Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
File: 2o2nRADHVVq6J8Eon7-5CzO3miI.mft (raw, json)
Hash identifier: AqQlHvaB6Coga5TZ+foMeQE8GMTtRmYK3mB8INM3zZA=
Subject key identifier: 86:FB:9A:48:91:A8:1D:27:FD:B3:1A:31:30:AF:05:B3:98:2F:3D:E7
Authority key identifier: DA:8D:A7:44:00:C7:55:5A:BA:27:C1:28:9F:BF:B9:0B:33:B7:9A:22
Certificate issuer: /CN=da8da74400c7555aba27c1289fbfb90b33b79a22
Certificate serial: 018F51A4F55FF161BD7E3B64E9B998BD84F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
Manifest number: 0FE9
Signing time: Tue 07 May 2024 06:01:56 +0000
Manifest this update: Tue 07 May 2024 06:01:56 +0000
Manifest next update: Wed 08 May 2024 06:01:56 +0000
Files and hashes: 1: 2o2nRADHVVq6J8Eon7-5CzO3miI.crl (hash: TS2GWr3dclA4LLyTqGj09UJdLrrlhugPU+QhDk+2ONk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 06:01:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:51:a4:f5:5f:f1:61:bd:7e:3b:64:e9:b9:98:bd:84:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da8da74400c7555aba27c1289fbfb90b33b79a22
Validity
Not Before: May 7 06:01:56 2024 GMT
Not After : May 8 06:01:56 2024 GMT
Subject: CN=86fb9a4891a81d27fdb31a3130af05b3982f3de7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:57:dc:64:af:3b:d9:57:66:52:ab:12:c4:ec:
61:13:0e:6b:17:af:de:3a:d7:4a:b1:45:36:b9:19:
cd:09:ab:5e:6e:63:48:58:c8:57:bc:66:02:6b:a5:
97:0b:43:ad:83:a0:1d:6f:3f:8e:51:72:b0:38:e4:
38:5b:36:51:f4:f8:57:aa:4e:b4:c8:52:f7:f2:88:
00:0e:be:bb:fd:26:2b:7a:e1:bb:bc:25:de:0a:a5:
09:52:c1:4a:63:15:32:3e:7b:91:a0:79:2b:46:69:
c0:97:2e:42:7b:d7:35:af:7e:79:87:88:9a:43:cc:
03:ae:19:75:bd:ff:1b:d8:75:5c:18:a7:97:ad:97:
43:50:1f:46:5d:cd:c3:25:b0:5f:f1:e8:6b:98:47:
c3:43:5c:d8:5a:69:ef:04:bc:63:48:f8:ec:41:18:
4c:50:6d:14:17:de:c6:a7:a0:04:ad:d6:3e:33:77:
45:bd:71:57:88:ee:ac:07:cf:2b:b0:2c:47:b0:20:
e3:82:b9:26:66:ee:ea:4d:3f:8c:e6:99:26:83:e3:
d8:78:b5:cc:c0:0b:73:36:34:db:45:47:f0:a6:b4:
6f:c9:13:0f:0b:43:c4:49:a9:2c:c1:cb:77:2c:2d:
ea:15:90:77:4a:f8:65:16:30:3e:00:1f:76:53:39:
63:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:FB:9A:48:91:A8:1D:27:FD:B3:1A:31:30:AF:05:B3:98:2F:3D:E7
X509v3 Authority Key Identifier:
keyid:DA:8D:A7:44:00:C7:55:5A:BA:27:C1:28:9F:BF:B9:0B:33:B7:9A:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:98:e4:ea:5c:d8:42:94:aa:60:3d:f7:ff:2e:9e:7e:bb:3a:
53:1a:6c:33:d5:7e:31:e8:a1:04:df:5e:ff:f9:b0:71:6e:78:
55:c6:b1:bb:a1:3b:4c:2d:47:70:94:85:71:44:02:89:f5:75:
2b:6c:da:69:39:73:a7:ec:17:23:60:cf:f8:54:3a:ab:c8:08:
3b:ab:8f:e1:2a:ed:39:ab:83:1a:1b:cc:d7:77:dd:b5:09:ca:
42:7e:e1:f8:f6:cb:7a:11:ac:4e:88:62:75:2a:45:5c:3b:5c:
6d:a9:00:5d:b8:6d:39:1a:c6:91:83:26:07:e7:52:1c:8f:96:
f8:59:5c:7e:e0:68:e8:c2:f9:a8:e3:20:86:d8:d3:4a:65:20:
e3:98:06:a7:dc:31:be:87:c2:c7:ce:f9:56:b6:76:68:ee:87:
e7:3c:63:ac:9c:af:ac:c3:f2:81:55:b8:b3:63:45:28:27:ce:
d9:1b:28:13:78:40:f5:a7:85:4e:e7:3c:33:b5:03:18:7c:fd:
f5:d2:d1:d4:3c:c0:f9:6d:63:2d:bb:72:07:c3:07:70:50:e0:
bd:b3:78:93:03:63:40:6b:24:7f:c3:61:cd:11:65:02:8b:3e:
e6:f3:66:41:78:89:48:be:86:c0:ee:c8:de:64:fd:99:7f:25:
2b:80:e9:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 15:56:34 2024 by rpki-client on console-fra.rpki-client.org