Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft
File: 3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft (raw, json)
Hash identifier: +hp/GoRFmH41yT8nhLCXP3QrCsMGhqU7DDPekdf5sew=
Subject key identifier: 1F:53:1D:16:86:F0:80:CA:05:DA:D7:E2:12:F0:DD:61:1F:9D:86:AD
Authority key identifier: DD:B7:B0:01:9E:19:F1:12:F4:D2:BC:FD:6E:A1:2D:90:81:FC:58:7E
Certificate issuer: /CN=ddb7b0019e19f112f4d2bcfd6ea12d9081fc587e
Certificate serial: 018F4FB671DC924CEFFCBB985E4E1FBB2841
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3bewAZ4Z8RL00rz9bqEtkIH8WH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft
Manifest number: 1156
Signing time: Mon 06 May 2024 21:01:47 +0000
Manifest this update: Mon 06 May 2024 21:01:47 +0000
Manifest next update: Tue 07 May 2024 21:01:47 +0000
Files and hashes: 1: 3bewAZ4Z8RL00rz9bqEtkIH8WH4.crl (hash: qBBqRAA//g+H4xkFfdueNzMySRPYmr0rKfVAB7QkYvc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3bewAZ4Z8RL00rz9bqEtkIH8WH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4f:b6:71:dc:92:4c:ef:fc:bb:98:5e:4e:1f:bb:28:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddb7b0019e19f112f4d2bcfd6ea12d9081fc587e
Validity
Not Before: May 6 21:01:47 2024 GMT
Not After : May 7 21:01:47 2024 GMT
Subject: CN=1f531d1686f080ca05dad7e212f0dd611f9d86ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d3:b1:39:0c:bb:9c:35:30:a5:44:5e:10:3f:
06:48:60:0a:c4:ef:82:c1:a6:b9:49:79:d8:3d:19:
5b:97:c5:21:b7:9e:92:2b:19:65:29:21:42:d8:0b:
73:a8:9e:2d:06:16:c8:e1:92:c7:f0:0e:c6:97:17:
b7:c7:42:35:cf:aa:02:ac:47:f4:36:99:86:2a:ea:
3f:36:0f:6d:ab:1e:03:09:ea:a2:60:c7:34:ad:d0:
4d:14:88:68:f7:da:64:4d:5a:86:8e:ab:50:68:6b:
2b:da:1b:fc:f1:2b:08:9b:0b:c3:35:e7:b6:01:89:
0c:01:ee:9c:18:10:c6:5c:db:08:e0:6e:65:5e:1c:
41:98:62:1b:01:1e:44:86:86:d4:48:d4:3d:65:d7:
ac:7d:d9:90:de:79:4f:f3:d7:1b:29:7e:aa:2a:59:
da:bf:98:01:46:e7:b0:ad:0b:e9:ea:a1:ef:e8:d2:
34:2b:3b:be:80:87:d5:a7:e4:72:7f:e1:96:a1:66:
a9:e5:fb:e9:60:2f:b5:bf:a3:26:1e:f2:93:07:6e:
d1:75:39:a1:fd:38:b0:52:50:49:cf:44:3e:ed:7d:
ce:b3:35:8a:9e:59:3d:d8:fe:32:91:f4:69:07:e6:
21:ed:2a:15:69:93:9a:01:db:45:7d:89:82:c4:e9:
53:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:53:1D:16:86:F0:80:CA:05:DA:D7:E2:12:F0:DD:61:1F:9D:86:AD
X509v3 Authority Key Identifier:
keyid:DD:B7:B0:01:9E:19:F1:12:F4:D2:BC:FD:6E:A1:2D:90:81:FC:58:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3bewAZ4Z8RL00rz9bqEtkIH8WH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:90:c9:cb:fd:e2:3d:8b:31:8d:f2:f4:96:16:32:87:b1:47:
56:69:55:0a:8b:3b:72:c7:df:92:b5:e7:a2:aa:e5:ef:9d:2f:
ee:e2:f7:2f:b9:31:a1:0d:1f:ec:0b:da:a9:b4:a8:e6:1b:78:
e1:49:4d:9a:7a:06:0d:7c:60:17:14:a6:9f:52:84:4e:8b:dc:
82:72:c9:4f:c2:85:fd:2d:b9:a9:69:14:da:1d:11:6a:06:37:
df:62:35:42:5c:99:cc:ef:47:9e:8a:5a:32:ef:2f:7e:ef:af:
81:db:46:7b:63:67:bd:7a:b2:5e:f2:e0:c2:86:99:40:42:9d:
a8:ab:50:33:16:3a:6a:6d:c6:53:84:14:83:e3:ae:a6:7f:fe:
6e:ed:3e:34:30:57:7c:3f:2c:e2:d4:c0:45:b6:1c:9f:2e:6b:
30:15:ed:fc:10:cf:b9:78:84:68:1c:0e:38:f7:c0:ef:59:ad:
e7:ef:2b:be:ed:bc:dd:ee:be:b0:58:cf:76:83:76:42:0c:ce:
9e:0f:25:01:16:af:de:fd:95:c1:80:d5:25:15:a5:e5:4c:d2:
36:36:3f:be:bb:8a:6e:02:16:d7:8d:f1:ad:25:a0:91:39:b7:
9d:01:be:36:82:68:58:3e:f4:98:a2:53:f8:aa:67:6a:0a:ac:
36:6b:9d:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 23:14:15 2024 by rpki-client on console-ams.rpki-client.org