Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/f907aa-2acd-4dc7-9f0d-d7b08948f7c7/1/r-iiApeGib2NX15X_MG_64Z8Mio.mft
File: r-iiApeGib2NX15X_MG_64Z8Mio.mft (raw, json)
Hash identifier: dGG9b7tig5rDwBZSrcAjLR3ks+7Skl/ZLOy/XJkTWJ4=
Subject key identifier: 6D:01:A9:35:DC:EE:5E:E9:A2:01:39:97:D3:E1:9E:9C:58:EC:D0:0C
Authority key identifier: AF:E8:A2:02:97:86:89:BD:8D:5F:5E:57:FC:C1:BF:EB:86:7C:32:2A
Certificate issuer: /CN=afe8a202978689bd8d5f5e57fcc1bfeb867c322a
Certificate serial: 018F893810193BC30E6B41537AC6598BCE11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r-iiApeGib2NX15X_MG_64Z8Mio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/f907aa-2acd-4dc7-9f0d-d7b08948f7c7/1/r-iiApeGib2NX15X_MG_64Z8Mio.mft
Manifest number: 1175
Signing time: Sat 18 May 2024 01:01:43 +0000
Manifest this update: Sat 18 May 2024 01:01:43 +0000
Manifest next update: Sun 19 May 2024 01:01:43 +0000
Files and hashes: 1: r-iiApeGib2NX15X_MG_64Z8Mio.crl (hash: xcHruEdW2JvERsZFYC2N9yJvxgunt36c+LflNMBYrTE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/f907aa-2acd-4dc7-9f0d-d7b08948f7c7/1/r-iiApeGib2NX15X_MG_64Z8Mio.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/f907aa-2acd-4dc7-9f0d-d7b08948f7c7/1/r-iiApeGib2NX15X_MG_64Z8Mio.mft
rsync://rpki.ripe.net/repository/DEFAULT/r-iiApeGib2NX15X_MG_64Z8Mio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:89:38:10:19:3b:c3:0e:6b:41:53:7a:c6:59:8b:ce:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afe8a202978689bd8d5f5e57fcc1bfeb867c322a
Validity
Not Before: May 18 01:01:43 2024 GMT
Not After : May 19 01:01:43 2024 GMT
Subject: CN=6d01a935dcee5ee9a2013997d3e19e9c58ecd00c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c0:30:28:55:f4:5b:74:7b:ea:5a:ff:a0:41:
74:20:6d:e2:f1:4c:a5:a3:3d:ea:1a:86:25:46:9e:
90:a8:87:23:28:aa:33:c5:f1:5f:de:69:5d:5a:0b:
44:18:ef:72:63:fc:4d:5e:33:92:e8:87:33:32:ac:
fa:21:c6:8b:2c:c5:93:e0:7b:16:46:68:4a:0c:e8:
17:13:fa:b2:cc:9f:09:d2:52:ed:9c:a6:24:9d:ca:
a9:f2:57:2b:dc:7b:d3:dd:68:ad:e0:f2:f3:81:98:
7d:9c:f4:34:48:38:76:7e:36:3b:97:bc:a3:80:df:
2f:49:a0:39:6b:3a:63:b1:d5:7b:56:9b:5d:ec:da:
a3:fe:a3:24:e5:76:dd:79:9e:48:0a:22:c5:91:1b:
9f:0f:40:c9:d8:65:db:1a:dd:e2:7c:4f:36:02:77:
0a:84:cb:41:71:a0:eb:61:e2:1d:09:ff:15:29:90:
2c:68:2d:6e:74:e0:d4:98:be:6f:6c:4c:c9:53:b8:
82:28:ee:0a:59:a2:a0:c6:2d:2c:a2:e6:f7:96:b0:
00:06:34:08:8b:54:c1:cc:be:53:df:47:91:ad:4a:
8c:98:c3:f0:2d:7c:36:af:06:0a:04:3f:0f:12:fe:
64:b2:e7:d3:52:cf:52:37:04:34:65:d3:fb:58:d0:
b0:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:01:A9:35:DC:EE:5E:E9:A2:01:39:97:D3:E1:9E:9C:58:EC:D0:0C
X509v3 Authority Key Identifier:
keyid:AF:E8:A2:02:97:86:89:BD:8D:5F:5E:57:FC:C1:BF:EB:86:7C:32:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r-iiApeGib2NX15X_MG_64Z8Mio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f907aa-2acd-4dc7-9f0d-d7b08948f7c7/1/r-iiApeGib2NX15X_MG_64Z8Mio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f907aa-2acd-4dc7-9f0d-d7b08948f7c7/1/r-iiApeGib2NX15X_MG_64Z8Mio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:9d:b7:ec:40:84:78:d3:50:0d:3c:ff:ff:3d:57:32:60:cc:
b8:c9:84:82:1d:a7:97:3a:e9:25:0d:f6:ad:56:40:4d:5c:68:
3d:42:c9:1f:82:cf:81:db:57:61:14:96:38:5b:2b:72:d4:e7:
b9:39:09:0b:e4:76:d6:93:5d:41:a3:d2:17:9c:65:6d:34:3e:
11:83:78:12:eb:60:36:91:49:23:8b:49:93:2f:6e:8c:70:b2:
73:7d:fb:03:3b:91:82:4f:72:36:c7:e5:e9:b6:3e:a6:5e:0a:
4a:4c:ee:69:da:9d:ba:a7:8c:f4:bb:c9:b0:43:61:ad:7d:35:
c3:60:67:a1:c7:43:bf:35:c4:3e:c1:5b:23:7a:b6:8a:8c:6d:
23:b3:cc:ad:ec:5b:42:8e:a9:30:55:46:62:fc:0d:85:c6:15:
d0:00:35:7e:98:bc:75:52:ac:af:ac:73:19:ed:31:de:a5:9c:
28:fc:d7:98:2f:db:4d:f0:e7:05:05:7b:ee:6a:c0:ac:12:17:
a9:40:81:a7:4f:9f:0d:bf:5a:4f:f5:02:17:8f:7a:e9:40:33:
69:d9:b0:28:5c:21:db:a1:44:25:06:e4:bd:03:37:73:61:96:
24:bc:a1:11:dd:49:95:0f:fd:d2:7a:a2:3b:ea:a7:69:ce:82:
06:a1:32:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 02:10:47 2024 by rpki-client on console-fra.rpki-client.org