Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
File: 3itcv5Z6A0nYiXBLtNYfpSajHW8.mft (raw, json)
Hash identifier: WnQ93BqfWRIKdU+vruUj3rTrxrdlkMlbuYWu3iHHZ5M=
Subject key identifier: 28:CE:F2:E9:C4:17:CB:D3:BA:14:E8:AB:61:4F:31:A7:04:F2:0A:6A
Authority key identifier: DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F
Certificate issuer: /CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f
Certificate serial: 018F551510825CD2A80B0B24B23AFC5257D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
Manifest number: 109D
Signing time: Tue 07 May 2024 22:03:14 +0000
Manifest this update: Tue 07 May 2024 22:03:14 +0000
Manifest next update: Wed 08 May 2024 22:03:14 +0000
Files and hashes: 1: 3itcv5Z6A0nYiXBLtNYfpSajHW8.crl (hash: nRQVdllfeKObLSDp+phQHicXVYPDSq8t9/Eh4NNvgHI=)
2: CF5Fuf6p40faduRYrW7BHg02paY.roa (hash: vedr0ZZjAkfj4LM3mj0KEObKJahmBve4gZjYff1C94s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 22:03:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:55:15:10:82:5c:d2:a8:0b:0b:24:b2:3a:fc:52:57:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f
Validity
Not Before: May 7 22:03:14 2024 GMT
Not After : May 8 22:03:14 2024 GMT
Subject: CN=28cef2e9c417cbd3ba14e8ab614f31a704f20a6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:74:eb:31:be:aa:57:0c:b7:6c:f0:12:74:f2:
01:e8:9f:b1:52:27:f7:72:0a:16:a0:13:46:cb:a4:
30:f1:06:a3:1d:58:ae:f5:e2:02:e5:9f:b3:ec:06:
29:0b:9d:16:5a:6c:e7:de:3d:ad:1b:66:b3:17:8f:
bf:18:19:0b:16:90:4a:ce:cb:86:7f:a3:46:8c:5a:
21:c8:3d:55:f4:58:5b:34:70:a3:93:35:19:91:1a:
1b:13:f7:95:3e:f9:ed:e9:f8:59:69:c2:88:b3:46:
67:4f:f2:aa:29:a8:57:1f:7b:57:92:d0:1d:4b:17:
73:cf:75:26:26:98:20:35:b6:52:ee:40:4f:d1:f1:
7f:6c:eb:89:78:ff:04:89:61:61:3f:85:8b:37:f8:
dd:5f:c7:c8:48:a8:1b:b1:6b:bd:ae:b1:3e:6c:cd:
df:02:dc:58:7f:4a:cc:70:17:0a:c4:6a:f8:9e:ed:
70:6e:d1:fb:2b:ad:30:75:fb:47:70:fd:61:a4:51:
fd:e2:eb:5d:d9:c2:6b:71:65:47:25:75:92:a7:cc:
08:b3:80:d1:f4:f3:c5:a1:6c:cc:8d:44:4c:43:8d:
e4:24:95:34:bb:3a:2a:7c:f7:1a:24:52:6b:78:8b:
75:eb:79:2e:d3:a4:00:24:cb:c1:86:08:1e:f5:c9:
69:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:CE:F2:E9:C4:17:CB:D3:BA:14:E8:AB:61:4F:31:A7:04:F2:0A:6A
X509v3 Authority Key Identifier:
keyid:DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:1f:a8:3b:a2:a9:bb:b1:a5:c0:ee:59:e3:33:e6:f9:8f:e2:
41:a0:93:7f:36:01:b6:5b:e0:ee:6a:0f:8e:23:02:7a:42:fb:
78:eb:e5:39:31:ac:e6:5f:f8:7c:ea:5b:de:28:41:6d:7d:06:
a1:a7:e6:00:66:c3:fe:0b:cc:70:c5:cc:ca:1d:0a:1b:fe:dc:
70:c7:37:77:03:fd:20:65:7a:48:94:ff:36:3b:d1:14:7f:c6:
ce:c9:94:65:15:ef:04:9c:5a:a9:2b:6e:05:ea:10:3e:24:27:
a4:a1:e9:b2:9d:7d:ac:23:aa:0c:bf:9f:04:f6:b2:df:2f:3a:
46:53:b5:13:83:58:cb:ff:7c:8d:b3:7c:59:6f:0c:e1:a9:bc:
48:ff:19:2c:11:f8:44:92:62:53:29:d4:cb:9a:73:7a:b8:08:
49:b9:84:7f:61:3f:05:7c:78:0b:56:9b:36:cd:b3:46:d5:15:
0a:ad:db:1d:47:80:22:50:b6:82:36:02:2e:d9:18:ca:90:10:
92:68:2c:5b:6c:d6:b5:71:3c:f7:8a:99:ea:f4:aa:69:3b:b0:
0c:85:00:24:30:5d:10:76:13:47:c1:8f:16:bd:47:67:47:16:
44:35:97:46:d1:62:a8:fa:e4:61:56:21:be:c7:5b:a6:cf:74:
8f:ad:f3:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 02:32:58 2024 by rpki-client on console-ams.rpki-client.org