Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.mft
File: LX893KDLOOx7CMaQKeIPUtxAjxc.mft (raw, json)
Hash identifier: ThTvFlhIDiQxDI9zdF4hnlUqY/T/+kcJTxQhDyx2PIo=
Subject key identifier: 12:30:4A:10:65:74:A7:0F:44:ED:B1:DD:60:BF:41:2B:9C:A0:95:02
Authority key identifier: 2D:7F:3D:DC:A0:CB:38:EC:7B:08:C6:90:29:E2:0F:52:DC:40:8F:17
Certificate issuer: /CN=2d7f3ddca0cb38ec7b08c69029e20f52dc408f17
Certificate serial: 018F874AB3A8BA99C0E6A7C68E9A0C8EEA18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LX893KDLOOx7CMaQKeIPUtxAjxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.mft
Manifest number: 117A
Signing time: Fri 17 May 2024 16:02:50 +0000
Manifest this update: Fri 17 May 2024 16:02:50 +0000
Manifest next update: Sat 18 May 2024 16:02:50 +0000
Files and hashes: 1: LX893KDLOOx7CMaQKeIPUtxAjxc.crl (hash: fgGmDMRZee7pk+dGUpywMKerlfaZwuGfnoIfWNFMXnA=)
2: fVQg-kYrdJDgaM_yQekgbnttJU4.roa (hash: 78TftuhqGTlGQ9IzX06jAjdTAR0rmzk1jLRTeUqLr7o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.mft
rsync://rpki.ripe.net/repository/DEFAULT/LX893KDLOOx7CMaQKeIPUtxAjxc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:b3:a8:ba:99:c0:e6:a7:c6:8e:9a:0c:8e:ea:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d7f3ddca0cb38ec7b08c69029e20f52dc408f17
Validity
Not Before: May 17 16:02:50 2024 GMT
Not After : May 18 16:02:50 2024 GMT
Subject: CN=12304a106574a70f44edb1dd60bf412b9ca09502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b5:5c:9b:c3:8c:0a:ea:21:bc:cf:57:f2:b0:
a7:62:ef:97:95:d9:68:3d:bd:9e:c4:32:5b:a4:30:
a6:7d:00:67:fd:7a:b6:ab:8a:52:09:9d:fa:7f:6d:
a4:f1:e3:47:fe:26:ad:c8:1a:10:b7:c7:ae:e7:32:
ae:3c:e5:63:5c:16:da:b9:e8:be:70:44:68:43:48:
e2:62:90:66:76:c6:cd:5a:87:c1:55:4a:de:ac:bd:
04:32:d8:35:3b:56:74:76:4f:b3:c0:5f:d5:b7:5a:
fb:19:20:9c:bd:f7:18:98:67:05:f9:d7:ec:91:eb:
ff:fa:da:93:9a:02:8d:95:7e:03:0e:7a:62:b6:85:
ef:59:70:64:eb:36:9a:49:60:5a:47:5d:a0:c7:85:
10:ec:d3:56:ea:89:b9:a8:b6:43:f2:ac:1d:5a:dc:
13:8e:06:72:c3:33:7e:9b:42:79:f4:c6:23:ab:93:
01:4d:6d:26:90:71:e1:9a:ad:87:80:41:44:22:1e:
f8:1e:b3:ac:04:7e:11:4e:8b:1d:5f:d9:b6:ef:1a:
49:34:a3:94:4e:f9:3a:2c:b9:8f:4b:08:91:09:69:
cb:44:49:1d:6b:e1:61:8a:8b:f1:08:b4:33:1e:62:
27:68:a3:76:31:d5:fa:e5:3f:81:11:95:ff:3b:d3:
9f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:30:4A:10:65:74:A7:0F:44:ED:B1:DD:60:BF:41:2B:9C:A0:95:02
X509v3 Authority Key Identifier:
keyid:2D:7F:3D:DC:A0:CB:38:EC:7B:08:C6:90:29:E2:0F:52:DC:40:8F:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LX893KDLOOx7CMaQKeIPUtxAjxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:73:ae:0e:5a:42:8f:3f:a9:51:67:7e:7b:14:ae:c0:a3:6a:
ba:4f:87:ff:42:e5:4e:9e:16:15:af:45:77:55:69:2c:a5:76:
0e:c2:87:a6:79:96:dc:50:6a:f6:21:87:a0:83:4b:9c:b7:76:
83:34:6e:b9:ca:3e:61:e6:22:c1:2a:a0:dc:19:a7:e9:67:2d:
86:39:ae:99:a8:08:51:c0:a8:47:ed:34:9e:09:68:30:0b:25:
4d:e3:f4:e7:f5:1c:bf:fa:33:a8:11:9b:5d:99:67:2a:cc:a7:
c1:bf:e1:06:00:42:1c:fe:90:a4:1e:2e:46:11:b5:4c:87:06:
a4:a3:3e:dc:c9:21:e0:0f:dc:4f:20:1b:50:9a:cb:7a:27:8e:
32:8a:52:bc:9b:27:4b:54:7d:dd:ff:ca:1c:7e:dc:0a:a4:15:
47:5c:b8:35:e0:3e:28:04:7e:e4:d4:de:b3:bf:cf:f9:20:74:
dd:bf:75:cf:67:c9:64:8d:1e:c5:99:40:e9:db:9e:b3:b5:f9:
22:aa:df:18:31:10:a1:4f:56:dc:8a:59:1e:b2:60:c8:62:10:
b7:54:ea:5d:2f:75:83:79:4f:f0:25:fc:24:0e:aa:0d:43:a2:
62:bd:b7:23:d4:8a:c0:4f:64:3f:26:64:01:c1:db:67:32:35:
9f:de:98:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 19:20:28 2024 by rpki-client on console-fra.rpki-client.org