Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/628406-3e2c-4896-82ea-250544277d5c/1/OhsBRND2_wuDzON2eUYxdFt8p6A.mft
File: OhsBRND2_wuDzON2eUYxdFt8p6A.mft (raw, json)
Hash identifier: tugYRtOMRkTysv037K2PfWB4Q7KaohsK709ODHQoZPI=
Subject key identifier: 15:94:84:6A:67:06:B9:B9:25:49:98:E3:1A:E0:E4:94:4F:59:B3:ED
Authority key identifier: 3A:1B:01:44:D0:F6:FF:0B:83:CC:E3:76:79:46:31:74:5B:7C:A7:A0
Certificate issuer: /CN=3a1b0144d0f6ff0b83cce376794631745b7ca7a0
Certificate serial: 018F8823F287FC94DFD9CCA57F188C3C586D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OhsBRND2_wuDzON2eUYxdFt8p6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/628406-3e2c-4896-82ea-250544277d5c/1/OhsBRND2_wuDzON2eUYxdFt8p6A.mft
Manifest number: 0CA9
Signing time: Fri 17 May 2024 20:00:08 +0000
Manifest this update: Fri 17 May 2024 20:00:08 +0000
Manifest next update: Sat 18 May 2024 20:00:08 +0000
Files and hashes: 1: OhsBRND2_wuDzON2eUYxdFt8p6A.crl (hash: fJmha5CiOIshQhVK5bduucwNsqbGo6ZQR1FzHxJnFBk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/628406-3e2c-4896-82ea-250544277d5c/1/OhsBRND2_wuDzON2eUYxdFt8p6A.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/628406-3e2c-4896-82ea-250544277d5c/1/OhsBRND2_wuDzON2eUYxdFt8p6A.mft
rsync://rpki.ripe.net/repository/DEFAULT/OhsBRND2_wuDzON2eUYxdFt8p6A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:23:f2:87:fc:94:df:d9:cc:a5:7f:18:8c:3c:58:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a1b0144d0f6ff0b83cce376794631745b7ca7a0
Validity
Not Before: May 17 20:00:08 2024 GMT
Not After : May 18 20:00:08 2024 GMT
Subject: CN=1594846a6706b9b9254998e31ae0e4944f59b3ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:25:f5:31:54:7c:bb:6d:62:13:f7:0c:53:e0:
18:e3:78:c5:7a:02:38:8b:bd:45:d6:2c:1b:d1:f2:
d8:a0:03:97:97:58:e5:a4:a7:ef:5c:e0:2d:e8:41:
01:7c:3d:6c:b7:45:39:37:2b:9a:a3:5d:28:4b:74:
5a:f3:35:e2:2b:4b:14:dc:a9:bc:cb:a2:fc:fb:39:
96:62:0c:ec:93:01:bc:5b:c8:c1:ef:6b:43:5e:4e:
39:25:81:63:a2:f1:c5:39:75:ff:ba:48:f3:1e:fa:
b9:14:6b:cc:28:e1:e2:27:b5:3d:e1:82:f3:de:3a:
39:c6:83:06:da:41:16:a6:22:ff:3a:c3:6c:3d:96:
27:15:91:7d:70:e3:f8:e5:ae:e6:c1:fb:ee:9b:42:
96:5b:4f:56:c2:ed:0a:83:40:7e:24:d0:6f:bf:54:
eb:db:44:d7:1a:cd:ca:7c:3b:75:82:54:93:00:0d:
7e:92:ca:4b:03:2c:02:f8:32:89:73:4b:de:da:c1:
d3:d7:71:2c:f2:61:df:5e:b5:16:b5:f8:12:60:2e:
65:9a:c8:29:a0:a5:37:55:cd:59:5e:be:ff:2c:c8:
3c:ee:56:e5:71:7b:e1:51:8a:40:8b:1e:ed:55:fd:
14:f3:77:6e:18:20:54:f3:fd:50:32:d2:bd:14:76:
48:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:94:84:6A:67:06:B9:B9:25:49:98:E3:1A:E0:E4:94:4F:59:B3:ED
X509v3 Authority Key Identifier:
keyid:3A:1B:01:44:D0:F6:FF:0B:83:CC:E3:76:79:46:31:74:5B:7C:A7:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OhsBRND2_wuDzON2eUYxdFt8p6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/628406-3e2c-4896-82ea-250544277d5c/1/OhsBRND2_wuDzON2eUYxdFt8p6A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/628406-3e2c-4896-82ea-250544277d5c/1/OhsBRND2_wuDzON2eUYxdFt8p6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:14:3c:45:0e:a3:74:d1:37:69:7a:0d:c1:e2:30:8a:09:51:
e8:30:ed:8f:04:68:59:21:ab:e4:3b:2b:f6:dd:07:40:47:44:
d2:a2:c5:83:ee:d1:a3:2d:ce:bb:e9:50:71:de:4c:5b:be:21:
67:03:48:ae:56:8b:b0:0a:33:ec:9a:73:6e:7f:c7:8c:58:02:
ee:88:8a:08:54:78:d8:cc:1e:ea:9b:be:9e:69:b2:1d:c7:5a:
16:a5:bf:16:aa:d9:4b:7b:ab:80:3c:1a:88:0a:ff:6a:a5:b3:
1b:29:71:d6:fd:40:a6:2c:28:13:2f:95:04:cf:74:10:a1:98:
8a:1c:20:fd:7c:2c:3b:aa:d6:74:77:2d:63:4b:72:e3:ba:83:
80:2b:19:88:95:7f:92:2f:28:84:5b:08:53:ad:65:1c:08:59:
62:ed:b9:c8:01:83:18:d3:59:a1:c1:37:60:77:7b:d3:0f:d6:
22:19:b3:21:29:a2:2f:2e:03:06:a3:fd:70:3c:6b:a8:01:54:
a7:56:40:06:11:5d:e4:ab:41:49:b5:d8:f2:eb:2d:c9:d4:a1:
9e:62:42:fc:a0:12:26:50:df:f5:73:98:ee:49:e3:24:e5:ca:
5a:32:51:c4:ed:76:74:40:85:dd:88:9d:bf:76:ea:a1:8d:2f:
79:96:9b:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 21:00:11 2024 by rpki-client on console-fra.rpki-client.org