Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
File: iydIPcFsMY5a__gyKTDIF_0ZLJE.mft (raw, json)
Hash identifier: PoVhnC/RP2eSpoGAeKJcECLtyr/z941bSbp3H96QzvU=
Subject key identifier: CF:19:74:2E:B6:E8:DF:78:6A:DA:B8:88:03:40:B7:4B:F0:D3:D8:3A
Authority key identifier: 8B:27:48:3D:C1:6C:31:8E:5A:FF:F8:32:29:30:C8:17:FD:19:2C:91
Certificate issuer: /CN=8b27483dc16c318e5afff8322930c817fd192c91
Certificate serial: 01906B986A44678BA4C6342391CAD5EA697C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iydIPcFsMY5a__gyKTDIF_0ZLJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
Manifest number: 054D
Signing time: Mon 01 Jul 2024 00:01:09 +0000
Manifest this update: Mon 01 Jul 2024 00:01:09 +0000
Manifest next update: Tue 02 Jul 2024 00:01:09 +0000
Files and hashes: 1: iydIPcFsMY5a__gyKTDIF_0ZLJE.crl (hash: Ctri+GLzGyNBgbh9fe6fLqyAzh0N261LgxTPW2rfWv8=)
2: qq0xftY9MbnVe7YjHsXhRZJU9sA.roa (hash: HXSf/t7IFbcGGepEAWp3926o35SH/63jfEWRR6X51xA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iydIPcFsMY5a__gyKTDIF_0ZLJE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jul 2024 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6b:98:6a:44:67:8b:a4:c6:34:23:91:ca:d5:ea:69:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b27483dc16c318e5afff8322930c817fd192c91
Validity
Not Before: Jul 1 00:01:09 2024 GMT
Not After : Jul 2 00:01:09 2024 GMT
Subject: CN=cf19742eb6e8df786adab8880340b74bf0d3d83a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ec:33:56:69:64:ac:a6:51:69:33:ab:00:5d:
ab:7e:2a:a0:c8:dc:dd:62:c4:05:d3:23:51:0d:1b:
6b:66:c0:76:4b:59:7f:18:5a:4f:f4:22:b1:0d:b9:
31:2b:b2:82:cd:54:42:be:b7:0f:6f:dc:75:79:84:
3e:92:ac:13:1a:2e:bd:9d:ba:9b:18:33:91:c6:d5:
15:9f:91:45:f2:f0:60:b2:23:d9:0f:cb:75:22:f7:
17:ad:0f:0e:71:53:f5:e0:40:3d:9d:b3:4e:aa:74:
ad:45:4c:01:0e:fb:2e:64:51:8f:49:7f:ff:89:51:
20:87:9d:c8:e3:15:72:c3:60:7a:4b:f1:99:cf:fd:
1c:3b:b3:69:c6:d1:b8:61:a5:4d:db:e8:a0:01:2d:
d1:e1:49:c4:57:fc:3d:84:a3:25:61:3e:e4:92:4c:
3b:5b:75:0e:1b:46:9a:be:2e:c1:20:91:c5:41:82:
50:e8:54:82:4d:e7:5a:73:ba:50:c2:86:b8:3e:75:
7f:37:84:5a:d5:89:91:92:60:d8:9d:7a:81:f2:67:
d5:b4:5e:a1:85:45:67:ce:85:5f:7e:65:0c:1a:3c:
cd:03:3d:cc:fa:2f:b8:79:b0:3c:3c:f9:f2:32:48:
fc:d9:e9:be:a7:1b:a9:ec:c7:06:19:54:13:0d:88:
e0:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:19:74:2E:B6:E8:DF:78:6A:DA:B8:88:03:40:B7:4B:F0:D3:D8:3A
X509v3 Authority Key Identifier:
keyid:8B:27:48:3D:C1:6C:31:8E:5A:FF:F8:32:29:30:C8:17:FD:19:2C:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iydIPcFsMY5a__gyKTDIF_0ZLJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:79:d1:9d:bc:93:b2:fd:8d:4f:cf:de:f8:07:be:f0:53:c3:
06:72:59:cd:93:05:98:5e:95:14:c1:25:af:73:cb:a4:c0:60:
1c:0a:4e:4c:cd:dd:bb:3a:59:b7:01:b4:e6:66:b7:45:a4:30:
1f:29:78:76:99:ed:7c:56:6a:4e:38:9e:cf:a6:10:2e:a8:ce:
b3:4d:11:a4:d2:97:28:e1:b7:0c:7f:f2:28:11:d7:7b:6e:28:
36:94:1f:96:12:26:95:0e:16:97:5c:e5:ae:2b:74:c1:0d:a2:
40:e4:84:a4:13:d2:29:e1:e1:3d:46:ec:cf:05:29:9e:aa:1e:
dc:38:a3:ce:63:f2:6e:b7:a3:5a:59:85:fa:28:ac:02:01:48:
30:47:f5:80:23:ef:3c:ae:da:e9:ae:9f:9a:ab:64:90:87:85:
83:7b:e2:4a:54:d9:30:cc:cd:c2:63:52:1f:cc:fc:0f:6d:71:
05:fa:6c:a8:f7:d0:37:88:43:0c:ae:f3:db:f0:18:22:35:73:
31:9e:51:20:a4:9c:e2:83:a7:7e:3c:11:bf:80:20:f6:f7:18:
48:de:34:33:79:c1:7a:58:4b:fb:df:25:55:17:49:83:f8:cf:
bb:a2:35:40:0e:dd:00:ed:23:60:f4:0b:69:b9:48:bd:a0:82:
c2:f3:11:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 01:41:52 2024 by rpki-client on console-fra.rpki-client.org