Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.mft
File: 1K5pV43Ol3ozqindV8oZD6aHd_o.mft (raw, json)
Hash identifier: pooRojURTZoZbVB4wm3V3LbVwu9btKL3NGh4TVhBLac=
Subject key identifier: EB:5F:41:31:BB:BE:1B:16:C2:D0:67:33:BE:DA:2B:92:0F:CB:1F:97
Authority key identifier: D4:AE:69:57:8D:CE:97:7A:33:AA:29:DD:57:CA:19:0F:A6:87:77:FA
Certificate issuer: /CN=d4ae69578dce977a33aa29dd57ca190fa68777fa
Certificate serial: 018F497DEF8BC5A69DC509261CD5D507F329
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1K5pV43Ol3ozqindV8oZD6aHd_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.mft
Manifest number: 07CE
Signing time: Sun 05 May 2024 16:02:21 +0000
Manifest this update: Sun 05 May 2024 16:02:21 +0000
Manifest next update: Mon 06 May 2024 16:02:21 +0000
Files and hashes: 1: 1K5pV43Ol3ozqindV8oZD6aHd_o.crl (hash: RSSndHRsz51kblKcvi+0zzfKXKw91+orJy5r9ofpurc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/1K5pV43Ol3ozqindV8oZD6aHd_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 16:02:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:49:7d:ef:8b:c5:a6:9d:c5:09:26:1c:d5:d5:07:f3:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4ae69578dce977a33aa29dd57ca190fa68777fa
Validity
Not Before: May 5 16:02:21 2024 GMT
Not After : May 6 16:02:21 2024 GMT
Subject: CN=eb5f4131bbbe1b16c2d06733beda2b920fcb1f97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:aa:39:2d:a6:dd:c9:cc:c2:b1:af:ff:00:28:
c4:b6:4e:76:1f:d1:25:15:b0:cb:9f:7b:55:05:34:
c2:bb:3c:07:fb:80:75:05:c9:9c:8e:7f:87:e9:2d:
ae:50:85:4e:80:c8:27:60:2e:cc:47:a5:6d:15:36:
00:e5:8a:44:38:3d:ea:84:71:08:0a:e6:9a:55:41:
02:23:fb:8d:26:ff:aa:31:5b:c2:84:4d:03:94:26:
f9:12:a6:dd:d8:3f:af:19:2e:cb:af:21:07:1c:ee:
ed:c3:f9:1f:33:f8:53:ef:a1:8e:77:73:3b:1a:23:
ac:28:70:6d:3a:f2:8b:c3:a2:da:fa:1b:1f:6c:77:
8e:dc:2d:8f:77:71:09:7c:9d:88:c9:8c:b4:6a:9b:
47:6d:bb:7c:79:58:58:b8:f0:60:c0:33:aa:a0:ce:
ab:b8:97:fd:d6:54:9d:35:84:53:a7:b7:cf:81:8e:
97:ca:24:2c:24:be:f8:65:41:f4:de:86:b9:eb:81:
b7:97:2f:e3:dc:83:7c:b2:68:ca:2d:e9:ae:d4:0a:
81:39:c9:4a:af:20:d7:96:b4:0c:f5:9d:1d:b9:82:
5b:df:31:9f:64:ce:3c:7f:03:32:62:7d:d4:d0:94:
82:9c:60:ea:0b:2e:98:79:05:79:2f:8a:9f:da:4e:
ec:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:5F:41:31:BB:BE:1B:16:C2:D0:67:33:BE:DA:2B:92:0F:CB:1F:97
X509v3 Authority Key Identifier:
keyid:D4:AE:69:57:8D:CE:97:7A:33:AA:29:DD:57:CA:19:0F:A6:87:77:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1K5pV43Ol3ozqindV8oZD6aHd_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:a5:41:3d:49:9b:e0:26:06:e5:f9:ba:fe:4f:dd:e3:54:f6:
d4:cf:0d:09:69:96:00:69:30:4e:48:0a:50:15:b0:29:23:83:
53:51:1e:b6:f1:de:c8:eb:f4:48:8f:41:b3:b0:e7:99:b2:24:
85:bb:cc:0f:2e:33:a4:cb:c7:8c:32:c7:eb:37:89:c9:e1:b6:
13:eb:8b:5c:4d:19:0f:78:20:53:a2:6e:95:30:52:5e:8e:e1:
fb:8a:c4:03:62:68:e1:d3:6a:f6:75:17:00:01:bb:7a:70:d7:
1d:84:d7:e3:e5:a8:cc:49:1a:45:3d:13:e1:10:9f:e7:7c:61:
84:a7:0a:d6:8d:2f:18:65:94:55:07:c4:cd:d7:d3:ae:05:c1:
89:81:d7:5a:3e:cb:e8:52:7e:37:9f:ec:69:61:68:55:ee:cb:
fc:c5:fb:25:a9:41:62:91:1c:b2:f1:3e:72:34:65:ce:df:2f:
a4:92:a8:19:dc:d5:42:82:f5:08:0e:7a:59:0b:03:92:5d:15:
72:84:5a:31:6e:8c:05:20:de:7c:cb:09:40:01:24:98:05:3d:
f8:68:60:75:c3:b9:37:e9:22:44:fb:83:85:33:d9:94:22:e1:
91:ee:ae:bd:d0:5f:f0:4c:de:10:41:fb:04:d9:62:cd:da:98:
64:7a:e7:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 19:33:36 2024 by rpki-client on console-ams.rpki-client.org