Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
File: h7-ak2z5rSjsWNt5imD9cd9sN_M.mft (raw, json)
Hash identifier: 4wTbhiqMj5jAx9gqoxNUJrWLnkJhq9Kcm16382896uc=
Subject key identifier: 4C:9D:99:85:36:1A:97:35:93:56:12:C9:F5:62:2A:9A:FD:81:4B:95
Authority key identifier: 87:BF:9A:93:6C:F9:AD:28:EC:58:DB:79:8A:60:FD:71:DF:6C:37:F3
Certificate issuer: /CN=87bf9a936cf9ad28ec58db798a60fd71df6c37f3
Certificate serial: 018F8748C98D8B0A2885D21AD3B0243B264F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
Manifest number: 0A39
Signing time: Fri 17 May 2024 16:00:45 +0000
Manifest this update: Fri 17 May 2024 16:00:45 +0000
Manifest next update: Sat 18 May 2024 16:00:45 +0000
Files and hashes: 1: h7-ak2z5rSjsWNt5imD9cd9sN_M.crl (hash: yu/mt9hDQaXgsoi+dx2fh2xzltMAr9lgqJpn4PutKAU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:48:c9:8d:8b:0a:28:85:d2:1a:d3:b0:24:3b:26:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87bf9a936cf9ad28ec58db798a60fd71df6c37f3
Validity
Not Before: May 17 16:00:45 2024 GMT
Not After : May 18 16:00:45 2024 GMT
Subject: CN=4c9d9985361a9735935612c9f5622a9afd814b95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ff:71:75:a9:14:f6:2a:3c:48:9d:c8:ea:a9:
f2:50:bd:86:7f:0f:07:6d:a3:22:f2:db:60:58:22:
d3:7d:e7:32:30:83:54:14:e8:44:27:4d:ba:ed:86:
f8:18:00:1f:9e:94:13:0c:78:8e:aa:52:23:ca:a2:
1e:9e:e4:17:62:f7:75:7d:7b:ec:74:03:99:b6:b5:
28:5e:a1:6d:36:09:1e:7d:89:c1:fe:e8:44:3e:3b:
cc:56:de:e7:f2:ed:69:b1:bc:16:db:b0:d6:76:fb:
bb:bb:09:c4:fc:13:ee:42:d3:7b:75:15:c6:55:ad:
3b:3d:c4:f5:8e:78:15:2a:04:53:f0:9b:5b:ba:44:
09:35:ad:1c:fd:ce:77:53:3f:ae:cf:de:dc:0e:c9:
d0:2a:1c:82:cc:2d:01:44:7f:e6:d4:ec:a9:47:76:
f7:f4:00:16:f0:d4:8f:71:87:74:12:1b:f2:3c:cf:
42:fb:62:44:14:4c:d5:38:45:9e:f6:45:84:81:97:
45:01:16:fd:23:8c:d9:68:64:88:a0:ac:e9:46:1a:
88:37:b3:86:ad:40:5b:53:5e:52:e1:f2:31:2e:f6:
7b:73:fb:29:7c:01:96:5e:62:ea:dd:ac:7d:03:55:
a6:bc:3e:bf:99:c0:83:f8:ec:6d:2e:a9:4d:2b:9e:
df:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:9D:99:85:36:1A:97:35:93:56:12:C9:F5:62:2A:9A:FD:81:4B:95
X509v3 Authority Key Identifier:
keyid:87:BF:9A:93:6C:F9:AD:28:EC:58:DB:79:8A:60:FD:71:DF:6C:37:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:31:ff:8f:47:70:17:90:43:3e:51:dd:5c:cd:a6:76:ce:54:
f6:58:9c:cf:95:68:2b:eb:6c:b9:4f:84:d3:10:4b:08:cb:3e:
91:4d:ed:3c:1a:6f:05:3c:1b:ac:e1:4a:a4:b6:29:65:90:60:
8b:c0:e9:8b:94:d5:77:b3:d3:b2:d1:77:52:6b:2f:ef:b6:fa:
ef:b7:5d:94:65:02:aa:d8:96:49:38:45:4b:11:4e:9d:e5:a0:
62:67:0b:f4:c4:a2:ef:4b:a3:e1:9a:48:99:83:db:35:5c:71:
f9:dc:3d:29:a9:9c:ca:1f:ce:43:67:f7:52:50:c4:db:4a:25:
44:77:4e:c7:31:74:c1:06:64:79:46:35:60:e2:12:59:a1:ce:
2a:e8:5b:e5:aa:67:ad:93:7d:ef:5b:0d:29:59:99:be:d1:54:
7b:07:6b:6e:df:78:9c:39:16:4b:d7:0c:26:2f:c5:5d:ba:5c:
ce:30:82:7f:3f:21:15:e0:ce:d2:a7:65:c0:bd:84:9b:dd:9f:
24:eb:47:26:c8:2f:9e:40:e4:f8:31:59:8c:d7:79:36:ce:5c:
3b:02:50:86:5d:ed:68:fb:45:30:4c:6a:6e:ed:1a:12:b5:12:
5e:d3:da:cf:a7:e4:d7:f4:f6:97:42:67:f4:6c:a9:e2:09:32:
f9:90:25:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 17:58:46 2024 by rpki-client on console-ams.rpki-client.org