Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
File: ALlD7lfDXyx_T-wGhel9YDsHytI.mft (raw, json)
Hash identifier: aTnJS0DOcTZ2Lvl93UAEERA4p708+8FJm4NB50mOZzA=
Subject key identifier: 8C:CD:7D:0B:DF:26:BF:85:86:03:62:05:3D:E7:90:5A:FA:62:3F:C6
Authority key identifier: 00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
Certificate issuer: /CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Certificate serial: 018F3588AD2732DDB4B99AAA09B7133BEF9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
Manifest number: 0510
Signing time: Wed 01 May 2024 19:01:40 +0000
Manifest this update: Wed 01 May 2024 19:01:40 +0000
Manifest next update: Thu 02 May 2024 19:01:40 +0000
Files and hashes: 1: ALlD7lfDXyx_T-wGhel9YDsHytI.crl (hash: 1iyJjEHmrFXfaGljTlI36LPgAM6yWtnnTbCIDuZRNyU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 19:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:35:88:ad:27:32:dd:b4:b9:9a:aa:09:b7:13:3b:ef:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Validity
Not Before: May 1 19:01:40 2024 GMT
Not After : May 2 19:01:40 2024 GMT
Subject: CN=8ccd7d0bdf26bf85860362053de7905afa623fc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:5c:84:c4:da:a0:04:99:76:a5:5e:cc:53:06:
3e:ec:43:e3:62:1b:20:8d:61:fb:cd:60:55:07:cc:
b3:11:86:2f:df:4b:41:1f:be:58:c8:64:c6:6f:b2:
8c:54:e4:33:33:03:e9:07:0c:54:f7:05:4a:d9:2b:
a1:27:14:75:ee:04:06:bb:b5:69:8a:87:7c:0f:9d:
27:da:36:81:87:a5:9c:d5:14:08:7a:da:9f:46:fb:
2d:70:a1:b5:bd:a2:c5:fa:5a:58:7a:ee:b1:25:3d:
b2:d3:fc:ff:71:08:62:ca:6a:f8:b0:34:ba:36:0e:
44:da:7c:4b:8a:30:c0:40:73:86:60:2d:73:ac:26:
a4:5a:37:20:6a:79:cc:56:c3:7c:cf:27:a5:65:6c:
4e:18:e6:f4:31:50:d0:23:e4:a7:71:c7:79:15:6e:
85:49:66:de:5c:e4:9f:7f:b5:9c:d9:40:6b:30:5a:
df:e4:a4:27:32:e9:92:22:c9:17:1c:e6:4c:3a:87:
64:7e:96:f6:7d:97:45:12:ac:83:40:87:38:20:17:
80:61:03:06:22:6c:f4:9b:e7:b4:63:17:14:b2:fe:
37:95:96:57:47:a4:ba:2c:98:33:62:4e:e7:21:b6:
57:c3:e0:9f:a8:ad:ff:cd:e4:fc:16:9c:dc:ff:ef:
39:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:CD:7D:0B:DF:26:BF:85:86:03:62:05:3D:E7:90:5A:FA:62:3F:C6
X509v3 Authority Key Identifier:
keyid:00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:40:e4:94:80:99:ae:ae:81:a8:59:5e:98:f4:41:64:16:cd:
61:30:82:ee:ab:3c:50:56:19:0b:78:f4:2f:8e:2d:36:a5:cc:
86:53:33:78:8a:ce:16:17:fe:f7:f4:23:89:e5:45:53:be:d1:
4c:b3:8b:83:af:e0:d3:50:b5:26:34:8b:ca:80:76:43:f8:37:
49:ba:b4:fc:47:8d:67:f9:23:e9:ab:1a:93:7e:24:f6:9c:b0:
e5:69:2f:0e:36:00:90:91:0e:eb:8f:bd:7a:04:dd:8f:13:0a:
37:b8:5a:62:3a:97:9f:96:8c:05:f1:2c:1b:80:a3:a6:05:41:
d6:d3:b3:3d:b9:c1:13:64:c4:38:9e:a5:0f:0b:5f:d9:e2:b4:
0d:fb:3e:2f:8e:a5:be:0f:56:3e:b1:01:b5:37:24:9a:f5:51:
14:3c:68:cc:2f:ab:97:cd:31:b2:29:5f:5c:7d:19:a2:2c:8c:
b3:f2:c0:7e:57:3f:bb:5a:bc:61:49:35:3c:a0:1a:d7:01:6a:
25:72:1a:af:0b:2c:b8:46:49:37:aa:84:51:d0:39:aa:ac:cb:
a3:2e:f4:f9:44:54:3e:9a:1e:f8:e2:f3:0a:ea:1c:d2:99:27:
57:be:62:0a:da:c3:21:02:d9:95:33:02:db:b0:0d:21:f5:c8:
c8:8a:c6:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 01:17:01 2024 by rpki-client on console-ams.rpki-client.org