Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
File: XX2xSVjPTXheWe9cbGefjvVMHYs.mft (raw, json)
Hash identifier: ARTv1xukKf4Xn1Wlr6Il8IJ8Pu/3Jj+el7Qk5gGgxK8=
Subject key identifier: 2E:E1:A3:82:3B:83:11:CF:FD:74:45:C0:22:B8:1B:0D:B0:9C:1C:25
Authority key identifier: 5D:7D:B1:49:58:CF:4D:78:5E:59:EF:5C:6C:67:9F:8E:F5:4C:1D:8B
Certificate issuer: /CN=5d7db14958cf4d785e59ef5c6c679f8ef54c1d8b
Certificate serial: 018F87B6091779107D5873C657608F49BF6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
Manifest number: 0160
Signing time: Fri 17 May 2024 18:00:05 +0000
Manifest this update: Fri 17 May 2024 18:00:05 +0000
Manifest next update: Sat 18 May 2024 18:00:05 +0000
Files and hashes: 1: XX2xSVjPTXheWe9cbGefjvVMHYs.crl (hash: 5wUhlWpn+T0tY29KCjkWL+3IPH5Wfj2OVMPyQt+uUzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:b6:09:17:79:10:7d:58:73:c6:57:60:8f:49:bf:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d7db14958cf4d785e59ef5c6c679f8ef54c1d8b
Validity
Not Before: May 17 18:00:05 2024 GMT
Not After : May 18 18:00:05 2024 GMT
Subject: CN=2ee1a3823b8311cffd7445c022b81b0db09c1c25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c2:7a:2a:0d:f7:4c:a2:32:53:da:9d:cd:36:
e8:e5:9e:19:76:ec:c7:c1:0d:b8:1c:9a:4d:22:9b:
07:34:45:92:4b:b6:ce:d3:4d:e4:b1:0f:48:47:34:
b0:9b:1e:33:34:af:b5:99:22:08:b1:20:3f:f1:8f:
5d:55:8e:81:77:19:62:eb:21:78:bb:e2:45:ad:01:
76:44:c6:5b:cc:43:e4:7f:25:85:6c:68:43:29:44:
cf:52:4a:6c:f0:8f:c2:0d:b3:9c:e5:1f:de:39:29:
4d:ee:a7:de:71:e7:e9:c7:02:47:fb:8f:af:83:ef:
14:81:b2:2f:28:9c:4f:2c:15:df:b6:75:9a:a5:99:
ec:a8:0f:59:db:8f:07:87:fd:f3:c4:7d:44:c0:7f:
4d:ff:e9:47:5b:b7:dc:3f:eb:58:28:bb:8f:48:2e:
ca:a9:23:72:0b:63:91:2e:12:7b:1e:30:56:e6:39:
24:31:d2:3b:fc:7b:ac:69:b2:ef:1d:57:62:3e:f2:
cb:ab:09:77:76:69:8a:2b:a0:67:ed:1d:c4:b2:fe:
bb:ab:da:ea:62:bc:2d:64:54:c9:1b:32:3f:cd:79:
b9:01:09:62:4d:89:f5:41:72:b6:2b:fa:ee:0d:21:
5b:7c:5d:94:a0:a1:d4:5c:32:db:2b:0b:cf:8f:5e:
4f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:E1:A3:82:3B:83:11:CF:FD:74:45:C0:22:B8:1B:0D:B0:9C:1C:25
X509v3 Authority Key Identifier:
keyid:5D:7D:B1:49:58:CF:4D:78:5E:59:EF:5C:6C:67:9F:8E:F5:4C:1D:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:1a:7b:1a:5d:35:d4:eb:32:5c:fa:47:0a:af:19:bc:b9:b8:
49:00:5f:55:ca:67:1c:2e:49:eb:e7:23:3e:07:db:18:07:32:
23:1e:07:67:4f:27:e7:35:9b:0e:66:e1:5b:a7:62:72:dd:cf:
f9:6c:97:22:31:70:d7:e0:45:60:6e:fe:dd:78:71:d5:49:35:
70:1b:aa:7e:d1:e6:31:66:65:44:25:48:68:d1:fc:ae:aa:16:
de:3f:6a:bc:90:ae:25:db:44:6c:b0:22:c9:55:69:8e:09:15:
a7:6c:34:01:7a:cd:0e:b3:e7:9e:1c:2a:5b:c5:d3:12:fd:6b:
ea:b1:cb:37:41:74:97:05:4b:da:45:05:8d:25:3d:4e:17:81:
c2:6f:1b:ae:6d:04:0c:f2:d8:50:a6:6c:f5:9e:b2:23:d5:0c:
37:25:36:a3:b8:5f:9f:c4:d0:dd:62:c7:38:1f:79:56:75:f5:
44:a2:45:9a:f0:8b:29:39:b4:a2:34:d9:41:1a:db:86:ad:54:
e3:4d:6b:9c:e5:dc:77:0e:b9:6b:e5:62:91:95:8c:d2:9c:93:
9d:7c:12:bc:c5:c3:fa:ec:db:68:d2:c7:e0:a6:6e:f8:94:d9:
53:38:76:c6:be:e4:45:d5:e7:52:e2:66:09:0b:c2:47:0e:66:
75:ff:3b:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 23:45:51 2024 by rpki-client on console-ams.rpki-client.org