Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/b3d3d9-7928-458d-836e-3303afe5c89b/1/DoX9PJ-VWLIYAi_0CfxVT67nkJA.mft
File: DoX9PJ-VWLIYAi_0CfxVT67nkJA.mft (raw, json)
Hash identifier: T1mqBMnk8wVOwbbbntQoAWanT9n0f7pP4DwXrHlz1NQ=
Subject key identifier: CB:84:D5:1A:30:5A:29:A7:ED:84:2A:CC:C4:45:C8:68:52:2D:CF:A0
Authority key identifier: 0E:85:FD:3C:9F:95:58:B2:18:02:2F:F4:09:FC:55:4F:AE:E7:90:90
Certificate issuer: /CN=0e85fd3c9f9558b218022ff409fc554faee79090
Certificate serial: 018F36D1F38C390429A0E6F53A29D28C9190
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DoX9PJ-VWLIYAi_0CfxVT67nkJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/b3d3d9-7928-458d-836e-3303afe5c89b/1/DoX9PJ-VWLIYAi_0CfxVT67nkJA.mft
Manifest number: 114B
Signing time: Thu 02 May 2024 01:01:20 +0000
Manifest this update: Thu 02 May 2024 01:01:20 +0000
Manifest next update: Fri 03 May 2024 01:01:20 +0000
Files and hashes: 1: DoX9PJ-VWLIYAi_0CfxVT67nkJA.crl (hash: he6BE8J674Y9QSuTkPgg+nRmYaBPoOByef/l+dWfSGw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/b3d3d9-7928-458d-836e-3303afe5c89b/1/DoX9PJ-VWLIYAi_0CfxVT67nkJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/b3d3d9-7928-458d-836e-3303afe5c89b/1/DoX9PJ-VWLIYAi_0CfxVT67nkJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/DoX9PJ-VWLIYAi_0CfxVT67nkJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:36:d1:f3:8c:39:04:29:a0:e6:f5:3a:29:d2:8c:91:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e85fd3c9f9558b218022ff409fc554faee79090
Validity
Not Before: May 2 01:01:20 2024 GMT
Not After : May 3 01:01:20 2024 GMT
Subject: CN=cb84d51a305a29a7ed842accc445c868522dcfa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:4e:b7:4b:d4:a8:e7:19:86:f7:fb:e9:12:8b:
86:28:df:94:e8:96:f4:d3:d0:d0:83:e9:0f:32:64:
b0:c2:78:d9:b3:e7:b5:ee:ae:fe:41:b1:9f:e3:3d:
fd:56:ef:8a:b0:b6:63:aa:c0:14:b4:31:39:ff:79:
27:9b:3b:a6:08:96:78:68:48:67:86:ef:85:a2:54:
99:e3:58:19:ef:29:71:bc:f5:a3:6b:6a:e8:33:b9:
b7:68:0b:b2:df:dd:c8:65:5e:82:39:cc:ba:55:29:
47:2b:72:29:59:73:81:93:91:ca:50:f9:25:ee:04:
0d:23:2b:26:ef:e2:8b:51:c3:ce:c3:12:15:17:6a:
c2:40:40:5b:7f:33:82:37:86:13:aa:13:5c:4d:c6:
53:7d:19:48:75:48:4a:33:d7:bd:3a:e9:0c:21:54:
02:7c:cd:5e:3b:15:cd:9c:e3:6e:71:7f:19:24:64:
f8:0b:66:99:25:47:91:5c:a7:30:23:68:a1:ec:dd:
dd:a5:7d:4f:53:1e:d1:1f:12:10:51:08:a8:92:80:
1d:65:04:62:4e:7e:05:47:51:a2:31:0a:7f:f1:f6:
51:16:c2:75:7a:69:4d:bf:2f:e3:69:c1:91:57:16:
6e:68:22:6f:8c:f6:d0:28:3a:5b:80:5f:7b:dd:b2:
a8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:84:D5:1A:30:5A:29:A7:ED:84:2A:CC:C4:45:C8:68:52:2D:CF:A0
X509v3 Authority Key Identifier:
keyid:0E:85:FD:3C:9F:95:58:B2:18:02:2F:F4:09:FC:55:4F:AE:E7:90:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DoX9PJ-VWLIYAi_0CfxVT67nkJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/b3d3d9-7928-458d-836e-3303afe5c89b/1/DoX9PJ-VWLIYAi_0CfxVT67nkJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/b3d3d9-7928-458d-836e-3303afe5c89b/1/DoX9PJ-VWLIYAi_0CfxVT67nkJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:fa:10:fe:68:a9:b6:23:81:23:ca:d7:22:98:7f:ed:8c:b6:
1b:d7:f1:1f:90:a1:bb:11:6f:b1:c3:bd:54:e7:0b:77:7a:88:
d8:32:9d:c4:01:a2:92:6c:96:61:1e:64:98:c1:c9:4d:4c:1a:
4f:39:b6:36:6a:63:73:aa:3b:60:cb:41:e3:aa:97:e3:dd:5a:
10:56:db:58:bc:6f:0a:b4:ce:b8:e1:bc:a9:db:3e:99:a5:70:
be:a8:0a:37:6d:14:0b:99:1c:13:08:d8:67:ce:54:ab:96:5b:
46:12:55:bf:5f:42:c9:9c:a1:b5:62:e7:e7:75:24:ef:6b:d3:
f1:e0:8a:7e:27:16:cc:e1:70:d1:ae:fe:b2:5b:49:e9:3e:d1:
82:d0:11:4d:f5:0b:9f:c9:26:e9:59:42:9c:e6:2e:fa:2d:b9:
61:a3:6b:22:36:d6:15:7d:da:5a:1c:f1:a2:af:d4:18:a9:12:
55:e7:02:2f:66:73:7e:c8:ee:ad:f0:ce:58:b4:d7:f0:de:13:
5b:83:45:80:50:ab:09:17:1a:f1:f5:0a:75:f7:1b:bc:05:34:
17:6b:f2:fe:ac:43:72:58:4e:cc:b1:3e:ed:52:97:c4:e0:bd:
35:df:e9:2a:1e:e4:9e:cb:d9:d8:80:de:e1:23:cb:85:e9:91:
13:81:50:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 04:34:10 2024 by rpki-client on console-fra.rpki-client.org