Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
File: DAHrsNsEzE1pGCs47A30sIkiJ40.mft (raw, json)
Hash identifier: QVxGcgq/yK9VBj68+Jzazsxr+kDdLO7QPf9KIWel/pM=
Subject key identifier: 8C:C4:ED:6A:77:9F:F5:47:F8:2B:74:CC:22:5C:1E:32:2A:2B:46:D1
Authority key identifier: 0C:01:EB:B0:DB:04:CC:4D:69:18:2B:38:EC:0D:F4:B0:89:22:27:8D
Certificate issuer: /CN=0c01ebb0db04cc4d69182b38ec0df4b08922278d
Certificate serial: 018F4B6CC7D9F7BFE0DDF3AB129B73F43FF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
Manifest number: 1154
Signing time: Mon 06 May 2024 01:02:51 +0000
Manifest this update: Mon 06 May 2024 01:02:51 +0000
Manifest next update: Tue 07 May 2024 01:02:51 +0000
Files and hashes: 1: DAHrsNsEzE1pGCs47A30sIkiJ40.crl (hash: ay8RcsdXXVt2PqAyEvvENf2HC7CY67VmS/xg/Pe4s8E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 01:02:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4b:6c:c7:d9:f7:bf:e0:dd:f3:ab:12:9b:73:f4:3f:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c01ebb0db04cc4d69182b38ec0df4b08922278d
Validity
Not Before: May 6 01:02:51 2024 GMT
Not After : May 7 01:02:51 2024 GMT
Subject: CN=8cc4ed6a779ff547f82b74cc225c1e322a2b46d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:35:3d:47:2d:5d:e5:2b:12:fe:e0:6a:1d:21:
9f:8b:59:ff:86:9d:b4:ef:cb:8e:97:5f:b7:21:46:
48:74:b7:c7:77:f8:05:4b:81:15:bd:1e:75:f4:d7:
76:c2:7d:e3:a0:28:d4:3d:29:0e:16:f6:eb:f2:ff:
06:db:b8:f4:37:de:ea:78:fd:6b:e8:2e:72:ce:3b:
6e:01:7a:22:72:d0:b4:24:ee:7b:33:be:8d:72:ca:
ef:2b:e7:5b:22:c5:bb:bc:3d:f9:6e:ee:02:5b:f3:
9e:82:47:3e:01:ac:3b:a6:ef:ac:ca:f9:3c:83:71:
31:e0:13:13:c1:a3:00:73:cb:b0:74:3b:a7:24:4e:
81:6e:54:a9:9d:30:ee:eb:e0:df:b7:a5:dc:f8:19:
55:c4:70:c1:4e:cc:62:e4:ef:23:e6:71:5d:62:56:
a5:ca:84:b4:02:ca:6d:0e:68:0c:7a:4a:00:88:5f:
4a:ae:ac:c0:d5:55:67:91:ab:7b:55:12:ab:ce:04:
2e:f3:3e:56:da:fe:c5:1b:66:48:7a:9c:d1:df:a9:
e4:a6:64:65:86:78:ca:ff:68:d3:7c:cd:7c:48:af:
c8:01:ad:f2:8c:28:46:39:9d:b6:a5:6b:f4:ce:f3:
bb:d8:9a:e5:ca:ad:1a:e7:0a:0e:b0:cc:2a:cd:e6:
3b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:C4:ED:6A:77:9F:F5:47:F8:2B:74:CC:22:5C:1E:32:2A:2B:46:D1
X509v3 Authority Key Identifier:
keyid:0C:01:EB:B0:DB:04:CC:4D:69:18:2B:38:EC:0D:F4:B0:89:22:27:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:5d:54:4a:82:00:59:56:70:11:9d:75:6c:98:07:bd:24:15:
2c:36:34:3e:7b:2e:9e:40:8f:b0:44:51:93:86:24:af:5e:0e:
3e:fc:ad:ec:dd:35:39:73:23:f1:f4:42:fb:4f:42:76:fd:95:
90:d4:32:b4:36:19:51:b1:22:0a:f4:1b:64:a2:9f:26:07:10:
0f:00:43:aa:bd:16:ca:22:bd:15:df:c0:84:2c:a8:ad:9a:2b:
25:3e:f6:a4:38:89:f8:19:28:a3:47:b0:e2:65:b2:f8:f4:c8:
b2:44:16:f6:6b:27:3e:c1:6d:05:fc:e5:b3:ce:de:6d:d2:da:
b6:c2:93:67:b2:83:c4:ab:21:20:a3:3d:a5:22:3b:e3:e9:30:
c8:8b:c6:b6:08:c3:c1:b0:6e:00:fa:4a:16:de:5b:11:cb:25:
bc:ba:28:53:9f:b4:f8:c8:a2:24:0a:f1:d5:fb:99:5b:e7:aa:
bf:5f:56:1b:8d:01:4b:9f:6b:60:80:d4:30:be:6c:38:bb:0f:
3c:ef:a9:01:92:cd:ce:fc:5e:16:50:a7:fd:9e:12:5f:15:3d:
af:82:b5:73:d3:3b:5c:8d:d2:88:d6:d0:69:0e:fa:3b:1a:3a:
2c:28:f5:d0:85:c9:9a:89:26:09:c3:42:34:69:2d:9b:2c:95:
8e:60:77:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:09:52 2024 by rpki-client on console-ams.rpki-client.org