Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
File: 0627YSN4H_DjVBNEaseTHP9KSQ0.mft (raw, json)
Hash identifier: zBxalephom75zEZ8OtEdFPgywW7fcqVL9XqwE08d8WY=
Subject key identifier: EC:10:EC:12:4C:30:48:C3:BD:11:83:CF:CB:43:55:C4:63:97:15:EF
Authority key identifier: D3:AD:BB:61:23:78:1F:F0:E3:54:13:44:6A:C7:93:1C:FF:4A:49:0D
Certificate issuer: /CN=d3adbb6123781ff0e35413446ac7931cff4a490d
Certificate serial: 018F3A0AE66CABE9BAC0B31D2B0067CAE57E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
Manifest number: 1150
Signing time: Thu 02 May 2024 16:02:23 +0000
Manifest this update: Thu 02 May 2024 16:02:23 +0000
Manifest next update: Fri 03 May 2024 16:02:23 +0000
Files and hashes: 1: 0627YSN4H_DjVBNEaseTHP9KSQ0.crl (hash: jc5CJZoQKbu7qaH9cAx+Min/OFZEmTMBJNPNSVUFltQ=)
2: 1mQfquVHNYgUwMWxO6us21y_LNs.roa (hash: /IXTCnav+B6JbtW7vTpHkca+kxReuOTLB+4NGEflFTQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 16:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3a:0a:e6:6c:ab:e9:ba:c0:b3:1d:2b:00:67:ca:e5:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3adbb6123781ff0e35413446ac7931cff4a490d
Validity
Not Before: May 2 16:02:23 2024 GMT
Not After : May 3 16:02:23 2024 GMT
Subject: CN=ec10ec124c3048c3bd1183cfcb4355c4639715ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ca:7b:c9:54:76:da:3e:a3:57:82:8b:d0:6d:
2e:af:3e:e6:c3:17:9e:bd:54:82:76:28:14:cc:6c:
6d:a1:83:09:e3:4f:89:ce:4a:c2:b0:7d:b5:fb:6f:
25:1e:8c:a4:de:b7:53:e4:1f:af:22:e3:27:90:79:
e0:3b:57:80:be:a3:e7:99:8c:89:a8:b0:e9:25:9b:
77:5a:eb:4d:b8:50:f8:9e:19:7d:eb:12:12:61:f4:
83:dc:64:a3:c6:6f:e3:7e:ec:33:e9:0e:d0:03:02:
a7:c9:33:81:cd:bc:e4:ab:60:64:d2:82:da:f2:7f:
ea:fc:b7:e7:d0:79:ca:48:40:81:da:f9:42:44:e4:
fe:2b:2b:f7:68:a2:65:0d:c2:96:de:7e:c8:09:05:
b8:c2:59:e6:54:c6:0c:f5:0e:6d:c4:09:cb:51:91:
31:c6:30:87:c9:20:bb:6d:a0:ed:b4:a5:4b:9d:e2:
30:38:d3:65:46:dc:aa:5b:e9:dc:78:4b:97:dc:e5:
9e:f2:4e:1f:e3:d8:dd:d4:89:e9:a8:33:3e:e2:e3:
cb:cd:8e:39:23:eb:2d:37:ba:82:3c:45:41:8a:15:
77:56:25:e3:85:0a:b3:e4:d8:eb:4e:9c:61:b3:1f:
8d:19:33:11:4f:3d:b7:42:92:2a:9b:d5:17:cd:c6:
54:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:10:EC:12:4C:30:48:C3:BD:11:83:CF:CB:43:55:C4:63:97:15:EF
X509v3 Authority Key Identifier:
keyid:D3:AD:BB:61:23:78:1F:F0:E3:54:13:44:6A:C7:93:1C:FF:4A:49:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:95:a2:04:d0:c2:8f:d9:99:36:3c:11:14:89:10:81:68:ce:
a5:32:5b:bf:eb:c0:9f:6b:43:ce:e6:17:9f:e7:3c:2a:b4:22:
aa:c6:ca:e7:dc:6f:3d:2d:e0:35:38:b4:7d:ff:bc:6e:e8:e3:
16:94:93:79:0e:d1:3e:95:ea:95:01:d9:e5:90:48:18:14:be:
47:98:c1:6f:24:5a:9e:1e:7c:f8:ae:17:0e:50:fd:b5:7e:fc:
f1:59:43:3f:e5:c2:53:2c:0d:d4:88:d4:08:1a:4d:b7:d5:00:
a4:3d:ff:25:6d:d9:cd:1d:bd:7d:2a:47:d1:63:70:0f:74:22:
c7:02:87:2a:8c:94:47:ee:53:89:8f:40:e3:09:67:49:c7:aa:
3e:80:e0:da:6c:20:44:ca:9b:be:e7:98:09:29:4e:0e:0e:30:
83:56:f1:2f:35:c2:30:a0:93:56:f7:42:20:7a:28:ba:d7:69:
f5:3d:14:b4:ef:9c:27:c0:2c:75:81:9b:60:20:60:22:aa:72:
30:2c:2f:7d:b5:40:c8:6e:e8:f7:22:56:4a:9f:f1:cf:1c:09:
89:1b:9d:29:f8:b6:79:4f:12:c2:ff:3f:c4:f5:33:b5:cc:59:
d0:15:b0:a9:5a:a6:dc:d9:7b:e6:57:be:8b:1c:a2:8b:fc:34:
9a:ca:1b:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 19:46:49 2024 by rpki-client on console-fra.rpki-client.org