Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
File: iPdXItsls3I97Npdhw32m_DYZa4.mft (raw, json)
Hash identifier: CvO6F18YTfNAQdztgdLrU3TyLs2Y10a85rQbe2M0xCk=
Subject key identifier: FF:AB:2B:D8:AF:3B:1D:24:FB:9E:37:A3:04:63:F8:AA:BA:3B:50:79
Authority key identifier: 88:F7:57:22:DB:25:B3:72:3D:EC:DA:5D:87:0D:F6:9B:F0:D8:65:AE
Certificate issuer: /CN=88f75722db25b3723decda5d870df69bf0d865ae
Certificate serial: 018F8748FB61C1E8E9CB9037513D3E627C65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
Manifest number: 0B70
Signing time: Fri 17 May 2024 16:00:58 +0000
Manifest this update: Fri 17 May 2024 16:00:58 +0000
Manifest next update: Sat 18 May 2024 16:00:58 +0000
Files and hashes: 1: iPdXItsls3I97Npdhw32m_DYZa4.crl (hash: FmZL0k4cisqrl1J2M12chqjbeV1cWM+Vhum3SvbKiag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:48:fb:61:c1:e8:e9:cb:90:37:51:3d:3e:62:7c:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f75722db25b3723decda5d870df69bf0d865ae
Validity
Not Before: May 17 16:00:58 2024 GMT
Not After : May 18 16:00:58 2024 GMT
Subject: CN=ffab2bd8af3b1d24fb9e37a30463f8aaba3b5079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0c:cb:f6:34:d9:0b:a7:ae:23:61:74:c7:71:
58:61:27:ee:54:06:e3:e8:a6:0a:5a:51:39:90:6b:
ec:0d:59:0b:9e:ef:73:45:10:24:ff:7d:3e:c4:d3:
25:e3:22:06:40:76:c9:e0:ab:33:e0:43:fe:db:d9:
82:01:79:e3:bc:92:ff:9f:08:01:f0:f6:ec:d1:53:
90:55:4c:21:f6:d3:de:7a:fe:3a:65:ef:d1:0b:b1:
65:73:a5:d6:28:8b:7f:7d:0f:80:5e:77:a9:e9:a5:
c0:7b:d9:68:62:5c:ff:18:e7:82:90:ed:7d:63:be:
b9:8f:7c:8d:78:5e:0d:b6:77:a0:e3:cc:a6:63:27:
07:68:3e:55:e5:40:38:17:6c:4a:61:2e:a4:2c:00:
34:7f:b2:ae:91:2c:88:d3:52:68:dc:2b:d6:81:49:
70:d8:e5:b5:d5:76:d8:9e:01:53:2d:10:f3:13:f5:
cb:30:60:e0:e6:fa:54:ec:1c:6e:ab:67:fe:02:5b:
a1:9d:1d:35:6c:18:ff:50:1d:3b:ff:b3:09:16:25:
a4:b3:91:cb:c4:e0:65:c6:45:09:5f:d2:90:66:54:
39:31:c6:46:32:3f:41:da:7c:14:bf:2d:40:61:6a:
60:5e:3e:63:f5:c0:02:8e:34:d5:c1:8f:fb:9f:e3:
6f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:AB:2B:D8:AF:3B:1D:24:FB:9E:37:A3:04:63:F8:AA:BA:3B:50:79
X509v3 Authority Key Identifier:
keyid:88:F7:57:22:DB:25:B3:72:3D:EC:DA:5D:87:0D:F6:9B:F0:D8:65:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dd:a0:3c:34:e2:49:86:ed:a0:97:5a:f4:21:48:ac:f4:3d:ec:
05:c6:60:0a:60:cb:5d:30:c3:36:fe:9f:67:87:37:a1:8a:c8:
13:90:2f:a4:10:b6:3a:14:34:47:fd:d7:23:ac:cb:f9:03:8d:
31:32:04:ec:73:f5:c3:4f:e1:e4:20:aa:5b:eb:95:7d:b3:61:
a6:07:db:fe:2c:8d:6d:03:80:cc:f2:7d:a6:d5:03:b7:ae:f3:
d5:bd:f0:4f:02:59:4a:b1:67:46:58:2a:9e:2a:45:b5:4f:57:
92:43:c6:f2:12:0a:5f:8d:4b:10:d9:95:b8:a6:9e:99:ab:3d:
b1:31:82:09:de:b4:4f:65:a2:19:1a:06:af:43:6f:5f:56:76:
00:2c:c5:cf:84:25:39:c9:69:2b:cb:d5:be:21:1e:34:b0:62:
0e:9e:28:a3:91:cf:de:f2:d4:98:de:6a:48:86:65:38:10:8a:
f6:4f:d8:d9:81:18:d0:75:e5:bf:18:3e:02:98:00:0d:92:78:
40:f1:4c:3f:73:5b:ec:ac:04:45:46:63:50:94:f9:41:2a:a8:
eb:f2:69:fd:e2:59:39:4d:01:d7:d7:46:93:df:a5:8c:0b:b6:
34:f5:28:23:5d:9e:47:9e:14:fa:a4:bc:22:f1:37:60:8c:84:
0e:a5:d8:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:09:09 2024 by rpki-client on console-ams.rpki-client.org