Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
File: hyyq6fD7ed7GhEvqzowiHO9NMsk.mft (raw, json)
Hash identifier: PsKEkynh62HbQnsyaPuYaoiywSO5FpVPSaUfJ8RSM8Y=
Subject key identifier: 68:CD:28:E3:37:32:10:DA:D6:E3:85:4C:40:C0:39:DE:56:A1:47:0A
Authority key identifier: 87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9
Certificate issuer: /CN=872caae9f0fb79dec6844beace8c221cef4d32c9
Certificate serial: 018F87495C66ADFC0444AB022C85C7E5D653
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
Manifest number: 0C00
Signing time: Fri 17 May 2024 16:01:22 +0000
Manifest this update: Fri 17 May 2024 16:01:22 +0000
Manifest next update: Sat 18 May 2024 16:01:22 +0000
Files and hashes: 1: hyyq6fD7ed7GhEvqzowiHO9NMsk.crl (hash: bbTDK4YsVlya5B7cDdtixGjammYaA0zyJ21c81OydQM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:5c:66:ad:fc:04:44:ab:02:2c:85:c7:e5:d6:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=872caae9f0fb79dec6844beace8c221cef4d32c9
Validity
Not Before: May 17 16:01:22 2024 GMT
Not After : May 18 16:01:22 2024 GMT
Subject: CN=68cd28e3373210dad6e3854c40c039de56a1470a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:48:d1:03:98:32:d8:09:50:6a:1a:0c:28:e9:
d0:13:e1:64:a3:4f:f6:5c:9e:e2:39:1b:6c:2d:2c:
b7:c5:0a:f5:90:1d:db:4a:73:1c:8e:ea:8d:3b:1f:
c6:48:f8:04:b6:a6:27:35:ed:b1:a0:73:a6:5d:1c:
c6:d4:71:81:94:aa:d3:10:5c:0b:f9:b8:51:71:4e:
af:60:62:c3:12:4c:72:cb:45:03:e9:6d:08:0f:6e:
58:50:cc:e4:1f:1c:bf:90:bd:5a:b8:85:ad:70:03:
44:06:cd:d4:2a:27:be:f7:ef:08:0a:62:72:d6:28:
12:56:3f:c0:10:d5:98:ff:5f:8f:be:b4:0d:1d:ea:
cd:18:fd:99:52:00:1b:0d:3b:37:1d:42:3b:8d:03:
3e:da:25:f3:10:75:b5:f0:a6:85:b6:69:8a:03:36:
6e:ed:58:4a:e0:cf:11:40:ff:7a:30:13:dd:0c:98:
dc:cf:7a:7d:b5:25:03:83:d8:a3:8d:28:e6:94:04:
60:ac:c3:8b:0c:9d:e7:45:52:8a:a2:40:9e:e1:a4:
1a:61:43:fd:1b:2e:ee:a3:50:94:5a:5a:d8:7a:eb:
47:ff:8e:89:27:99:ad:d5:e0:07:61:f7:45:ba:81:
79:a9:98:01:a3:bc:51:8d:25:fe:90:3a:ed:c0:7f:
9b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:CD:28:E3:37:32:10:DA:D6:E3:85:4C:40:C0:39:DE:56:A1:47:0A
X509v3 Authority Key Identifier:
keyid:87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:27:c9:0f:67:b4:c1:bd:47:6e:33:f1:74:ec:d2:7a:02:3a:
dc:a7:4f:ed:97:1e:83:d8:84:60:05:6a:5e:8c:a1:5c:86:96:
32:ab:8a:b8:d5:49:a3:8b:4d:36:2b:be:7f:60:66:0b:d5:e7:
04:68:18:cc:bd:cc:5f:45:c4:f4:c4:76:bd:a7:76:92:8a:ab:
a8:62:4b:35:69:2d:0e:24:fd:cc:bc:96:20:e8:68:df:c2:16:
dc:7a:9c:35:28:a4:0a:5a:6a:4d:e0:1c:d2:e0:06:02:c4:b2:
88:7b:ee:a3:09:32:39:0d:af:11:08:58:50:a3:cd:52:4d:bd:
85:df:db:a6:dc:b9:33:c2:1e:b7:56:97:2f:01:64:e1:c5:2c:
31:a4:9a:dd:1a:6d:b8:a4:38:7c:d6:1a:e8:87:2c:b7:49:d3:
0b:92:0f:0d:48:f3:b5:a3:78:24:41:53:a6:c7:5c:5e:5f:78:
d6:7f:d1:f9:8e:11:ab:ad:1c:24:7d:23:c6:f4:a0:f9:69:8c:
44:97:0e:22:52:ba:73:6b:b8:e3:d0:80:67:f0:a4:83:b3:82:
2b:a5:69:3f:91:36:75:50:3f:14:cf:1e:25:22:c9:63:d1:b8:
d0:64:4e:a1:5f:eb:10:84:e3:5f:9e:27:aa:8a:45:f1:e5:49:
f8:cd:cc:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 23:36:32 2024 by rpki-client on console-fra.rpki-client.org