Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
File: dZxU7z8HSxxmiPmXVM2KONmfbKw.mft (raw, json)
Hash identifier: 8HPpgU/zwdccHtCh+Ergv3PqbdxzYfBrZX0OrRnxh4w=
Subject key identifier: E2:25:2E:6B:E8:98:4C:D5:B7:1B:94:0A:5F:32:1E:39:1E:25:A4:59
Authority key identifier: 75:9C:54:EF:3F:07:4B:1C:66:88:F9:97:54:CD:8A:38:D9:9F:6C:AC
Certificate issuer: /CN=759c54ef3f074b1c6688f99754cd8a38d99f6cac
Certificate serial: 01901E901762B464017B2BACB542BF4A40E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
Manifest number: 0566
Signing time: Sun 16 Jun 2024 01:01:17 +0000
Manifest this update: Sun 16 Jun 2024 01:01:17 +0000
Manifest next update: Mon 17 Jun 2024 01:01:17 +0000
Files and hashes: 1: dZxU7z8HSxxmiPmXVM2KONmfbKw.crl (hash: JTw3ItlJT0RMEXszooZmJeNfP2Tk9Gb25GOwWr2cbbU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1e:90:17:62:b4:64:01:7b:2b:ac:b5:42:bf:4a:40:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=759c54ef3f074b1c6688f99754cd8a38d99f6cac
Validity
Not Before: Jun 16 01:01:17 2024 GMT
Not After : Jun 17 01:01:17 2024 GMT
Subject: CN=e2252e6be8984cd5b71b940a5f321e391e25a459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:43:9c:ec:6d:33:9e:87:88:69:b3:8c:ba:6e:
da:18:8e:4a:3a:f5:b5:c5:8d:30:34:03:99:4b:f2:
4b:2f:21:ff:58:c0:4e:32:c7:80:5a:65:67:12:d9:
e2:45:c4:b7:9f:39:6a:39:cf:05:e8:6d:8b:08:3e:
4d:a6:a9:26:ab:11:8f:bb:9d:4c:7f:5e:2d:9d:5b:
6c:5f:54:7c:21:b2:fe:e4:20:a9:29:65:92:ad:c3:
05:5e:ab:a3:fd:c9:7d:e4:f9:7c:85:60:95:61:be:
66:71:1e:e1:e5:dd:f6:11:15:e6:6b:d6:6e:a5:94:
f0:f0:ab:68:68:23:a3:39:37:47:fc:4d:47:7a:b4:
5f:4a:a2:85:12:c0:d0:fc:9f:82:58:e5:98:85:01:
0f:f9:73:e2:6c:7f:c6:d4:e0:58:e8:3e:37:fd:d7:
96:fc:5e:89:68:70:fd:52:e1:0e:5d:bc:ba:4a:a5:
13:49:f3:f9:a7:7a:05:4e:dd:68:1a:59:e5:df:08:
63:3f:7a:73:12:f3:26:45:d3:de:73:d5:3b:79:00:
46:57:b2:25:c3:28:b5:b0:20:2b:53:78:b0:fe:ca:
ca:db:09:9b:e2:cc:32:df:bf:11:24:98:03:5d:d8:
9f:af:d7:f5:a5:6e:57:b8:d2:b2:18:57:89:1d:f8:
38:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:25:2E:6B:E8:98:4C:D5:B7:1B:94:0A:5F:32:1E:39:1E:25:A4:59
X509v3 Authority Key Identifier:
keyid:75:9C:54:EF:3F:07:4B:1C:66:88:F9:97:54:CD:8A:38:D9:9F:6C:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:87:68:6a:da:b5:25:62:99:f0:67:20:97:60:8b:90:31:41:
78:09:aa:b6:d1:0b:3e:2c:f7:d5:86:c8:06:ab:ad:1f:8b:1d:
19:e1:51:cd:4b:53:db:22:39:3a:0e:04:a9:76:6a:20:67:0a:
03:8d:ec:08:94:02:9e:4b:4b:b7:80:93:00:bb:db:85:27:6a:
4e:78:b4:5f:5e:fa:23:68:a9:29:74:d7:b8:25:02:1c:45:03:
fe:5d:ce:e0:31:92:e6:c0:ac:d8:d0:45:64:c4:3b:95:e2:a9:
0e:7c:a3:3a:79:09:f2:0c:df:22:6f:b8:8a:f1:21:b0:5e:b9:
2f:23:8f:05:a7:03:f2:25:db:d0:a3:7c:89:28:fc:5b:75:0e:
59:7d:52:21:00:b3:16:72:9c:7d:4a:67:0a:a7:92:f5:5b:57:
17:84:f7:12:74:3d:54:22:cc:46:43:3d:22:88:8d:7c:e2:b1:
0a:32:8f:68:c6:d7:17:ba:10:50:66:cc:66:8b:ec:ba:37:c0:
79:41:cb:14:9f:98:32:5d:40:bd:f1:18:a1:f6:ba:c2:de:47:
0b:8e:e4:27:10:cd:11:18:f0:08:21:3d:94:d2:36:01:a6:e5:
e9:07:89:18:84:a7:c2:06:7c:f8:76:b8:05:7c:35:45:7c:f7:
25:25:41:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 03:09:24 2024 by rpki-client on console-fra.rpki-client.org