Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
File: pukanXyu9IGGdMXWJigTYVyJ3lY.mft (raw, json)
Hash identifier: 0PoMyVTruW1fZy+anwaWsOsi+B0282bG4cXy08Pg00s=
Subject key identifier: 21:25:BC:3D:A5:69:BF:AC:F6:24:8C:E4:33:4B:78:CA:67:50:4E:47
Authority key identifier: A6:E9:1A:9D:7C:AE:F4:81:86:74:C5:D6:26:28:13:61:5C:89:DE:56
Certificate issuer: /CN=a6e91a9d7caef4818674c5d6262813615c89de56
Certificate serial: 018F98A9E3E7C42E1BE63B6874C4E1899ABD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
Manifest number: 0AF4
Signing time: Tue 21 May 2024 01:00:21 +0000
Manifest this update: Tue 21 May 2024 01:00:21 +0000
Manifest next update: Wed 22 May 2024 01:00:21 +0000
Files and hashes: 1: pukanXyu9IGGdMXWJigTYVyJ3lY.crl (hash: LzOfrGO9WuhGfSL9WGpam3VWj0r8V99VsDZqtEIVt/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 01:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:98:a9:e3:e7:c4:2e:1b:e6:3b:68:74:c4:e1:89:9a:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6e91a9d7caef4818674c5d6262813615c89de56
Validity
Not Before: May 21 01:00:21 2024 GMT
Not After : May 22 01:00:21 2024 GMT
Subject: CN=2125bc3da569bfacf6248ce4334b78ca67504e47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:62:fa:76:9a:5c:3e:e9:d1:74:1f:05:d6:94:
36:f9:34:89:84:60:da:02:73:4f:e5:24:80:7e:dc:
c1:27:c0:74:05:45:01:13:7d:d0:18:cf:9b:fc:e2:
02:10:d8:32:dc:c7:52:7f:58:63:fd:da:9d:7f:73:
16:c6:d9:fd:59:41:e1:5b:3c:5d:aa:a4:39:af:d6:
07:32:6b:c8:f5:6b:61:80:91:31:29:ce:60:04:c3:
10:4f:d4:f5:e3:cf:64:0e:6d:33:cd:d4:a6:03:f2:
0a:b6:25:36:55:b5:a7:37:b6:18:47:10:e6:1b:cd:
d7:fd:7c:d5:7d:95:45:ee:bf:a4:82:e7:67:63:4d:
36:a4:7a:ac:51:d1:39:64:f8:a3:27:84:cf:a2:65:
c0:5b:e9:40:a1:29:1f:76:6a:2a:2c:77:11:8a:e7:
d6:e2:1c:10:52:a2:93:56:d1:da:b5:8c:6c:1b:93:
6c:24:fb:8e:e5:9e:3f:6b:a4:36:94:c5:ff:c5:ce:
79:63:ee:5b:63:af:13:40:6a:1a:18:67:69:81:02:
6f:de:4d:44:23:05:45:f2:fa:63:e2:39:ed:03:de:
0f:12:fb:7d:d9:94:fd:74:04:60:7f:14:45:38:b7:
a3:6f:f1:30:76:c2:90:02:44:3e:d1:23:97:a7:d8:
c2:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:25:BC:3D:A5:69:BF:AC:F6:24:8C:E4:33:4B:78:CA:67:50:4E:47
X509v3 Authority Key Identifier:
keyid:A6:E9:1A:9D:7C:AE:F4:81:86:74:C5:D6:26:28:13:61:5C:89:DE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:db:9c:57:2e:0a:09:e1:86:b5:16:76:df:e4:c3:eb:ff:70:
cb:a0:e0:e9:74:e6:2f:6a:83:94:8b:5f:79:01:45:35:aa:30:
84:97:0b:08:0d:83:42:fd:f0:85:c1:7b:34:85:68:e2:b5:7b:
f7:a3:50:b4:1d:61:e4:f6:bf:c4:f2:37:c7:39:8f:0f:9c:2c:
88:b1:8d:84:d5:1f:39:24:94:a8:81:6d:ec:3c:66:cb:e5:a8:
93:3e:1a:c9:90:d7:f9:aa:02:ff:68:35:62:a3:d8:f7:14:ab:
4d:64:bc:b0:17:74:e9:c0:e0:c3:b4:4c:e4:b3:26:54:7e:69:
28:64:45:fc:ed:fa:0c:13:8e:f3:48:12:bc:6a:7d:69:c9:6e:
8d:49:39:6d:b4:94:74:14:8f:ac:39:52:1e:96:e3:78:b1:a5:
0b:a1:9a:94:66:e1:ac:08:65:80:8f:a5:cb:53:ba:e9:7a:c2:
40:6c:65:2b:a6:2c:9c:8a:88:55:4c:e7:06:a9:22:a1:88:4d:
db:0d:73:d1:cd:92:6c:13:10:60:00:c2:a3:d0:e0:f9:e3:c1:
32:54:0b:4c:d6:81:a3:ac:bc:a4:40:96:df:c3:1f:e2:9e:17:
0e:29:60:12:23:11:7f:8e:c1:f9:f0:3f:56:e5:28:6a:ba:ec:
d2:a5:44:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 10:48:03 2024 by rpki-client on console-ams.rpki-client.org