Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd07-837b-404a-8374-baaa9df517e7/1/Dwtr5Xhb-hruttYyBayhdrcqIxI.mft
File: Dwtr5Xhb-hruttYyBayhdrcqIxI.mft (raw, json)
Hash identifier: sRYOYGPc6FLbJnmKKh95pz+Tem8qujlT7ILa3T41jxk=
Subject key identifier: 76:FE:0E:38:C4:71:B0:2B:D2:52:9A:8F:5B:63:B1:C0:1F:58:1F:CB
Authority key identifier: 0F:0B:6B:E5:78:5B:FA:1A:EE:B6:D6:32:05:AC:A1:76:B7:2A:23:12
Certificate issuer: /CN=0f0b6be5785bfa1aeeb6d63205aca176b72a2312
Certificate serial: 018F325182C457D83270707DAFEF0165E0A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dwtr5Xhb-hruttYyBayhdrcqIxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd07-837b-404a-8374-baaa9df517e7/1/Dwtr5Xhb-hruttYyBayhdrcqIxI.mft
Manifest number: 0628
Signing time: Wed 01 May 2024 04:02:33 +0000
Manifest this update: Wed 01 May 2024 04:02:33 +0000
Manifest next update: Thu 02 May 2024 04:02:33 +0000
Files and hashes: 1: Dwtr5Xhb-hruttYyBayhdrcqIxI.crl (hash: SaE0rb8uqiaCa/DlgTtsPtGoknRybH4SXXqNdsUqenE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd07-837b-404a-8374-baaa9df517e7/1/Dwtr5Xhb-hruttYyBayhdrcqIxI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd07-837b-404a-8374-baaa9df517e7/1/Dwtr5Xhb-hruttYyBayhdrcqIxI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dwtr5Xhb-hruttYyBayhdrcqIxI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 04:02:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:32:51:82:c4:57:d8:32:70:70:7d:af:ef:01:65:e0:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f0b6be5785bfa1aeeb6d63205aca176b72a2312
Validity
Not Before: May 1 04:02:33 2024 GMT
Not After : May 2 04:02:33 2024 GMT
Subject: CN=76fe0e38c471b02bd2529a8f5b63b1c01f581fcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:33:97:fd:2b:7b:4d:9b:23:71:a5:1c:2c:83:
91:62:a2:b4:e6:7e:60:17:0c:19:2c:37:42:8f:43:
05:b5:a6:fb:7d:76:0e:ee:23:cc:38:a5:aa:8d:fd:
1d:f6:b3:a1:1e:ce:29:ea:2f:8c:8a:0b:8c:23:d9:
31:76:8e:4c:aa:83:2b:ef:7a:4d:bf:db:28:02:59:
e5:a7:9f:00:9e:18:ef:bb:93:66:cb:1c:13:67:50:
7a:67:c3:3e:53:9c:1a:12:df:66:17:05:6c:22:50:
4b:c6:2f:03:6c:28:1e:e7:8a:aa:69:57:a5:79:4d:
12:46:d4:9d:2e:b8:87:a3:25:65:1d:fb:34:d6:17:
ad:b4:1c:e9:17:db:8e:30:6b:15:73:f2:eb:48:e3:
b4:bd:3b:ee:e9:22:5b:60:1e:05:d9:94:ee:a8:58:
a4:f2:db:6d:8c:63:e6:05:93:7f:eb:9d:f4:87:01:
a5:0f:a7:36:e1:ea:e6:08:1f:87:25:51:0d:f6:d0:
89:dd:33:e2:5c:cc:c0:de:60:94:7a:b2:f4:0c:e4:
8a:07:9f:d0:ed:21:82:a7:a0:3f:27:54:6e:74:9e:
23:5a:16:b3:d9:56:d7:bd:68:69:38:f0:60:ba:d1:
8c:16:21:f3:51:d2:70:91:8a:36:57:d5:b1:76:c4:
2b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:FE:0E:38:C4:71:B0:2B:D2:52:9A:8F:5B:63:B1:C0:1F:58:1F:CB
X509v3 Authority Key Identifier:
keyid:0F:0B:6B:E5:78:5B:FA:1A:EE:B6:D6:32:05:AC:A1:76:B7:2A:23:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dwtr5Xhb-hruttYyBayhdrcqIxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd07-837b-404a-8374-baaa9df517e7/1/Dwtr5Xhb-hruttYyBayhdrcqIxI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd07-837b-404a-8374-baaa9df517e7/1/Dwtr5Xhb-hruttYyBayhdrcqIxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:d0:ac:09:7c:64:a4:e6:57:17:30:5c:1f:10:1f:4e:ba:81:
d6:37:38:a8:77:9b:60:ef:ba:14:16:c0:d9:17:c2:cd:18:55:
d4:00:66:de:22:f2:d1:f4:85:5b:39:c2:0e:00:44:5f:e4:e7:
f9:74:e2:a9:b9:27:5f:45:db:42:28:74:89:54:a7:53:6e:03:
b8:ac:23:6e:a4:8c:52:c0:23:05:91:86:eb:9a:7a:f9:70:7e:
37:ce:49:f8:9a:57:37:dc:5e:87:3f:5d:07:1d:8f:b8:2b:af:
86:6f:51:6f:2b:a4:15:29:3d:68:15:1b:44:dc:5c:b7:8f:e1:
65:d9:67:83:22:f7:1c:1f:1c:c6:2a:c5:e2:a4:8e:55:df:6e:
9b:e0:e2:0c:d8:90:33:10:03:9b:6b:53:49:7e:3c:1e:7e:8b:
97:9f:e5:25:b8:e7:d2:f1:fc:d2:08:56:54:b3:71:09:2c:82:
f8:c1:ef:b9:2b:c4:ff:04:1e:bb:1d:38:5c:d4:43:77:26:ed:
a7:ea:40:a4:a9:4f:32:e3:3d:f0:53:3d:09:1d:6a:1a:d5:2f:
2c:f9:16:0e:68:d3:70:fb:9d:4b:21:2a:81:63:5f:65:40:47:
e8:11:52:b0:d8:c8:cc:fd:88:f3:81:4e:f0:e8:39:96:8a:99:
17:cf:59:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 11:06:51 2024 by rpki-client on console-fra.rpki-client.org