Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
File: fKWYMippkFpcbgKVoMoftVZmwUs.mft (raw, json)
Hash identifier: Xk3BP7je66h2W1UZX6Jf8GDec6+cPkLPpn3yqIA8uv4=
Subject key identifier: 1A:D6:7D:96:0C:FF:F9:11:63:23:C4:0E:F2:F6:9A:93:67:9C:90:63
Authority key identifier: 7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
Certificate issuer: /CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Certificate serial: 01901DECBDDEFB59A9492436C3764DAD687D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
Manifest number: 016A
Signing time: Sat 15 Jun 2024 22:02:52 +0000
Manifest this update: Sat 15 Jun 2024 22:02:52 +0000
Manifest next update: Sun 16 Jun 2024 22:02:52 +0000
Files and hashes: 1: fKWYMippkFpcbgKVoMoftVZmwUs.crl (hash: Jarw0upW7OlQQavzv6FZSfNultEL9aBq4WJDy0nMv/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 22:02:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1d:ec:bd:de:fb:59:a9:49:24:36:c3:76:4d:ad:68:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Validity
Not Before: Jun 15 22:02:52 2024 GMT
Not After : Jun 16 22:02:52 2024 GMT
Subject: CN=1ad67d960cfff9116323c40ef2f69a93679c9063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:97:3a:5e:65:9c:21:51:21:8f:21:99:31:c8:
d4:35:ee:8c:a2:d3:96:88:89:3d:7c:be:41:f4:d3:
3d:aa:1f:54:28:4a:f3:95:35:9e:26:aa:67:b7:1a:
55:02:10:4f:ca:4d:86:7a:53:62:e9:88:ef:37:51:
4b:8c:87:cd:67:94:31:9b:75:15:86:2f:17:b4:bd:
07:2c:4d:bf:df:15:ea:b0:17:3d:54:90:78:bd:6f:
ed:a9:93:bd:56:ac:64:ed:00:d0:a4:df:52:26:9e:
c7:41:e5:1a:0a:97:2b:b9:0d:e9:56:29:4d:99:94:
b7:6e:15:47:e6:fd:8d:45:4e:d9:d0:23:f9:00:85:
52:d6:bd:b5:d2:ce:66:58:c2:83:a3:59:55:40:6e:
c7:a3:8f:69:f6:34:c8:ae:68:79:61:7d:78:80:ba:
63:f6:b9:ae:0c:a7:9d:cc:2b:fc:89:5b:c0:b1:1c:
29:12:6f:cb:a8:2b:9c:17:66:a9:e3:47:71:c4:3f:
91:44:ee:2e:4c:9c:5f:b9:7d:64:4a:98:83:a7:d3:
f8:9f:62:73:36:65:55:93:a9:22:70:b3:f4:3b:37:
84:48:13:32:6b:a5:ba:86:1a:e6:71:13:3a:74:02:
e3:0e:2b:58:23:1d:30:4a:74:8f:8f:d6:2d:f1:23:
41:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:D6:7D:96:0C:FF:F9:11:63:23:C4:0E:F2:F6:9A:93:67:9C:90:63
X509v3 Authority Key Identifier:
keyid:7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:fe:ce:5e:64:6c:df:f6:2b:71:cc:d4:f7:3e:1f:70:7b:e1:
3a:fe:a2:89:f5:88:9d:4d:a5:a4:7a:79:44:6f:ed:fb:13:09:
e2:f2:a7:74:c2:6b:d5:80:d4:83:5c:02:4a:22:79:fa:a9:89:
19:82:95:12:36:a7:01:a4:6e:6c:c7:9f:b1:dd:f3:ed:34:7f:
ac:ce:cb:24:59:44:51:2b:24:76:42:ed:23:a4:d2:e4:22:3a:
09:c8:9c:a0:69:27:aa:39:b1:35:67:eb:12:5f:f9:a2:be:d5:
40:b2:89:24:85:40:ac:a1:c9:a9:fe:d3:14:f2:d0:6b:ec:16:
90:30:09:bf:8a:6f:94:9f:c2:0f:7b:f4:98:56:ba:6f:09:cd:
e2:6c:ee:05:6a:98:58:c7:6e:1e:ec:96:51:0d:1d:b5:81:9e:
78:b5:52:97:b0:a1:c1:b0:07:04:57:75:3d:6c:6f:d7:fa:e7:
7b:b9:b1:32:b5:7d:5a:4e:ae:35:30:0d:0d:fa:bd:3a:6b:4d:
85:f7:0d:b4:fb:4b:a1:b4:9a:a9:ab:6e:ea:65:ec:35:da:09:
5d:c4:b9:b4:2b:b8:30:93:5c:9e:c9:1b:9e:fb:14:8a:47:a0:
20:a1:fd:e7:a3:7d:e9:b9:6d:96:f1:8a:1e:9b:e4:9a:af:50:
c8:da:fc:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 03:38:45 2024 by rpki-client on console-fra.rpki-client.org