Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
File: 0OZTSNwTyFSZx3dNFWYUwSARirU.mft (raw, json)
Hash identifier: oVJi/LoA9Nw0rjlCoob3W/s9ukVtdupI2PReMJA1A+0=
Subject key identifier: C2:7F:B2:67:7C:BA:D8:83:67:E8:D2:58:CE:13:12:1B:50:44:82:78
Authority key identifier: D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
Certificate issuer: /CN=d0e65348dc13c85499c7774d156614c120118ab5
Certificate serial: 018F3DE750C9F0613832804068765C4392B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
Manifest number: 10A9
Signing time: Fri 03 May 2024 10:02:00 +0000
Manifest this update: Fri 03 May 2024 10:02:00 +0000
Manifest next update: Sat 04 May 2024 10:02:00 +0000
Files and hashes: 1: 0OZTSNwTyFSZx3dNFWYUwSARirU.crl (hash: Hos0CiPRysa0+k3mdYMkVIxhZVZhOMQQYEtJ5s6KkHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 10:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3d:e7:50:c9:f0:61:38:32:80:40:68:76:5c:43:92:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e65348dc13c85499c7774d156614c120118ab5
Validity
Not Before: May 3 10:02:00 2024 GMT
Not After : May 4 10:02:00 2024 GMT
Subject: CN=c27fb2677cbad88367e8d258ce13121b50448278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e2:25:52:21:8f:90:33:5c:f4:80:f1:10:62:
8c:db:13:22:1a:70:fe:7a:65:30:12:84:fa:06:d6:
fd:86:18:17:54:bb:0a:35:73:6a:ce:87:5a:74:e2:
4a:e8:cf:95:a1:ae:cb:3c:23:8c:12:c3:71:df:51:
ae:35:3f:26:18:65:73:48:d1:6f:bb:ff:24:94:2f:
e5:4b:74:30:15:8a:ce:df:f6:f6:08:7f:1a:6e:62:
1c:4c:90:78:cd:d1:ce:b4:1a:0d:9a:b9:e2:12:8e:
02:8d:a5:e6:42:1f:1d:73:26:ec:72:3e:5a:cc:a9:
b3:fc:ff:4c:e5:80:91:0c:64:c3:92:3d:b8:5d:47:
f5:c2:82:1f:01:81:45:2e:20:8f:26:93:75:87:61:
19:e3:2f:fa:6c:46:fb:7f:9b:cb:b1:71:91:e8:40:
2c:17:0e:db:15:5b:c4:84:06:8e:28:e3:42:87:8e:
5b:7d:aa:6b:6c:ec:9a:3b:02:7c:02:58:b5:f6:eb:
62:d1:2e:4c:6f:26:32:fa:4f:0f:5f:53:45:45:81:
a9:2e:71:dd:56:4f:25:65:14:bf:b3:a6:6b:fb:1a:
19:7e:73:b2:e3:28:38:6e:a0:3d:06:b4:b4:04:da:
60:8f:2e:54:0b:32:65:93:06:9d:86:ad:e1:dc:ff:
18:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:7F:B2:67:7C:BA:D8:83:67:E8:D2:58:CE:13:12:1B:50:44:82:78
X509v3 Authority Key Identifier:
keyid:D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:16:dc:e4:fe:ff:a9:1a:7d:66:02:94:f8:e9:2d:4c:b3:55:
e1:a7:8f:f1:23:99:9f:cb:c9:f6:05:74:41:1b:72:e7:14:6f:
97:d4:f5:ef:11:24:6f:23:54:81:b0:c8:15:26:0b:d6:aa:3f:
eb:ce:de:9d:63:b5:52:e1:19:02:91:70:0c:ab:a3:8d:95:66:
95:a9:a4:b0:dc:86:71:5f:3b:93:c8:02:22:ef:74:11:28:8c:
e7:15:be:9c:e3:b6:00:e8:53:61:24:e6:a5:96:81:67:9e:05:
cb:57:c9:66:d1:ef:23:7d:b5:39:dc:d3:17:93:d7:8e:60:3e:
86:6b:df:41:3b:7e:8d:66:cc:62:78:65:aa:cf:96:ae:1b:f6:
aa:3a:ee:b6:91:bd:b9:b3:96:39:14:6b:2b:5b:47:7f:ab:b1:
5f:b8:8e:18:33:50:0f:57:67:4e:70:f7:2b:46:7a:61:dd:f1:
8e:4e:f7:97:16:aa:1d:b9:b7:78:85:9d:0d:e1:35:d7:1c:0f:
54:39:d5:0a:71:18:72:e4:2c:dd:a7:d2:a8:1d:62:00:d1:fe:
6b:a9:9f:09:35:a7:5a:45:7f:68:c1:25:8f:2e:15:0c:55:55:
30:8c:43:ab:f5:67:73:6d:8e:e7:8d:a7:c5:6f:45:a5:c0:ee:
15:eb:bf:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 15:44:52 2024 by rpki-client on console-fra.rpki-client.org