:36:c1:cd:f8:
9d:03:cc:f6:09:73:8b:4d:5c:6d:b7:26:04:74:d3:
38:07:e4:f4:c9:df:e9:7b:56:46:93:e9:c2:b6:9f:
3e:ab:e7:5b:77:19:7a:93:24:33:7e:a3:44:54:38:
1a:d0:5e:bb:95:60:38:25:8a:ac:f6:17:0e:34:3c:
74:06:76:13:3f:31:18:ce:51:71:74:24:69:ef:35:
42:7e:cb:87:56:15:9c:f8:bf:5f:5a:0d:f3:e8:ac:
9b:c2:dc:5a:c0:03:0d:a6:be:6a:db:39:e3:66:02:
a5:d0:d4:7d:51:f5:1c:60:a6:36:be:ca:bd:a7:fb:
bb:1a:ec:d6:62:fb:75:06:d9:a4:6e:e8:16:76:de:
6a:24:19:1f:70:8a:90:2f:20:a1:c5:df:2a:64:8e:
45:1e:1b:e5:9b:d5:46:11:3b:6a:f0:20:ff:77:b2:
1a:17:7d:8a:c1:05:a1:69:48:df:d4:16:44:0f:50:
9e:96:75:f4:58:1a:f0:cc:aa:6f:55:7c:25:72:ec:
9d:e7:bc:8e:60:b6:c4:23:a0:e7:39:b2:6d:9a:0c:
4a:2c:09:ec:91:1c:76:9c:07:0f:94:6b:e5:d7:bc:
27:2b:a4:e6:89:1a:c6:26:84:b3:d2:92:70:5e:da:
5d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:79:84:63:28:08:F1:66:9D:C2:05:29:7F:12:91:07:1E:D8:10:08
X509v3 Authority Key Identifier:
keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:a4:8a:22:dd:dd:27:3e:70:17:00:d1:b4:90:5a:eb:a2:08:
f1:82:77:1c:a7:c8:f4:47:05:b7:79:62:de:b9:7f:20:d9:d1:
6a:06:33:97:bf:04:85:83:89:bc:cc:1e:24:9d:fb:ce:ef:b7:
5d:38:49:31:71:33:d1:15:b9:61:81:85:e3:7a:c9:7a:5d:ba:
2d:1d:0a:7b:68:bc:d3:3a:e8:87:af:81:61:9a:e5:b8:de:b4:
bd:38:03:ab:27:0a:35:17:75:97:1e:90:db:04:44:d7:1a:36:
3d:ac:a4:4f:35:70:12:94:e8:9a:8f:26:4b:95:c8:65:73:e5:
5c:2a:d9:4a:5c:97:ec:33:ab:a4:22:de:a4:da:cf:0f:44:62:
66:86:56:d6:2d:8a:0b:be:f8:31:47:34:7d:c8:50:3d:91:36:
0c:a4:69:cc:75:3b:c9:f9:94:a2:04:05:89:79:a4:f3:97:4d:
7a:ed:a8:e1:b8:58:a2:09:97:c2:45:4c:50:42:7f:87:90:c6:
20:34:a0:af:88:2f:c4:9b:55:37:fd:97:f8:d4:03:3e:a7:1e:
3c:c5:c9:ca:2d:c4:c1:43:9d:93:f0:04:8f:51:c3:5a:12:94:
3e:44:56:41:f8:17:ea:72:d9:d7:16:f8:26:8c:26:a9:fc:1e:
2e:9e:e9:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 19:20:20 2024 by rpki-client on console-fra.rpki-client.org