Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
File: i9lSvUDOCXP5EEEfWS426QE2wuo.mft (raw, json)
Hash identifier: RT/hfupcx7GAQX9Uh5spbVsbe1gAFex4ElD7KoEbQ8o=
Subject key identifier: 94:58:B7:30:13:93:1D:20:A5:BF:B1:41:90:AE:91:57:74:34:28:3C
Authority key identifier: 8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
Certificate issuer: /CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Certificate serial: 018F8891DDB65AC803167A0C7EF14A7BB20F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
Manifest number: 02F8
Signing time: Fri 17 May 2024 22:00:11 +0000
Manifest this update: Fri 17 May 2024 22:00:11 +0000
Manifest next update: Sat 18 May 2024 22:00:11 +0000
Files and hashes: 1: i9lSvUDOCXP5EEEfWS426QE2wuo.crl (hash: Yj2+4xsQ2WBws2lj9mR9cZJZxNErQlHBOuuxWeTYLRs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:91:dd:b6:5a:c8:03:16:7a:0c:7e:f1:4a:7b:b2:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Validity
Not Before: May 17 22:00:11 2024 GMT
Not After : May 18 22:00:11 2024 GMT
Subject: CN=9458b73013931d20a5bfb14190ae91577434283c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:91:e2:1d:01:d9:c2:72:57:82:d3:51:33:3c:
99:70:59:aa:14:fa:10:01:98:2d:f8:3b:e2:d9:5e:
27:f1:07:57:27:36:bb:83:eb:39:e0:72:90:01:6c:
b3:2e:f0:dc:9d:e3:56:c8:38:6a:da:f3:53:8f:81:
c2:02:81:6d:32:eb:c0:d2:27:23:6a:4e:dd:82:0e:
44:03:91:a5:6b:55:f1:cf:f7:1d:d7:14:d2:e4:19:
92:62:01:ab:1f:f9:68:85:b1:af:32:ec:eb:cb:b6:
c7:02:ed:0d:d7:17:6c:91:64:05:4f:0d:7f:21:bb:
4c:4c:87:bf:89:c0:38:94:44:55:f1:00:54:87:f0:
c3:72:41:f4:67:5a:bf:f1:aa:7a:97:28:62:44:7a:
14:b1:f8:56:82:b5:6d:b7:02:d7:12:0d:ab:6b:6f:
3c:05:24:97:d9:62:36:97:3a:88:b9:c0:64:fb:da:
6d:0d:e4:18:dc:3a:4f:16:88:ce:7f:e9:38:07:a0:
ff:19:b2:f3:15:8a:aa:7b:94:b4:91:24:5d:03:83:
21:b8:a4:44:62:98:43:18:06:48:f9:4c:9b:c7:12:
9d:d3:89:ac:54:68:9e:6b:08:6a:48:ce:36:5f:03:
17:aa:bc:30:10:b2:0e:4f:05:41:64:01:18:f5:7f:
11:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:58:B7:30:13:93:1D:20:A5:BF:B1:41:90:AE:91:57:74:34:28:3C
X509v3 Authority Key Identifier:
keyid:8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:e4:00:11:82:1b:0e:c2:92:da:36:78:e7:be:dd:f2:b7:49:
bd:f7:10:3d:73:0e:28:73:1d:91:27:aa:4a:2a:7d:02:54:01:
05:b2:51:47:e5:1d:34:93:e5:c5:09:5b:24:40:8f:a3:34:da:
df:2e:b9:06:be:02:a6:fb:cb:7d:c2:44:70:ed:4e:02:73:fa:
d3:d1:29:66:92:13:09:7e:fe:51:b3:80:af:9b:5e:b6:ea:85:
86:0b:60:30:93:c0:84:bc:86:1d:7e:40:dd:87:7a:55:1f:ee:
81:13:57:9e:6b:ef:e5:83:e3:74:49:e0:b4:f9:80:b2:2e:67:
d4:48:4d:1c:18:f3:84:7d:90:61:0b:1f:49:3b:c2:4c:e4:d4:
b4:4c:6c:ff:a5:d0:47:af:3b:de:f5:1a:7e:56:a9:31:d8:ae:
66:c1:bb:ca:5f:61:12:de:51:d2:61:45:65:53:ca:b8:6d:33:
4f:22:61:32:c7:05:c5:4f:24:87:86:ff:9d:af:ce:88:ca:49:
07:7a:f2:7e:c3:7f:6d:71:04:2c:b3:85:f0:e3:1e:84:0c:34:
52:d1:c3:db:9a:3e:36:e0:96:f1:51:b7:54:ca:a6:80:89:fa:
f0:ee:03:b6:4d:9f:3b:29:30:7b:b3:39:1f:00:f3:2e:c3:66:
bf:76:14:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 22:52:36 2024 by rpki-client on console-ams.rpki-client.org