Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.mft
File: OBssWXKaU7hBEqryyhIo80JHo5s.mft (raw, json)
Hash identifier: lOqQWp4MOojJjcMOzBp3EWh/6TcXI+N0Eb3idy+7E64=
Subject key identifier: 96:38:A2:E4:70:5A:03:D9:CE:25:B7:74:54:04:5E:B4:D8:BB:5F:5C
Authority key identifier: 38:1B:2C:59:72:9A:53:B8:41:12:AA:F2:CA:12:28:F3:42:47:A3:9B
Certificate issuer: /CN=381b2c59729a53b84112aaf2ca1228f34247a39b
Certificate serial: 018F87498E9111BE6BBE360023828670166C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBssWXKaU7hBEqryyhIo80JHo5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.mft
Manifest number: 1174
Signing time: Fri 17 May 2024 16:01:35 +0000
Manifest this update: Fri 17 May 2024 16:01:35 +0000
Manifest next update: Sat 18 May 2024 16:01:35 +0000
Files and hashes: 1: OBssWXKaU7hBEqryyhIo80JHo5s.crl (hash: UkMyzxHpuZVB5Jy0EBiFsLGcKLfnJmnGWq3xY3hZJ2U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/OBssWXKaU7hBEqryyhIo80JHo5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:8e:91:11:be:6b:be:36:00:23:82:86:70:16:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=381b2c59729a53b84112aaf2ca1228f34247a39b
Validity
Not Before: May 17 16:01:35 2024 GMT
Not After : May 18 16:01:35 2024 GMT
Subject: CN=9638a2e4705a03d9ce25b77454045eb4d8bb5f5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:1a:38:9d:6a:6e:7c:23:33:1a:38:e0:09:1b:
f9:79:c1:7d:04:e6:88:0e:e2:b1:90:97:8f:b6:7c:
b3:e8:24:a6:c6:be:ae:64:46:a4:b6:09:48:34:69:
b7:29:33:4a:b3:d4:2f:e7:70:d2:b2:27:df:01:50:
80:78:b0:6c:7f:f2:94:05:e3:38:79:f4:a5:c1:33:
fd:51:7c:94:dd:c0:5e:59:4b:b4:2c:3e:5d:7f:e4:
72:f8:3c:73:c5:3a:df:8e:2e:3e:0e:87:62:f5:fb:
12:02:19:4f:ca:0e:93:97:95:42:60:0c:df:cb:65:
4a:10:8d:5c:53:26:48:c6:e8:72:ba:eb:a1:a1:d7:
16:a6:a7:fd:ee:72:fb:78:5c:52:3c:95:95:48:7d:
79:40:ca:cf:69:20:64:3c:d7:ae:00:2a:fd:36:30:
57:92:fe:ba:b8:e7:f1:12:0e:aa:ef:96:8f:77:b3:
d7:bf:52:f5:61:27:15:f4:b1:88:b4:da:6a:d9:bb:
eb:f2:02:07:8e:1e:71:3a:05:41:65:b1:50:76:21:
31:c2:09:9b:4e:04:3a:5b:57:93:80:31:8d:41:ff:
50:0c:54:22:03:88:d1:71:d0:b8:b4:54:9f:4c:a0:
6c:59:ed:5f:6d:18:0a:20:9f:78:6b:58:db:fc:7e:
e8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:38:A2:E4:70:5A:03:D9:CE:25:B7:74:54:04:5E:B4:D8:BB:5F:5C
X509v3 Authority Key Identifier:
keyid:38:1B:2C:59:72:9A:53:B8:41:12:AA:F2:CA:12:28:F3:42:47:A3:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBssWXKaU7hBEqryyhIo80JHo5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:81:05:af:d4:a5:7d:07:3a:52:4d:34:80:38:fb:5b:63:fe:
9f:6f:e4:62:81:31:43:bb:99:00:42:eb:7c:25:ef:aa:bf:f8:
ea:fa:ac:ec:28:7f:e3:2a:be:76:c1:95:2f:78:46:2b:fa:e2:
8e:14:aa:1f:de:c6:98:5d:f8:2f:e2:1b:2a:43:ea:40:ce:20:
71:68:f7:af:e1:87:95:c1:72:45:02:a7:b1:27:2a:58:1d:ee:
13:d8:2e:64:ee:f1:a5:6e:50:fc:bd:c3:20:47:fe:20:ba:ed:
04:66:2a:63:44:20:78:1e:65:4c:14:e3:c6:fa:d3:fb:a1:34:
d8:c8:fe:cf:36:ca:99:82:29:aa:91:e8:e5:72:d0:89:52:99:
c5:0b:b5:7f:a8:01:54:35:c6:97:c4:3a:9b:18:2a:13:59:20:
c5:7a:0d:ae:32:4e:bb:a0:17:3a:4c:f7:00:24:76:76:24:7c:
1d:61:8d:9f:2f:6c:b0:dd:f8:22:d3:63:19:22:9d:79:a1:de:
d0:84:e7:b3:e9:c1:74:8b:1e:76:f6:f4:02:cc:7a:ef:7e:92:
49:88:fb:69:16:a0:7b:b2:7e:61:a0:ce:76:f4:76:76:fc:fd:
83:97:ea:16:f3:17:ab:23:1c:e8:fd:97:50:c5:c0:a9:9b:85:
8d:be:9e:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 17:59:28 2024 by rpki-client on console-ams.rpki-client.org