Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
File: 0kvL9emk_kMp8iPBFFBykFOPnMI.mft (raw, json)
Hash identifier: 0UKC/U5KLYaqTEJyKfwt3MZsbeuLGusLLRfHiCTKEqg=
Subject key identifier: B9:28:BA:1B:F7:8A:1B:AC:5E:D1:0E:76:6E:A6:79:FF:14:10:3F:B7
Authority key identifier: D2:4B:CB:F5:E9:A4:FE:43:29:F2:23:C1:14:50:72:90:53:8F:9C:C2
Certificate issuer: /CN=d24bcbf5e9a4fe4329f223c114507290538f9cc2
Certificate serial: 018F381B7162120C2726EBA3812D76F70404
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
Manifest number: 0C9A
Signing time: Thu 02 May 2024 07:01:13 +0000
Manifest this update: Thu 02 May 2024 07:01:13 +0000
Manifest next update: Fri 03 May 2024 07:01:13 +0000
Files and hashes: 1: 0kvL9emk_kMp8iPBFFBykFOPnMI.crl (hash: p8OOmIy8i9GeBXeRuIUH8JBfyOcFgeJ4LaXwAANYh8s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 07:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:38:1b:71:62:12:0c:27:26:eb:a3:81:2d:76:f7:04:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24bcbf5e9a4fe4329f223c114507290538f9cc2
Validity
Not Before: May 2 07:01:13 2024 GMT
Not After : May 3 07:01:13 2024 GMT
Subject: CN=b928ba1bf78a1bac5ed10e766ea679ff14103fb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:c2:0e:ea:98:02:c2:f7:b9:71:a0:01:36:f2:
e8:35:f3:a2:dc:70:7e:06:03:4f:ac:6a:3e:2c:12:
4b:ff:ef:ef:b0:59:04:69:e8:7e:ca:f7:7e:6f:29:
e4:41:c3:af:2b:81:b7:a3:42:16:ca:b3:46:0c:9a:
a2:20:94:e3:87:4f:e9:c2:15:59:47:92:b4:08:f2:
69:a9:d3:27:e1:f4:38:1d:d8:e1:9f:09:03:78:b3:
47:67:f2:34:9e:06:62:48:50:4e:91:0e:30:c8:dd:
41:98:ed:13:38:ea:56:84:e7:17:f0:3b:5e:7e:c8:
fa:91:52:f4:97:86:18:e9:9a:d5:74:33:07:44:33:
d7:16:4c:3d:50:41:e6:36:3c:78:a2:48:1c:3d:3e:
fb:1a:7c:90:7e:24:c8:a8:10:4d:c9:75:a2:bb:25:
0e:de:a0:52:b0:12:d9:7b:ea:a4:ca:03:c6:60:d7:
0d:4c:5d:de:ac:0e:ab:65:2b:80:fd:bd:45:e2:32:
69:f0:6a:3a:2d:fb:1c:2a:fb:8a:5f:9b:f7:30:7f:
c3:c9:bd:16:32:c4:b5:38:6e:91:87:23:57:df:6e:
05:4f:78:f0:d7:6a:27:7b:35:69:b7:b1:12:3e:76:
47:f3:40:d1:5c:ac:d9:f6:af:8b:d6:34:94:0e:e9:
c3:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:28:BA:1B:F7:8A:1B:AC:5E:D1:0E:76:6E:A6:79:FF:14:10:3F:B7
X509v3 Authority Key Identifier:
keyid:D2:4B:CB:F5:E9:A4:FE:43:29:F2:23:C1:14:50:72:90:53:8F:9C:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:db:64:89:05:c5:55:ea:97:cd:71:7c:80:e9:eb:99:ea:63:
f3:a8:7e:27:b4:6e:fa:86:98:9b:a8:ce:5a:77:73:f7:c5:c8:
3f:99:d1:80:e9:46:18:75:2f:39:7c:d7:37:31:0a:33:af:bb:
3e:2e:cf:53:09:01:4f:a6:6b:a3:f4:52:2a:d0:bf:95:20:80:
e8:c1:68:12:d6:fe:05:8a:dd:2f:14:17:b7:f6:e0:02:7b:23:
03:a1:a5:25:60:2c:5f:99:de:5a:9f:aa:fa:dc:7d:21:86:d0:
59:71:0a:d4:c9:26:4a:b5:d1:80:0b:cf:cd:68:7e:f7:e7:0b:
7a:87:8d:99:0a:29:c1:26:36:89:d8:05:57:53:b4:99:f6:c4:
ae:4a:77:8e:ce:b3:ff:a9:e4:13:10:fc:76:ec:0f:56:be:07:
a9:d1:ad:54:a1:85:bf:ed:5b:9f:5c:ac:26:b2:e1:86:f6:3d:
2b:05:ba:46:a5:22:80:52:1e:35:ae:c0:6c:18:bb:cc:85:54:
0f:1a:4d:f4:2b:4b:60:0d:7b:e4:ba:3d:85:2c:ae:5b:33:f6:
4f:e2:b1:c0:47:52:c5:3a:27:16:bf:f9:0a:b4:f8:3d:53:9f:
2b:e2:e7:5c:c2:a2:ed:e8:a6:f2:21:00:a3:9b:d0:d1:a0:67:
b4:44:c1:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 15:19:50 2024 by rpki-client on console-fra.rpki-client.org