Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
File: stlAHspsipMG0QCSu-DC4ZUA6X8.mft (raw, json)
Hash identifier: I84xgVAiLKxKFtS95+eTfcvwVc5sVFcJ8sc8n9+3AAg=
Subject key identifier: 8C:7E:F8:3E:8D:A9:81:C0:91:D6:8B:8D:17:DD:29:C3:A3:29:B0:67
Authority key identifier: B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
Certificate issuer: /CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Certificate serial: 0192102B7EF39B1795EE8451463316CA6447
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
Manifest number: 12CA
Signing time: Fri 20 Sep 2024 16:02:18 +0000
Manifest this update: Fri 20 Sep 2024 16:02:18 +0000
Manifest next update: Sat 21 Sep 2024 16:02:18 +0000
Files and hashes: 1: stlAHspsipMG0QCSu-DC4ZUA6X8.crl (hash: SFp+B1cgIdANsrkEEbQDZnQGLgc17MF+fkMbdX4Scuw=)
2: xSduVY02ewqaMJJSVtFMzm85AaY.roa (hash: vPcG7GBujF/wb7Fw4JM1J9O8zrtxSNLJqn8NdbyJeSg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Sep 2024 16:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:10:2b:7e:f3:9b:17:95:ee:84:51:46:33:16:ca:64:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Validity
Not Before: Sep 20 16:02:18 2024 GMT
Not After : Sep 21 16:02:18 2024 GMT
Subject: CN=8c7ef83e8da981c091d68b8d17dd29c3a329b067
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f7:c7:09:0b:a7:70:47:27:a5:93:e0:ee:03:
2a:8c:0d:b6:56:35:c9:09:51:a4:a7:99:44:3f:b1:
af:e1:44:aa:ff:6f:c7:e0:4a:6b:a1:51:a3:8d:fa:
29:61:fa:f1:5e:01:37:61:2d:61:90:c6:5b:28:9c:
59:65:44:eb:1c:fb:ef:ce:4f:82:ec:a3:5d:ce:53:
4b:8e:f7:4f:a8:2b:9d:89:f0:f2:28:b4:97:66:57:
dd:6b:40:95:a2:19:ca:f0:63:4a:4e:a1:be:d4:d9:
bd:bc:51:ce:d0:bb:2b:93:53:99:ef:ea:22:80:81:
7a:64:b0:d8:fe:42:43:5a:47:8a:c8:af:f2:4c:07:
0e:77:7c:75:ab:0e:6c:8f:95:c9:96:ee:30:c1:d9:
ba:77:5a:97:56:11:e8:5e:06:ce:32:b9:6b:10:a1:
da:a0:8a:72:23:09:61:a5:34:92:6c:7c:a8:e3:78:
9e:6e:9d:92:1f:5f:16:88:e4:88:f5:19:14:d6:52:
af:e4:dd:62:f0:23:7a:74:9e:2e:ab:87:91:58:8e:
d9:73:4b:0f:fc:ed:72:39:e9:34:dd:6b:98:27:2c:
b3:f9:5a:ba:e6:c6:84:23:dc:3a:13:81:68:5e:ea:
c6:13:fd:34:3c:d7:98:99:a5:67:f3:c9:3d:4b:63:
93:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:7E:F8:3E:8D:A9:81:C0:91:D6:8B:8D:17:DD:29:C3:A3:29:B0:67
X509v3 Authority Key Identifier:
keyid:B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:e2:6a:cd:93:71:2a:7c:f4:1b:f6:5f:0c:69:3f:4c:71:ed:
f1:be:9f:6f:de:f7:b5:2d:51:cb:e2:69:27:27:c3:6b:43:03:
09:63:bb:19:1a:e3:8d:73:aa:6d:b7:5e:27:07:7f:77:6b:06:
c1:04:aa:d7:56:68:0b:fe:b0:b1:a8:99:7f:e2:64:58:56:eb:
94:b8:91:6c:ed:ad:27:d3:fc:86:7e:a0:2f:83:6f:38:26:82:
b5:74:fb:f3:13:2e:bf:2c:a7:44:ba:ed:af:7f:b6:3c:9e:98:
f9:10:a6:e9:d8:7e:6b:0a:3e:99:1e:b7:48:c5:19:c9:1a:5f:
18:f6:e5:7e:a1:89:bf:95:54:89:1e:a8:d9:49:86:47:9e:24:
4f:71:1c:23:e1:02:31:5b:ee:82:79:94:74:75:4f:93:ec:a1:
6e:e6:ef:ab:1b:c9:e5:26:f2:9b:a1:86:22:13:a9:ae:59:6e:
12:dc:63:ca:de:ce:76:91:c0:59:17:f0:3e:4b:1d:a9:b8:c9:
ed:ab:4b:38:de:e2:93:4f:0d:87:92:32:5a:cd:68:4a:6f:95:
64:1b:20:cb:9d:aa:bf:2f:30:11:a4:38:dd:0b:4a:ac:3d:b3:
d4:7f:04:e1:dc:b2:62:5c:5d:c4:9e:8e:1a:1d:37:1d:30:52:
c6:c5:85:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 20 21:13:26 2024 by rpki-client on console-ams.rpki-client.org