Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.mft
File: Th1cISsoF0fIw-xuhm4Vs5TFu98.mft (raw, json)
Hash identifier: QAn3OlZnKK28gV2NI3KixQMyuKWXtdrCdUphy5INmCc=
Subject key identifier: 43:84:81:B7:5C:79:83:7B:34:75:59:B8:7F:2B:19:7E:8C:57:FC:FE
Authority key identifier: 4E:1D:5C:21:2B:28:17:47:C8:C3:EC:6E:86:6E:15:B3:94:C5:BB:DF
Certificate issuer: /CN=4e1d5c212b281747c8c3ec6e866e15b394c5bbdf
Certificate serial: 018F88244B931E0E477A969BD4094AAFC85C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Th1cISsoF0fIw-xuhm4Vs5TFu98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.mft
Manifest number: 08B0
Signing time: Fri 17 May 2024 20:00:31 +0000
Manifest this update: Fri 17 May 2024 20:00:31 +0000
Manifest next update: Sat 18 May 2024 20:00:31 +0000
Files and hashes: 1: Th1cISsoF0fIw-xuhm4Vs5TFu98.crl (hash: pfrFRWjrAQ6AhdN6NZDavRkQWDednqKulXhxn6VXkLg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.mft
rsync://rpki.ripe.net/repository/DEFAULT/Th1cISsoF0fIw-xuhm4Vs5TFu98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:24:4b:93:1e:0e:47:7a:96:9b:d4:09:4a:af:c8:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e1d5c212b281747c8c3ec6e866e15b394c5bbdf
Validity
Not Before: May 17 20:00:31 2024 GMT
Not After : May 18 20:00:31 2024 GMT
Subject: CN=438481b75c79837b347559b87f2b197e8c57fcfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:76:41:a6:ef:02:e7:3a:3d:27:f1:f8:96:40:
c7:ed:21:62:f0:97:03:6c:5e:20:05:8b:d5:69:a0:
9d:75:a5:be:42:d8:c4:7d:ac:f2:8b:bf:59:b9:dc:
76:f9:2b:fd:3e:5f:b5:63:1b:e0:dc:af:61:db:0d:
d9:53:61:36:cb:9f:14:60:f7:ce:63:e5:3c:6a:36:
bb:5f:fd:9d:b7:1a:b2:b7:f6:5f:b7:32:70:d4:19:
52:e0:27:76:05:bb:2a:b7:67:5b:da:61:02:48:d2:
27:b9:3b:3d:ce:93:eb:cb:be:21:ce:b3:52:68:88:
a6:90:2b:a0:ba:19:78:f0:9a:8b:5d:6b:24:9a:61:
a6:41:b7:f4:06:b7:3c:20:b9:82:ea:27:0a:81:e6:
a9:1a:9c:24:32:fa:af:73:ef:46:05:42:2d:a4:c0:
4e:4c:da:c8:24:27:9e:86:ab:95:f8:38:45:a4:c6:
2c:2e:fb:33:41:8b:73:67:bb:ac:2f:b4:d9:65:0e:
a4:c3:ec:3f:0a:e2:db:73:e1:96:35:c9:d9:2d:69:
e8:64:e9:e5:4d:01:05:ce:d9:8c:71:0e:00:98:2d:
bf:34:13:9d:99:84:e2:c3:d7:c8:45:62:52:8d:30:
ce:3e:b6:17:59:57:10:e3:4b:5f:ab:6d:8d:fd:e6:
2f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:84:81:B7:5C:79:83:7B:34:75:59:B8:7F:2B:19:7E:8C:57:FC:FE
X509v3 Authority Key Identifier:
keyid:4E:1D:5C:21:2B:28:17:47:C8:C3:EC:6E:86:6E:15:B3:94:C5:BB:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Th1cISsoF0fIw-xuhm4Vs5TFu98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:0d:e3:bf:76:ab:2e:56:8d:07:2d:85:87:51:56:94:d6:c8:
1e:b5:cd:fd:69:c7:db:a6:8a:07:d8:4d:35:fd:b7:e8:00:35:
d3:49:bf:c8:9b:df:e6:ac:19:07:9e:0b:44:4c:21:88:df:01:
11:cb:c2:fb:16:bf:e7:41:ef:12:30:24:e2:93:2e:57:31:fd:
46:77:e1:df:12:53:95:de:f8:dd:bd:db:5b:d6:eb:c1:bb:13:
c1:17:95:08:dd:9d:fe:9d:29:b5:50:63:f1:d1:1a:ce:e4:8e:
81:18:c8:d6:23:69:26:05:fd:af:b6:aa:86:77:62:20:0f:ca:
b9:8d:22:78:e6:4a:d4:d3:58:cb:3e:b1:c7:75:37:45:dd:7b:
31:a0:63:83:e9:01:08:8b:d8:5c:60:a9:50:1d:44:b3:7a:ea:
06:77:b8:7f:48:a8:11:bc:9a:7e:ad:c9:c4:64:4e:a7:fe:da:
c4:54:8f:76:b9:e4:aa:e7:a5:4c:0e:ba:77:01:19:66:3c:42:
14:c3:5e:e3:05:1e:3f:b5:9f:59:da:ce:55:19:83:69:b8:b0:
88:15:47:26:3d:16:57:2e:5c:fe:74:8b:f3:b1:80:fe:07:5d:
09:a5:0e:79:6a:3e:e2:79:d7:e3:31:1f:3f:08:6a:46:be:5e:
4b:dc:1e:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 20:59:26 2024 by rpki-client on console-fra.rpki-client.org