Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
File: CYdvfc8Myud0IWBGOzjhw181bRI.mft (raw, json)
Hash identifier: Gh7gkHZz60GqaYvujx7baSftxyVZP3LRea2brp2oc3s=
Subject key identifier: 9C:AB:72:9F:4A:CD:F7:56:28:6B:51:D0:83:F2:C9:EC:5C:53:04:23
Authority key identifier: 09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
Certificate issuer: /CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Certificate serial: 018F3FD6422EEDB1F3E897162864EB10A4BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
Manifest number: 09C5
Signing time: Fri 03 May 2024 19:02:37 +0000
Manifest this update: Fri 03 May 2024 19:02:37 +0000
Manifest next update: Sat 04 May 2024 19:02:37 +0000
Files and hashes: 1: CYdvfc8Myud0IWBGOzjhw181bRI.crl (hash: ziVp+bjM61v7ettAZDwESnxMdIE7JNXwVKGgOK6Llro=)
2: Y01m_eXKWQ_kP2LoSoPXsUAMIiw.roa (hash: uzcYe7F5+i22LwizrGErC1WNYJKgwFyA16Vlk2Kx62w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3f:d6:42:2e:ed:b1:f3:e8:97:16:28:64:eb:10:a4:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Validity
Not Before: May 3 19:02:37 2024 GMT
Not After : May 4 19:02:37 2024 GMT
Subject: CN=9cab729f4acdf756286b51d083f2c9ec5c530423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:58:7c:7d:9e:a2:e2:0f:e0:78:e3:cb:b3:94:
78:ce:87:bc:4c:56:91:02:7d:0b:c9:8a:f8:a4:53:
ea:c1:8c:a5:d9:c1:47:28:4a:c4:27:19:e7:f1:fe:
10:5a:f2:e0:bf:72:dd:b3:98:90:d0:6a:5f:c6:16:
56:53:3d:fd:0a:81:e8:79:c5:1d:00:13:56:bc:03:
5b:35:e4:5f:7c:ca:c7:ba:01:5b:b9:16:6f:6a:0b:
59:3e:45:4c:42:23:d5:ae:3d:ed:29:55:ad:21:75:
c6:d1:53:de:2a:8f:fb:2e:90:eb:5c:50:61:22:4b:
18:f9:5a:64:22:d1:df:d6:ce:1a:8c:ab:5a:f9:6f:
3a:a9:17:a3:21:e7:b6:1f:9d:58:7d:5c:84:eb:6b:
dc:3e:51:3d:16:ac:e2:cf:4e:14:18:d2:b7:94:f0:
9e:20:fc:59:58:51:80:0f:f3:a5:ea:c2:24:b5:8a:
dd:41:3d:2e:99:a9:39:a4:a5:29:38:15:6b:73:c2:
69:32:2d:1a:f8:fa:bc:19:27:bb:9a:32:a8:32:65:
76:f8:da:fc:ab:98:1d:a5:97:7b:7d:70:f3:65:05:
50:d6:e4:b8:64:76:0c:0d:62:ad:c3:cf:7f:f7:99:
ba:9d:85:2b:48:f0:2b:4b:00:65:d1:a7:ec:97:be:
13:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:AB:72:9F:4A:CD:F7:56:28:6B:51:D0:83:F2:C9:EC:5C:53:04:23
X509v3 Authority Key Identifier:
keyid:09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:ab:6f:79:21:e6:f9:25:b7:41:9d:ba:09:e4:0e:2e:28:78:
97:27:14:54:22:27:8a:34:f1:e9:c7:03:f5:97:18:ba:28:50:
80:aa:e6:46:82:4c:57:ac:60:14:de:28:33:47:2b:d8:25:5e:
29:09:82:41:6e:9f:09:cf:1a:02:3e:63:d1:f5:a1:bd:94:68:
6a:c7:2b:14:27:4d:62:2c:4d:fa:c6:cc:ad:58:0c:41:42:01:
e1:06:78:f8:f7:35:dc:6f:97:5e:a7:7c:d2:c9:fd:8f:e3:d4:
cc:d0:34:56:10:7a:49:8e:c6:28:d0:3d:e9:d1:17:22:7c:84:
e6:21:fb:6e:91:32:21:90:ff:50:1e:90:e2:68:b3:a7:66:a2:
a2:ba:2f:34:a6:c4:ab:06:21:e3:2f:77:a4:63:8c:f9:6c:40:
bc:c8:78:60:fe:ed:a3:49:9a:c1:a8:0d:53:54:bd:cd:21:7b:
5d:49:77:d2:ca:a2:b7:ca:5d:1c:e4:0f:2b:25:55:08:85:1b:
9a:31:37:1e:62:26:a6:3c:f5:24:da:16:49:38:cf:b4:f0:03:
91:af:17:0b:f3:c5:8f:5a:41:57:9b:65:b5:99:13:f8:31:74:
76:8d:10:2d:a0:d3:fa:98:8e:1f:d0:2c:8d:53:6c:28:13:10:
3d:42:c3:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:17:35 2024 by rpki-client on console-ams.rpki-client.org