Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/eda3ef-cda6-43fa-b8a6-a2461e431c44/1/2aI0hf7YyFB0UjLj3FHM6tRyVKQ.mft
File: 2aI0hf7YyFB0UjLj3FHM6tRyVKQ.mft (raw, json)
Hash identifier: lFgHujNbj78h9kN15OLW4k4X+CYjMfdbwkTlgy099MM=
Subject key identifier: 4A:41:75:14:2D:7E:D7:2A:6A:21:3A:E7:7F:90:8A:C4:FB:80:82:BC
Authority key identifier: D9:A2:34:85:FE:D8:C8:50:74:52:32:E3:DC:51:CC:EA:D4:72:54:A4
Certificate issuer: /CN=d9a23485fed8c850745232e3dc51ccead47254a4
Certificate serial: 018F24CCE8943D673B22EF3CEE59B8DE8CAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2aI0hf7YyFB0UjLj3FHM6tRyVKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/eda3ef-cda6-43fa-b8a6-a2461e431c44/1/2aI0hf7YyFB0UjLj3FHM6tRyVKQ.mft
Manifest number: 0553
Signing time: Sun 28 Apr 2024 13:02:39 +0000
Manifest this update: Sun 28 Apr 2024 13:02:39 +0000
Manifest next update: Mon 29 Apr 2024 13:02:39 +0000
Files and hashes: 1: 2aI0hf7YyFB0UjLj3FHM6tRyVKQ.crl (hash: VtdQwyrYuHzAk4RB4eB2uNSZ55G94qggEpYLMrbU+64=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/eda3ef-cda6-43fa-b8a6-a2461e431c44/1/2aI0hf7YyFB0UjLj3FHM6tRyVKQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/eda3ef-cda6-43fa-b8a6-a2461e431c44/1/2aI0hf7YyFB0UjLj3FHM6tRyVKQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2aI0hf7YyFB0UjLj3FHM6tRyVKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 29 Apr 2024 05:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:24:cc:e8:94:3d:67:3b:22:ef:3c:ee:59:b8:de:8c:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9a23485fed8c850745232e3dc51ccead47254a4
Validity
Not Before: Apr 28 13:02:39 2024 GMT
Not After : Apr 29 13:02:39 2024 GMT
Subject: CN=4a4175142d7ed72a6a213ae77f908ac4fb8082bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:66:60:ea:d0:8b:52:0f:17:0c:01:4c:ba:0f:
dd:86:9a:96:37:06:7b:55:76:07:7f:96:0e:e1:56:
6c:a1:1b:f5:df:a9:11:7f:9a:01:7d:21:9a:3f:81:
88:e5:28:21:64:cf:cb:ca:9d:3a:b2:04:26:4c:75:
87:28:be:68:1d:9e:ee:cb:dc:e5:02:43:26:d4:61:
95:93:79:4a:30:96:fb:fa:fb:b1:69:15:01:c3:54:
46:4e:70:a4:7f:28:30:ed:c1:92:29:5f:7b:d0:8e:
c8:0d:55:0d:61:3f:d6:d4:8f:9f:f3:a5:49:ff:10:
02:bf:95:92:6b:38:ce:37:19:57:0a:cc:af:1b:25:
46:db:3e:5a:86:e2:be:15:50:e8:ae:5b:6b:77:9f:
3e:e6:e9:2d:18:06:2c:ec:cd:d5:af:83:76:b6:fd:
d3:35:ef:27:c9:af:69:42:a4:4f:15:23:ac:7d:bd:
73:e3:b0:a5:24:54:da:93:2f:0b:4a:3d:1b:8d:54:
66:3c:85:48:de:54:7e:84:c2:1b:30:ac:9a:ae:f0:
b6:ec:e1:d5:2c:2f:e0:ea:fb:e7:ff:58:9d:ce:de:
9e:95:ea:04:d7:a3:f6:16:5e:e5:b1:65:8c:a0:48:
f7:70:fc:ff:52:f3:9d:61:1a:8d:09:32:75:65:48:
02:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:41:75:14:2D:7E:D7:2A:6A:21:3A:E7:7F:90:8A:C4:FB:80:82:BC
X509v3 Authority Key Identifier:
keyid:D9:A2:34:85:FE:D8:C8:50:74:52:32:E3:DC:51:CC:EA:D4:72:54:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2aI0hf7YyFB0UjLj3FHM6tRyVKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/eda3ef-cda6-43fa-b8a6-a2461e431c44/1/2aI0hf7YyFB0UjLj3FHM6tRyVKQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/eda3ef-cda6-43fa-b8a6-a2461e431c44/1/2aI0hf7YyFB0UjLj3FHM6tRyVKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:64:10:2c:f3:a8:99:90:0b:ca:ef:04:03:92:11:60:06:80:
56:16:2d:6b:9c:fa:d3:d4:f3:48:9b:8a:90:8b:4b:57:c7:01:
c0:98:1a:24:f4:65:95:ec:77:14:01:f5:f8:62:d8:95:0a:80:
a0:ad:64:e4:eb:93:20:2e:57:1c:59:99:88:d3:d0:de:b1:61:
4d:76:89:d8:cc:a6:e5:34:68:7a:f8:eb:5c:e7:08:be:47:28:
82:44:3f:8d:1f:ed:30:90:03:ba:cb:1b:8d:51:a8:df:f0:32:
17:7b:e3:24:09:72:ac:2f:ce:09:a9:07:99:32:46:40:d9:65:
24:56:21:88:18:ef:f2:04:97:4f:21:53:02:26:65:ff:38:7c:
72:03:44:8a:f2:05:6a:ed:19:fd:57:a7:a5:e5:84:e3:6f:ce:
e0:c2:44:24:73:ff:6e:06:69:b9:ff:3c:55:07:a8:44:18:09:
f6:a0:0c:e4:b5:41:be:47:cb:36:e6:63:58:85:12:a7:c1:5c:
7e:b1:c0:56:53:1a:78:ae:30:4f:f1:0b:95:4c:52:ea:26:40:
71:3c:d5:ed:bc:5a:a7:5f:a1:1e:34:cc:da:60:e0:d7:f9:89:
d4:91:84:16:12:0e:63:fb:35:eb:f1:b9:cb:58:76:47:54:a9:
0f:11:b7:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 14:42:55 2024 by rpki-client on console-ams.rpki-client.org