Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft
File: 1XfOFDQjLYCBldDKcKs5HfsHry0.mft (raw, json)
Hash identifier: U/wfM3L3HUf2R6ErDc7W/7X743kbJ3pIohlzTuHvDdk=
Subject key identifier: 53:81:11:E8:3A:91:77:39:A8:A1:6E:33:C2:EF:EF:45:77:6D:9C:B6
Authority key identifier: D5:77:CE:14:34:23:2D:80:81:95:D0:CA:70:AB:39:1D:FB:07:AF:2D
Certificate issuer: /CN=d577ce1434232d808195d0ca70ab391dfb07af2d
Certificate serial: 018F448DF53B28AC513775BAEDECAB529335
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1XfOFDQjLYCBldDKcKs5HfsHry0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft
Manifest number: 1156
Signing time: Sat 04 May 2024 17:01:45 +0000
Manifest this update: Sat 04 May 2024 17:01:45 +0000
Manifest next update: Sun 05 May 2024 17:01:45 +0000
Files and hashes: 1: 1XfOFDQjLYCBldDKcKs5HfsHry0.crl (hash: HZoV+zwswQIosYDfCZ0s2FLLgKyW7TdOB2A2EhcLldc=)
2: SLB1xTCkKxdzw9ipc9RKoPP7cR4.roa (hash: mXN5H9M591dVGFZHZtlXHkKLrRI9XATDkzgbkYTKEyo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1XfOFDQjLYCBldDKcKs5HfsHry0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:44:8d:f5:3b:28:ac:51:37:75:ba:ed:ec:ab:52:93:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d577ce1434232d808195d0ca70ab391dfb07af2d
Validity
Not Before: May 4 17:01:45 2024 GMT
Not After : May 5 17:01:45 2024 GMT
Subject: CN=538111e83a917739a8a16e33c2efef45776d9cb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:f4:bd:2f:38:62:08:bf:c9:4a:f1:e8:f8:27:
37:89:81:f1:d2:f9:92:32:58:73:be:53:2c:85:45:
96:24:82:64:6b:61:85:4e:fb:f9:44:a8:49:a8:93:
4b:c9:79:af:b8:4e:79:65:77:1f:24:6a:99:67:8a:
25:6a:6e:64:85:f3:d7:3a:a9:22:01:33:42:2a:ca:
1a:2c:de:90:a1:dc:7b:25:05:13:b6:86:f1:fb:a6:
36:0f:36:0a:32:f9:7b:c5:74:16:7d:48:57:82:87:
23:7b:e3:da:e7:24:10:7c:38:9e:51:df:ab:24:9c:
ed:9d:6a:70:97:40:09:9c:ec:95:a9:3f:98:60:aa:
ef:66:b6:ee:90:cc:2c:ca:13:ff:d3:bc:58:8a:ea:
33:75:d4:7b:0d:b0:62:54:a6:28:0b:2a:b6:8a:3e:
78:0d:84:86:8e:9c:2d:90:26:96:ba:4e:a2:d9:af:
8e:0d:3e:56:11:f4:8d:39:29:96:f2:3e:7a:73:fb:
59:68:cc:46:c4:2e:b7:66:65:df:4d:47:1c:b5:c5:
a8:a1:f5:93:1c:9c:e0:78:92:70:2d:be:83:e4:b1:
2f:35:51:88:42:e6:6d:c2:59:85:82:31:38:1a:5e:
2a:e9:d4:e1:94:d3:9c:5a:cc:1c:fc:3f:6c:c1:49:
6c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:81:11:E8:3A:91:77:39:A8:A1:6E:33:C2:EF:EF:45:77:6D:9C:B6
X509v3 Authority Key Identifier:
keyid:D5:77:CE:14:34:23:2D:80:81:95:D0:CA:70:AB:39:1D:FB:07:AF:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1XfOFDQjLYCBldDKcKs5HfsHry0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:00:e3:7c:52:32:5c:10:82:f7:94:e5:07:32:5c:1a:77:37:
16:bc:65:9c:56:d7:3f:41:15:a5:a5:6d:52:5e:1c:66:af:89:
65:2d:ad:7b:87:a0:da:f0:74:19:b1:9d:a3:3c:84:7d:1c:a9:
a6:91:22:d9:08:e2:e5:3c:35:1b:26:88:05:b9:6c:93:49:76:
78:eb:5c:6b:98:b1:f2:02:c3:7c:2e:69:61:08:78:0f:90:5a:
fd:ee:9a:d8:9a:49:37:18:04:b2:16:7a:c7:58:d6:ef:54:85:
25:1e:95:b8:44:e4:27:90:c8:fb:9c:f9:7a:7e:76:73:5d:b8:
4c:05:ec:0e:67:2d:34:c9:e9:de:61:b2:3e:8e:5c:a5:3e:67:
9d:4f:4e:81:42:6e:78:ad:8e:72:89:15:9f:2a:e4:e2:32:25:
1d:e6:c6:a5:0b:d1:a6:92:da:45:c9:56:c7:ae:62:ec:4e:8c:
74:d4:4f:3a:98:bb:83:d7:cc:1d:38:4b:12:85:e2:95:4b:07:
7d:a3:53:0c:21:5e:77:d9:12:15:35:3a:4d:e9:27:3b:21:37:
62:2f:ab:97:39:d8:fa:af:3a:e7:ad:96:9c:c0:31:35:df:8a:
0e:18:93:43:3c:a9:74:a3:c4:89:0d:18:ce:9d:47:90:22:05:
2b:8f:0b:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 18:51:44 2024 by rpki-client on console-ams.rpki-client.org