Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
File: 8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft (raw, json)
Hash identifier: ZiPhd7CV5+Ws1a9lxn+wxl7jUDaVnt2rV5lNCJCPg2w=
Subject key identifier: EB:94:DC:24:68:7C:E8:80:2D:5B:34:C2:1F:3F:82:30:AE:14:AF:D2
Authority key identifier: F0:AC:0C:E7:00:B1:7D:49:9E:89:8E:C7:A1:47:30:40:51:57:C4:78
Certificate issuer: /CN=f0ac0ce700b17d499e898ec7a14730405157c478
Certificate serial: 018F4CB54E9148F72DD3C4BFD3CB2E1B1983
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KwM5wCxfUmeiY7HoUcwQFFXxHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
Manifest number: 1158
Signing time: Mon 06 May 2024 07:01:41 +0000
Manifest this update: Mon 06 May 2024 07:01:41 +0000
Manifest next update: Tue 07 May 2024 07:01:41 +0000
Files and hashes: 1: 8KwM5wCxfUmeiY7HoUcwQFFXxHg.crl (hash: WkQOPeAP7yy1yQpTUeuJ5fz6OvRZYoEZ+N5AVqQ5O/E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
rsync://rpki.ripe.net/repository/DEFAULT/8KwM5wCxfUmeiY7HoUcwQFFXxHg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4c:b5:4e:91:48:f7:2d:d3:c4:bf:d3:cb:2e:1b:19:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0ac0ce700b17d499e898ec7a14730405157c478
Validity
Not Before: May 6 07:01:41 2024 GMT
Not After : May 7 07:01:41 2024 GMT
Subject: CN=eb94dc24687ce8802d5b34c21f3f8230ae14afd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:04:e0:58:35:f7:2b:3d:08:e1:e0:84:5d:52:
79:5d:fa:38:a2:cb:fe:87:9a:b1:1a:5a:21:22:ec:
7f:7b:0a:50:c5:ed:ac:77:69:f8:d7:c0:ef:bc:1b:
09:90:92:20:cc:f6:d4:a7:73:c6:3a:1b:bf:92:64:
96:f1:54:08:e9:c8:b2:74:97:cd:d5:c0:c6:99:97:
98:10:ec:5b:01:dd:6e:b2:58:35:84:c0:31:ce:47:
c5:9d:90:bf:45:76:09:ae:00:ad:5f:f2:69:0b:2b:
10:5d:f7:ad:3c:58:78:b9:ff:8f:95:62:b9:d0:68:
10:09:67:d3:7f:df:cf:e4:c0:aa:94:b8:82:f2:f6:
a5:94:0c:d6:6c:fe:38:2d:4c:21:ef:07:ec:4a:01:
12:ac:da:ca:50:51:26:f3:8e:45:db:e3:20:2f:59:
13:8d:68:39:39:3d:59:6d:0b:b2:a4:3f:b3:7b:c3:
c0:e6:37:ed:98:e5:1a:c4:f8:41:dc:a4:d7:c1:60:
a9:1a:67:fc:40:dd:59:a8:b2:66:22:5f:10:68:de:
b6:72:78:eb:75:7b:d4:70:6c:01:7e:77:bb:d1:aa:
8d:4b:3b:e2:15:02:7a:26:47:02:bd:fc:8f:62:fc:
1b:f6:cb:9c:35:e2:d0:9f:7c:c1:bb:2e:77:cb:e4:
8f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:94:DC:24:68:7C:E8:80:2D:5B:34:C2:1F:3F:82:30:AE:14:AF:D2
X509v3 Authority Key Identifier:
keyid:F0:AC:0C:E7:00:B1:7D:49:9E:89:8E:C7:A1:47:30:40:51:57:C4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KwM5wCxfUmeiY7HoUcwQFFXxHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:e0:37:64:7a:51:53:ea:3a:94:c8:f2:16:b1:f3:bc:df:c0:
3a:08:dd:56:9d:3c:ef:46:ef:41:66:37:5c:b3:e3:1c:ec:d3:
4b:ff:d5:f6:b8:7d:22:59:16:ef:54:aa:71:9a:74:3d:96:23:
38:e8:49:21:ad:33:1b:d8:f5:ba:0b:d7:8f:25:c9:71:04:28:
44:87:98:ca:e2:85:5a:fb:de:4c:3f:30:8b:c8:98:e8:66:b2:
c5:40:d6:9c:bc:d5:c2:7c:2e:4a:db:88:9d:2f:70:06:ac:af:
6c:f2:17:9a:e4:ef:55:80:75:e8:e0:2f:52:59:3c:f9:4a:3b:
db:73:c6:1f:23:c5:79:9e:c6:07:7c:f4:9e:35:1e:ad:2b:5d:
0f:01:c9:b9:12:cc:d5:43:01:d7:9e:66:4f:94:1b:ff:23:cf:
7c:8f:3f:d9:12:3b:07:f3:54:35:56:4c:a3:7b:63:37:1e:10:
72:c3:3d:9b:dc:70:f0:3d:f8:e2:97:4e:04:a0:d6:7f:0b:fb:
e1:96:9c:4b:fa:55:e8:63:fa:cf:75:a4:8c:55:aa:d4:e5:18:
94:c2:7b:83:01:dc:f7:31:92:aa:42:58:23:14:d9:39:66:45:
26:a6:06:6c:22:18:e9:bf:46:25:e6:f7:b1:d5:ca:2a:0d:65:
0f:88:00:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:25:44 2024 by rpki-client on console-fra.rpki-client.org