Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
File: aajmjRKuKTryNpBDzVmgINrCQGI.mft (raw, json)
Hash identifier: NCRZMyGNqRXhUIKfF6FII6WukQMfM+P6B4a6qTRbn40=
Subject key identifier: 29:64:B5:07:6B:50:B1:37:2D:90:E0:1B:9D:B0:B6:10:C7:A8:14:49
Authority key identifier: 69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62
Certificate issuer: /CN=69a8e68d12ae293af2369043cd59a020dac24062
Certificate serial: 018F87B65EFE55D214944913F34B7443A063
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
Manifest number: 066A
Signing time: Fri 17 May 2024 18:00:27 +0000
Manifest this update: Fri 17 May 2024 18:00:27 +0000
Manifest next update: Sat 18 May 2024 18:00:27 +0000
Files and hashes: 1: aajmjRKuKTryNpBDzVmgINrCQGI.crl (hash: YUAUsSUSvYwOi6507aLBlQPC8Nc4yjoxVTmwA0V22gs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:b6:5e:fe:55:d2:14:94:49:13:f3:4b:74:43:a0:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a8e68d12ae293af2369043cd59a020dac24062
Validity
Not Before: May 17 18:00:27 2024 GMT
Not After : May 18 18:00:27 2024 GMT
Subject: CN=2964b5076b50b1372d90e01b9db0b610c7a81449
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3e:b8:3e:42:12:18:2a:db:b9:f4:f1:70:ea:
3c:d7:e3:82:de:fc:f8:e0:5b:f7:9d:ae:01:a5:33:
10:58:0d:07:e7:f7:55:19:24:6f:7e:6d:87:61:67:
bf:97:d4:15:6d:c9:05:ff:33:22:17:c2:c0:46:a2:
d0:e3:86:f7:3b:1a:94:d0:73:dc:90:e8:4f:27:7d:
ff:14:e1:5f:d3:cf:15:8f:57:ad:e2:73:a3:b1:66:
4a:db:53:58:d8:fa:fa:58:dd:fc:36:b4:46:48:5c:
12:ff:9d:13:2e:57:a4:a2:05:e1:bb:d2:2a:40:ae:
5c:eb:5c:52:dd:dc:49:58:54:7b:8c:84:e1:e5:2e:
b7:7f:7f:02:71:4f:22:fc:ac:c9:0f:0c:77:1c:f5:
b7:d3:fc:df:e2:03:4c:01:f1:48:85:f0:3d:b2:d7:
84:31:c9:d5:97:61:c4:7e:7f:23:72:54:7c:c2:82:
f3:3e:86:c6:d1:da:fe:90:bc:13:a7:0e:97:5d:8e:
66:32:be:0e:95:06:c7:6e:01:2a:51:05:bb:df:36:
fa:3a:68:12:39:78:a7:8d:8d:f9:25:81:94:93:8a:
b7:04:f7:f8:f0:99:6f:e2:11:e3:64:84:cf:0c:e7:
e4:a1:c5:fe:c4:92:0b:36:c7:99:a3:80:0f:a8:20:
15:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:64:B5:07:6B:50:B1:37:2D:90:E0:1B:9D:B0:B6:10:C7:A8:14:49
X509v3 Authority Key Identifier:
keyid:69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:ee:52:9d:bc:e7:3b:e9:04:a8:18:ed:f0:ce:d1:58:93:17:
e0:da:d6:4f:f7:42:f1:1b:1e:49:ed:77:d3:c1:5d:f5:08:85:
5e:7c:10:48:a8:c0:a8:91:59:3b:ea:e4:7b:41:03:ef:fb:64:
9a:fd:ec:24:79:65:d3:ad:62:2f:05:e4:5b:c4:4c:af:4d:07:
57:71:af:fe:4a:ec:d3:fd:86:99:23:19:45:25:8a:f7:bf:b8:
18:b7:27:f5:5a:f7:07:80:23:f1:02:6e:76:6f:29:3c:0a:7b:
8b:c8:32:a7:c3:9e:10:5a:21:2f:89:3b:2a:d7:67:5a:db:b2:
62:7d:2a:25:da:3e:1f:92:e1:85:b0:a7:69:f6:25:8c:a1:23:
fb:52:2a:13:1a:f7:1a:28:0a:10:c0:60:89:13:25:ab:b4:a5:
3c:11:a9:8d:05:c8:8f:5a:3a:0d:d0:12:4f:fc:43:bc:3f:61:
ff:e6:d5:d1:82:ed:43:c0:ba:08:7b:0d:55:97:24:f1:4b:bb:
2d:d7:9a:09:15:5f:5b:7d:24:f8:5d:50:9c:b8:b6:50:ce:31:
e6:e0:6d:67:d3:f1:ce:4b:89:f1:9d:45:f9:7c:48:ed:cc:8b:
6e:5d:61:f2:85:a3:cc:44:9e:ac:4f:b5:10:87:b6:f9:0e:ef:
1e:b0:a4:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 20:14:01 2024 by rpki-client on console-fra.rpki-client.org