Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
File: SFk-QNpaUvMi21oEwg-0htThVQI.mft (raw, json)
Hash identifier: KxeYFJEBH22WYd8GSnlogB92itCQVcedSx7QhQ21y0A=
Subject key identifier: 8A:B0:34:1C:0C:5C:4A:C5:B5:73:06:E1:63:B2:2A:50:E5:6C:63:95
Authority key identifier: 48:59:3E:40:DA:5A:52:F3:22:DB:5A:04:C2:0F:B4:86:D4:E1:55:02
Certificate issuer: /CN=48593e40da5a52f322db5a04c20fb486d4e15502
Certificate serial: 018F99181D38E94F16EF3B4310E92257EDCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
Manifest number: 0E3B
Signing time: Tue 21 May 2024 03:00:45 +0000
Manifest this update: Tue 21 May 2024 03:00:45 +0000
Manifest next update: Wed 22 May 2024 03:00:45 +0000
Files and hashes: 1: SFk-QNpaUvMi21oEwg-0htThVQI.crl (hash: EFvd1A9j5ySQWUnnep4YzIkznqe6D2nIS9FrztQT4TM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 22:57:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:99:18:1d:38:e9:4f:16:ef:3b:43:10:e9:22:57:ed:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48593e40da5a52f322db5a04c20fb486d4e15502
Validity
Not Before: May 21 03:00:45 2024 GMT
Not After : May 22 03:00:45 2024 GMT
Subject: CN=8ab0341c0c5c4ac5b57306e163b22a50e56c6395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:f3:52:b9:2b:49:d3:fa:fb:11:3c:0f:87:ff:
97:63:c9:ca:3b:ab:9a:2e:53:0c:a2:f0:de:93:71:
6e:0f:0d:f4:ea:ad:3d:22:16:62:05:8d:12:a0:54:
63:fd:9e:6a:1b:16:16:38:91:94:53:94:1b:76:9f:
a4:a8:e7:51:11:2c:30:1f:63:26:9b:38:3a:17:a3:
03:5c:f5:a6:9d:f8:5f:13:32:1b:bf:fb:54:b5:10:
9f:fd:82:59:3f:50:39:06:87:65:fb:aa:72:50:de:
87:e5:93:85:8b:98:0b:0d:01:f5:c8:eb:eb:c5:f9:
cd:2b:be:67:4f:25:94:ad:f6:3e:a7:28:3c:be:e6:
43:25:4f:d6:c9:15:65:e0:99:d9:5a:81:d9:4c:28:
0b:8c:ea:e0:59:8c:00:ac:09:67:ab:e6:4f:ee:82:
87:c6:5d:a8:aa:20:87:b3:3d:c5:5f:c3:4d:fc:b3:
5f:53:7d:b5:c1:a3:fd:3b:fa:71:a2:8f:9d:a1:89:
d7:2b:6a:6d:05:5b:73:c1:c5:c3:f6:65:d9:92:37:
d3:4a:2c:7e:ef:a5:ce:5a:4d:5c:81:a6:eb:b6:4b:
50:b7:cd:3d:8e:81:a1:61:0c:11:77:7f:54:e3:39:
d5:74:58:1a:2d:4c:58:b1:29:ae:c5:7c:82:8c:15:
f9:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:B0:34:1C:0C:5C:4A:C5:B5:73:06:E1:63:B2:2A:50:E5:6C:63:95
X509v3 Authority Key Identifier:
keyid:48:59:3E:40:DA:5A:52:F3:22:DB:5A:04:C2:0F:B4:86:D4:E1:55:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:b1:de:0c:b6:8c:6c:4d:c0:2d:e3:ed:8b:88:91:b7:8f:15:
a9:86:82:52:21:5e:85:74:a3:d4:be:87:e8:d1:38:fd:74:7d:
94:bf:fd:47:92:ca:c4:25:12:40:22:65:0a:52:e1:8f:a4:17:
41:23:4f:d0:a6:d9:a6:48:25:16:6a:36:a0:42:17:4c:76:d9:
55:a4:6a:7c:3b:b2:e2:ed:af:c4:19:bd:b6:b6:d8:48:c4:91:
d0:00:7c:66:b4:c5:50:90:ea:48:d0:05:f7:f4:76:ea:49:66:
17:9a:f4:3d:75:22:6f:02:65:8b:82:10:77:2c:e8:ad:0d:ce:
ce:b9:f8:5d:83:cd:35:cd:4e:ad:41:fa:43:a2:f2:ba:0a:e2:
0d:dd:d3:53:53:e3:40:b4:10:89:d2:51:27:a5:84:17:b7:6b:
57:c8:c3:54:b8:9a:af:4c:19:9b:db:3a:72:40:9b:5a:63:d7:
45:8a:0d:43:b4:9b:36:a5:4c:3d:bd:6f:d8:7e:bc:ac:98:3e:
2f:b7:06:62:57:3f:ee:e9:e8:33:8f:a5:8d:71:29:91:ba:13:
a0:9e:94:6b:22:47:60:57:54:71:84:0a:b9:61:64:aa:9b:f1:
18:f8:2e:22:43:1a:4a:a9:4f:44:e3:1b:89:81:3b:17:fc:e3:
53:eb:77:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 03:33:17 2024 by rpki-client on console-fra.rpki-client.org