Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
File: IhQgnik48W3KWTVwH6aG2Q_De54.mft (raw, json)
Hash identifier: yAl46MAKmzQEv3Rmc7qPRcY8sjW3j7K38XGe7gDxKTg=
Subject key identifier: FF:73:95:6C:5E:6E:2E:89:7D:D3:39:13:95:69:81:81:37:9E:E1:D2
Authority key identifier: 22:14:20:9E:29:38:F1:6D:CA:59:35:70:1F:A6:86:D9:0F:C3:7B:9E
Certificate issuer: /CN=2214209e2938f16dca5935701fa686d90fc37b9e
Certificate serial: 0191FB22E879AC5A9CD75A7563F8E1319C83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
Manifest number: 0149
Signing time: Mon 16 Sep 2024 14:00:54 +0000
Manifest this update: Mon 16 Sep 2024 14:00:54 +0000
Manifest next update: Tue 17 Sep 2024 14:00:54 +0000
Files and hashes: 1: IhQgnik48W3KWTVwH6aG2Q_De54.crl (hash: tc6eVbDtHBqk57YKz1q3W4A4IPbyiRo/FCDijaZRurw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 14:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fb:22:e8:79:ac:5a:9c:d7:5a:75:63:f8:e1:31:9c:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2214209e2938f16dca5935701fa686d90fc37b9e
Validity
Not Before: Sep 16 14:00:54 2024 GMT
Not After : Sep 17 14:00:54 2024 GMT
Subject: CN=ff73956c5e6e2e897dd3391395698181379ee1d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:fc:c0:4f:98:29:29:91:96:58:90:57:26:48:
91:d6:99:78:4d:59:25:4a:47:7a:64:25:d1:0f:9f:
91:5d:60:86:4a:34:dd:23:a5:71:e5:fa:99:52:74:
b0:d1:66:06:53:30:c3:8e:32:a6:69:20:d6:1a:29:
f3:60:27:ec:43:0c:7e:cb:8f:dd:6d:14:2f:80:5a:
d9:29:38:58:91:d8:21:49:aa:58:c6:cd:0d:a7:fe:
0a:3e:0e:48:0e:5c:6d:5f:f5:0e:e3:a5:e2:a6:cc:
d3:71:e3:b0:82:71:a4:61:ff:4a:e1:18:c8:ed:24:
b5:f6:9e:a1:05:38:cf:5f:c1:2d:77:22:0f:75:ff:
d7:75:6d:ae:a2:bc:e6:a1:a4:3d:5c:0a:88:f9:21:
ce:b8:b7:e5:1a:6d:a4:cb:0e:5a:44:cc:bc:ac:ef:
ee:c5:09:2f:0d:5a:b9:c4:94:4c:86:09:db:d1:69:
5f:c9:1e:53:66:42:bc:ad:be:8b:d7:9d:6a:ec:48:
d4:ff:f6:77:c0:f8:12:c1:52:56:af:1f:20:ba:5a:
94:10:f5:94:34:fc:d6:19:b9:ec:55:a0:7d:02:dc:
3c:90:28:fb:e3:73:17:a2:d9:8f:cb:4f:87:a9:2e:
a3:7d:01:60:fd:95:19:3a:56:85:2e:36:1c:70:40:
ae:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:73:95:6C:5E:6E:2E:89:7D:D3:39:13:95:69:81:81:37:9E:E1:D2
X509v3 Authority Key Identifier:
keyid:22:14:20:9E:29:38:F1:6D:CA:59:35:70:1F:A6:86:D9:0F:C3:7B:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:59:69:d6:35:fb:3e:7d:3e:89:29:35:12:cd:00:4e:c9:0c:
12:f2:fe:96:59:97:6e:2f:e5:8d:ce:01:dd:af:15:62:0a:94:
bb:02:34:0b:17:96:8e:8a:b2:47:87:9c:05:de:85:2d:9b:05:
1e:89:61:96:0d:45:ee:a9:5f:cc:97:a8:c7:50:a3:8d:7c:dd:
6e:1b:2f:fc:17:f8:97:9c:a0:4e:dc:ee:00:fc:95:91:9b:f7:
9c:8b:b2:da:6f:4b:31:ec:b5:25:70:b9:25:4c:71:c2:e4:44:
0d:ba:15:c8:d5:85:41:aa:d1:20:23:57:b8:f7:bb:e9:93:3f:
11:d7:9a:5d:4b:42:98:c1:8d:79:b8:a4:0c:f4:0d:8a:33:80:
ed:f8:c5:2f:74:31:a6:5d:bb:43:1a:fa:e2:6e:e1:bf:5e:11:
cd:42:3d:8a:63:cd:e3:12:75:da:70:d4:71:14:6e:21:e9:96:
a2:04:cd:21:4f:76:d0:3a:40:7d:54:ff:a0:08:8f:b5:48:e4:
cb:35:8f:cc:85:e0:26:b2:21:12:cb:d1:5b:4e:6e:68:7c:1a:
ca:af:e5:e7:e3:01:44:76:c8:cb:d6:b4:ef:25:97:a5:33:38:
bc:84:c8:6f:43:27:68:a9:43:3b:6c:8e:0f:81:59:e6:e3:fc:
67:a7:67:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 18:17:58 2024 by rpki-client on console-ams.rpki-client.org