Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
File: umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft (raw, json)
Hash identifier: QrGT4cS8YR/5ZnsPLnc7vyHrA0aUSwmze9a9PhmtOus=
Subject key identifier: B3:A3:90:38:B9:01:BE:46:57:12:C9:96:D8:B6:BE:33:F4:09:B1:07
Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a
Certificate serial: 018F8748303422DA7ABE14D8A19776F76496
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
Manifest number: 0A14
Signing time: Fri 17 May 2024 16:00:06 +0000
Manifest this update: Fri 17 May 2024 16:00:06 +0000
Manifest next update: Sat 18 May 2024 16:00:06 +0000
Files and hashes: 1: jxiOsdvucmnDVsgs9p5wi2RadOc.roa (hash: CHBYHHTtadzNTygafnm1iSDB2OE3JS7L7mpSWf609BI=)
2: umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl (hash: j5kPz71kh3ZqgR2Fbfbub+LUAdnc+mNN0JY1SJMlX1g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:48:30:34:22:da:7a:be:14:d8:a1:97:76:f7:64:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba68595997900ded300e9925709da627e93f363a
Validity
Not Before: May 17 16:00:06 2024 GMT
Not After : May 18 16:00:06 2024 GMT
Subject: CN=b3a39038b901be465712c996d8b6be33f409b107
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:70:c0:33:41:3e:1e:7e:70:5d:35:6c:56:93:
b8:02:24:f4:80:bb:be:e1:1b:7a:28:56:02:b5:c0:
35:7b:9a:ca:08:c1:04:3a:ff:72:8e:79:da:70:f5:
7e:dc:cf:e7:42:42:35:3f:1d:46:74:e2:af:83:14:
18:92:6d:a9:d9:d7:cd:b8:44:85:66:83:a1:95:91:
e0:8d:52:ec:f0:fb:37:5e:1d:90:84:8b:46:5a:10:
be:58:70:93:c0:36:f0:3f:6d:0f:d8:7f:aa:75:2f:
22:a3:61:d2:9e:ff:97:f5:e9:b2:43:90:85:c2:f3:
5e:a1:27:38:66:d8:c9:55:e2:93:ea:0a:a5:39:6d:
b9:61:75:22:04:5b:01:93:8f:ee:0a:21:4b:93:e1:
98:58:e4:b2:81:28:5e:22:55:b5:3a:d6:cc:89:ef:
bb:64:c0:66:f9:da:c4:52:32:96:d1:0a:86:6e:d1:
27:a0:f9:a7:51:a6:e6:47:d6:3d:d2:1d:bb:c9:d1:
86:9f:07:28:a0:81:c5:84:74:6f:ea:4f:2d:32:a1:
d7:e7:4e:ed:97:ec:3b:ed:57:fa:b0:04:91:f3:26:
d2:d3:f9:87:c3:55:5a:0c:bd:f9:85:ba:4f:95:29:
42:e9:e6:a9:be:51:cb:02:44:90:50:24:81:8d:bb:
fd:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:A3:90:38:B9:01:BE:46:57:12:C9:96:D8:B6:BE:33:F4:09:B1:07
X509v3 Authority Key Identifier:
keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:94:53:e9:12:19:85:70:de:bb:45:f0:bf:e4:7f:0c:a3:87:
26:c3:e9:22:b0:0c:26:95:7a:d1:c4:b7:3f:54:45:2c:69:a2:
87:e3:d6:8c:ce:38:a4:05:08:37:b4:62:75:a3:c0:03:ab:c4:
4d:39:70:86:b6:e3:bc:c8:25:58:d9:6d:68:ab:d9:53:66:68:
b1:bf:8a:2b:a7:9b:c0:54:cb:aa:b6:fc:88:98:b4:e0:ae:36:
df:cc:ef:e6:4e:f8:3a:66:6e:a5:2b:8d:e7:fd:2b:c0:6c:d9:
bc:f1:93:f3:2a:6f:21:94:6f:1f:84:cd:80:ad:d1:bc:05:6c:
f2:8f:f2:90:53:07:8e:ce:06:92:66:20:8b:cf:58:1a:c4:02:
d8:d2:80:c8:ae:f4:d0:52:1e:ae:89:36:62:22:6a:7f:70:3b:
4c:61:ef:48:41:c7:d3:98:b2:d7:31:dc:dd:68:27:8c:fa:b8:
0f:e8:89:6c:5f:9f:c0:25:39:03:85:99:10:a7:af:47:33:1f:
11:80:fe:0d:d3:a2:48:f1:cd:48:29:30:d1:25:80:43:be:11:
37:b9:2b:47:80:fe:c7:97:13:93:9b:f0:8e:4f:1d:00:7c:43:
f9:b6:95:21:e2:86:cd:c6:cb:c5:dc:93:3f:c7:1f:55:1f:c6:
f6:8a:a8:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:58:31 2024 by rpki-client on console-ams.rpki-client.org