Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.mft
File: YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.mft (raw, json)
Hash identifier: Z8nSOfRr3LiWlxbPgEWyzH04rx9QPYiIyXDIIzKwcxM=
Subject key identifier: 85:5C:E9:F7:0F:A9:55:89:70:A0:51:15:52:C9:E2:E2:8C:BA:72:AD
Authority key identifier: 60:62:B2:1F:B6:65:5B:89:79:23:E2:9D:6F:CB:64:4A:B1:0A:C5:30
Certificate issuer: /CN=6062b21fb6655b897923e29d6fcb644ab10ac530
Certificate serial: 018F8635D53A9B57F6CCBE890F9F6C9DFB4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.mft
Manifest number: 1174
Signing time: Fri 17 May 2024 11:00:25 +0000
Manifest this update: Fri 17 May 2024 11:00:25 +0000
Manifest next update: Sat 18 May 2024 11:00:25 +0000
Files and hashes: 1: YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.crl (hash: vBdEF6o/vIdbSe0UKlTTwAsXOnbE7Is2o7H9SB+BkUA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 11:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:35:d5:3a:9b:57:f6:cc:be:89:0f:9f:6c:9d:fb:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6062b21fb6655b897923e29d6fcb644ab10ac530
Validity
Not Before: May 17 11:00:25 2024 GMT
Not After : May 18 11:00:25 2024 GMT
Subject: CN=855ce9f70fa9558970a0511552c9e2e28cba72ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f3:96:b6:66:79:8a:dd:aa:37:94:fd:8b:c1:
ad:f4:c2:b1:a3:38:0c:65:0d:02:42:e4:17:a7:d7:
91:5e:e2:83:92:68:c3:f7:39:7c:21:ca:e0:5b:cb:
cc:ca:f7:1c:97:3e:92:f2:b4:3a:67:83:30:18:69:
67:84:bb:4a:f9:d4:85:28:07:86:1f:30:96:7a:75:
d8:a2:52:0a:2e:e3:25:bb:c8:13:3d:fa:f4:2e:8d:
33:58:da:23:a6:72:8a:d2:ad:50:04:8b:3a:b9:0e:
b4:61:17:81:fa:ae:24:ae:8e:6f:35:b5:84:f2:13:
5c:4b:1b:20:eb:4a:bf:dd:96:f2:b5:48:d3:7c:ff:
91:72:36:a7:c5:f9:2c:d3:92:89:f0:9e:a1:c6:81:
a8:c0:73:aa:63:41:01:3a:88:96:5d:da:4d:06:fb:
04:31:8e:9c:ff:b7:77:e0:b1:a3:40:3a:dd:af:c0:
f1:f3:4e:e9:51:28:83:11:99:e4:6f:35:3b:29:e1:
11:c5:3a:02:f5:e6:33:e7:af:99:af:f7:27:59:24:
62:e6:d0:9a:50:98:73:fc:84:ad:c4:6f:9c:a4:5d:
a3:15:1b:ac:93:74:45:74:16:ca:b8:00:8d:79:d7:
33:3f:93:35:16:58:0d:98:fc:64:f8:3f:52:fe:08:
3b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:5C:E9:F7:0F:A9:55:89:70:A0:51:15:52:C9:E2:E2:8C:BA:72:AD
X509v3 Authority Key Identifier:
keyid:60:62:B2:1F:B6:65:5B:89:79:23:E2:9D:6F:CB:64:4A:B1:0A:C5:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:6d:34:a6:e5:02:18:2b:6f:8d:a0:a5:7e:68:05:c2:b4:12:
4d:34:be:c5:16:f2:f7:2c:ed:7b:da:b5:32:4f:33:0c:4b:ff:
b9:1c:05:3c:14:c9:43:9d:ef:52:15:40:15:6f:5c:40:e4:79:
12:78:f1:aa:10:90:d3:cc:8e:90:5a:a3:c7:fe:5e:d1:c9:de:
5a:bf:4a:b2:40:31:7a:6a:61:da:d5:f9:4d:1c:a6:73:db:45:
7f:2f:a8:31:c7:0b:a1:3b:50:62:0f:33:2a:3f:41:c8:66:74:
ea:d3:4e:75:cb:de:00:2e:01:c6:82:e7:c8:1d:ff:36:da:7b:
73:b4:2e:cc:77:17:eb:7f:87:6f:a0:3a:a8:99:2d:7d:50:d1:
23:2e:a1:87:31:9b:84:d4:a6:86:d8:4c:e6:46:a8:f1:a8:4a:
9e:65:02:81:29:89:a6:84:b0:4f:3a:b0:7f:39:8c:63:25:72:
4c:ae:6c:24:5f:ca:5e:13:6c:67:a4:56:b1:7c:88:95:d6:20:
da:53:54:11:96:48:98:26:fe:6c:be:7b:2f:e3:51:6a:34:83:
a2:62:58:91:43:5e:cd:95:b8:74:4f:59:88:5e:f0:a4:a5:4a:
af:33:9c:2e:0c:5b:f4:db:c6:90:57:10:14:f0:81:ab:bf:b8:
bf:76:a5:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:29:13 2024 by rpki-client on console-fra.rpki-client.org