Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
File: oKrlhQo22yiCKmwa_F_6z_AH7vI.mft (raw, json)
Hash identifier: 1LsoQEzc/9RYFRQpULw77gidk/yFkJuGUTOW86z6J7o=
Subject key identifier: 3B:56:33:E7:E1:88:79:01:5B:88:7C:30:62:04:4C:29:3E:0C:8D:64
Authority key identifier: A0:AA:E5:85:0A:36:DB:28:82:2A:6C:1A:FC:5F:FA:CF:F0:07:EE:F2
Certificate issuer: /CN=a0aae5850a36db28822a6c1afc5ffacff007eef2
Certificate serial: 01903EC0621C270CE699C63AFC4420712D60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
Manifest number: 04CD
Signing time: Sat 22 Jun 2024 07:01:53 +0000
Manifest this update: Sat 22 Jun 2024 07:01:53 +0000
Manifest next update: Sun 23 Jun 2024 07:01:53 +0000
Files and hashes: 1: oKrlhQo22yiCKmwa_F_6z_AH7vI.crl (hash: N4qKZu6Lnl9ov8bfLZ/67rzPbEJ5Nr+3tHxmwTyUaks=)
2: tvh5PUmlOLwq7UlxymbKVMGFh90.roa (hash: KrjzIWidZiA+C66Lv4EIyKyHVfBvr2gb8S1AywInVww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 03:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:3e:c0:62:1c:27:0c:e6:99:c6:3a:fc:44:20:71:2d:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0aae5850a36db28822a6c1afc5ffacff007eef2
Validity
Not Before: Jun 22 07:01:53 2024 GMT
Not After : Jun 23 07:01:53 2024 GMT
Subject: CN=3b5633e7e18879015b887c3062044c293e0c8d64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0c:99:6a:e0:4c:d9:e4:93:9d:9b:3e:7c:bf:
ce:c6:87:65:f6:86:2b:ed:f4:10:4f:74:ee:47:56:
29:7b:37:c0:c0:10:f9:76:97:10:3d:7b:6d:5c:39:
62:6b:0d:5b:6f:ed:29:20:a9:48:ce:9c:6b:f0:c4:
c5:7b:ef:df:84:3a:38:32:5f:6b:9d:fe:a6:9a:0f:
22:e4:7d:5e:c1:be:df:2a:e1:4d:9c:55:c2:ad:71:
b0:63:2b:6f:5f:19:ce:57:d1:ba:3c:f1:12:2a:8a:
b2:33:0a:81:76:f9:3b:57:2c:35:0c:7c:35:a9:7a:
88:4a:3a:5d:35:77:d2:49:4b:85:fd:1c:b7:d2:61:
4c:67:03:8c:89:a3:51:6d:02:a0:23:f6:70:0c:1e:
4a:53:24:54:28:5e:db:fb:8e:89:66:7d:61:fb:4b:
0d:be:89:0c:dc:23:ba:42:15:fd:db:d5:77:bb:6e:
37:47:a1:e9:fa:b8:d0:96:f6:51:a1:8d:61:97:ce:
17:73:99:87:9e:45:45:60:34:7b:0f:13:1b:a7:eb:
db:e1:bf:ed:98:3a:34:15:db:75:4e:63:c4:33:d7:
1d:a9:63:5e:b3:b4:c0:c9:5e:ea:f3:be:90:52:71:
0b:f6:6a:fb:4b:57:2a:ea:a2:4f:8d:76:4c:54:1a:
73:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:56:33:E7:E1:88:79:01:5B:88:7C:30:62:04:4C:29:3E:0C:8D:64
X509v3 Authority Key Identifier:
keyid:A0:AA:E5:85:0A:36:DB:28:82:2A:6C:1A:FC:5F:FA:CF:F0:07:EE:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:06:aa:32:e1:c4:9c:ad:f7:b5:c9:f7:e2:39:0d:db:1f:69:
20:28:12:59:6b:1f:bc:ae:c9:6b:80:66:4d:72:4d:38:1a:c6:
34:d1:07:f6:d7:c6:ca:87:8e:51:c5:87:fb:39:f7:f9:e3:e6:
ea:96:fe:f4:35:f5:52:e3:3f:d0:c3:a9:de:1e:bb:f7:e9:b7:
8c:91:e1:04:ab:fa:f4:5f:3f:51:a8:5f:b7:fb:9d:2a:24:9d:
64:5c:f7:df:a2:c7:c4:0f:0a:4a:b2:b0:aa:21:06:1c:4e:c7:
59:c9:69:67:23:b6:0f:fd:bb:15:5d:2a:bb:ff:48:a1:48:55:
dc:87:8a:83:6b:a4:9c:ea:88:34:60:c8:cc:62:ad:af:8b:3b:
8a:41:91:5b:93:00:4e:a6:89:88:e2:67:e2:25:77:20:2d:28:
ab:34:39:0e:55:b3:39:ed:1f:26:5d:72:70:7b:ea:37:45:72:
5e:6d:6d:1e:70:15:04:7d:2c:52:fe:54:a3:92:85:2a:2f:69:
86:59:63:f0:d3:1c:0c:80:b3:b2:4b:9e:85:cc:33:7d:df:2a:
2d:7e:e2:f0:45:95:2e:9a:b7:f5:6f:b2:96:02:d4:eb:f1:d6:
ac:9b:48:f4:25:5d:06:0a:53:06:06:a3:a2:85:a9:79:ce:e8:
35:cb:3d:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 08:20:59 2024 by rpki-client on console-fra.rpki-client.org