Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/7570f8-c2a8-4dd4-9ef2-f69d7397458e/1/3ySnzbcPLOjN3aURtEWeA0_375s.mft
File: 3ySnzbcPLOjN3aURtEWeA0_375s.mft (raw, json)
Hash identifier: d8lOV8VjehxIU3SnabsMYSwvxxiKed1i+F8WAWyOuhQ=
Subject key identifier: 2C:41:DC:8B:0A:B9:27:29:D9:57:6F:CB:1D:97:6A:FD:0D:61:73:89
Authority key identifier: DF:24:A7:CD:B7:0F:2C:E8:CD:DD:A5:11:B4:45:9E:03:4F:F7:EF:9B
Certificate issuer: /CN=df24a7cdb70f2ce8cddda511b4459e034ff7ef9b
Certificate serial: 018F576F87FE512DA07D99361D8BC387F8E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ySnzbcPLOjN3aURtEWeA0_375s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/7570f8-c2a8-4dd4-9ef2-f69d7397458e/1/3ySnzbcPLOjN3aURtEWeA0_375s.mft
Manifest number: 090A
Signing time: Wed 08 May 2024 09:01:18 +0000
Manifest this update: Wed 08 May 2024 09:01:18 +0000
Manifest next update: Thu 09 May 2024 09:01:18 +0000
Files and hashes: 1: 3ySnzbcPLOjN3aURtEWeA0_375s.crl (hash: 4c8J8pGcH0qVCmVdRZ3ntDIbIBm9HeFqBoVmStCbnCU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/7570f8-c2a8-4dd4-9ef2-f69d7397458e/1/3ySnzbcPLOjN3aURtEWeA0_375s.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/7570f8-c2a8-4dd4-9ef2-f69d7397458e/1/3ySnzbcPLOjN3aURtEWeA0_375s.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ySnzbcPLOjN3aURtEWeA0_375s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:57:6f:87:fe:51:2d:a0:7d:99:36:1d:8b:c3:87:f8:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df24a7cdb70f2ce8cddda511b4459e034ff7ef9b
Validity
Not Before: May 8 09:01:18 2024 GMT
Not After : May 9 09:01:18 2024 GMT
Subject: CN=2c41dc8b0ab92729d9576fcb1d976afd0d617389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d2:2e:36:f9:4f:a4:7b:2c:67:96:db:e5:a6:
06:6d:dc:dc:05:b2:03:88:68:75:e2:ee:d1:90:8a:
c5:3f:72:7d:08:9a:de:21:ef:00:cd:67:c6:88:3e:
61:2c:cc:90:5b:b3:20:26:81:44:a9:5b:5f:e0:1e:
00:03:14:c7:67:c7:12:25:fa:09:63:20:d3:29:ed:
db:0e:02:35:b1:da:64:4a:89:5d:57:e6:3d:8d:54:
13:24:d1:b3:05:f6:5a:f3:30:fc:fb:99:76:ed:e9:
e4:7a:6b:9a:38:f4:3d:a7:ed:4f:59:ea:a5:6b:06:
cc:d0:c3:72:0f:b2:44:fc:be:25:3d:03:94:4e:f1:
dd:95:09:6a:05:49:42:d3:98:63:a5:5b:ec:92:3b:
95:b5:f8:2e:18:2d:a7:35:20:03:45:c0:23:41:ef:
17:83:48:c2:b4:8c:4f:66:6a:5b:98:ec:ef:68:cc:
af:4c:fa:2b:61:0e:8c:a2:ba:ec:67:fe:b0:6a:cd:
38:f8:68:78:1a:ee:9b:c8:0b:3c:b0:80:bc:07:c1:
06:88:f2:31:de:69:5a:4c:84:91:fc:df:a5:2b:72:
8d:68:2d:b4:7b:a8:bf:ba:d0:c2:9a:57:89:94:cd:
9a:99:50:29:c9:1d:c8:89:c5:dc:0e:b4:7f:4d:03:
15:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:41:DC:8B:0A:B9:27:29:D9:57:6F:CB:1D:97:6A:FD:0D:61:73:89
X509v3 Authority Key Identifier:
keyid:DF:24:A7:CD:B7:0F:2C:E8:CD:DD:A5:11:B4:45:9E:03:4F:F7:EF:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ySnzbcPLOjN3aURtEWeA0_375s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7570f8-c2a8-4dd4-9ef2-f69d7397458e/1/3ySnzbcPLOjN3aURtEWeA0_375s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7570f8-c2a8-4dd4-9ef2-f69d7397458e/1/3ySnzbcPLOjN3aURtEWeA0_375s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:08:fe:39:a8:9c:0d:81:a4:50:e9:99:91:06:4f:0d:75:e3:
ab:56:66:96:57:c6:b9:93:b7:36:b3:15:b8:bc:db:c2:a4:db:
41:9b:b5:5b:f3:b9:dc:df:e7:87:bf:c7:a5:aa:15:7f:5a:32:
5c:0b:9b:c8:51:ea:8f:42:63:14:58:fa:80:f3:b7:9d:b5:45:
3c:34:a3:55:09:8b:db:af:00:93:aa:96:cb:27:95:20:8c:13:
83:32:31:f6:e6:8b:16:85:a7:5b:0f:f6:ce:ed:94:ec:2c:9b:
07:b2:4a:36:95:40:cd:60:41:37:f8:48:64:03:76:7c:3f:62:
3a:1b:53:d4:5b:fe:a9:fb:a5:ee:00:e3:41:50:c1:be:bb:fc:
be:3e:40:66:5b:9b:05:9f:d6:1f:64:a4:77:c9:04:62:7d:68:
3a:b9:28:51:e0:a1:4e:ae:fc:89:ae:cf:da:47:2c:0b:1b:b5:
f9:68:79:e2:13:79:a4:4c:5e:fd:62:fa:6d:7a:1f:cc:4a:ce:
7e:96:97:dc:bc:21:31:b5:57:a8:fb:03:0c:e6:f6:c7:0a:64:
69:48:7d:be:8e:d6:79:4d:a6:0f:60:f8:be:a2:27:fe:6a:a2:
56:06:83:57:0c:f4:f6:c6:d2:3d:39:fb:d8:74:f8:42:43:1d:
35:9f:55:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 15:58:01 2024 by rpki-client on console-fra.rpki-client.org