Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.mft
File: 2nGl-6KA1tAY7MOp1-WMPGEeav0.mft (raw, json)
Hash identifier: hbYUfk0aUhlEFVbtpj7+BqgmoaRhV2C2gDwy/hAuH8M=
Subject key identifier: 21:4F:18:A9:89:7D:33:89:38:46:1B:7A:D4:DC:AB:57:8C:F0:DF:02
Authority key identifier: DA:71:A5:FB:A2:80:D6:D0:18:EC:C3:A9:D7:E5:8C:3C:61:1E:6A:FD
Certificate issuer: /CN=da71a5fba280d6d018ecc3a9d7e58c3c611e6afd
Certificate serial: 018F5512FFBC8C49ABC89EAB2495E9E254EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nGl-6KA1tAY7MOp1-WMPGEeav0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.mft
Manifest number: 115A
Signing time: Tue 07 May 2024 22:00:59 +0000
Manifest this update: Tue 07 May 2024 22:00:59 +0000
Manifest next update: Wed 08 May 2024 22:00:59 +0000
Files and hashes: 1: 2nGl-6KA1tAY7MOp1-WMPGEeav0.crl (hash: oowIrFaw/vdmwU5e8263Ef/LbbXn8+c8D8Owevwno7A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nGl-6KA1tAY7MOp1-WMPGEeav0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 22:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:55:12:ff:bc:8c:49:ab:c8:9e:ab:24:95:e9:e2:54:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da71a5fba280d6d018ecc3a9d7e58c3c611e6afd
Validity
Not Before: May 7 22:00:59 2024 GMT
Not After : May 8 22:00:59 2024 GMT
Subject: CN=214f18a9897d338938461b7ad4dcab578cf0df02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:83:90:90:9d:ea:29:fc:96:9d:c3:8f:b4:3d:
70:4c:d2:dd:82:59:80:ee:46:e0:77:e6:19:fd:ef:
55:f8:6d:8c:11:ef:a5:6a:df:bf:74:01:c5:f0:f1:
89:e4:72:6d:5d:a9:73:c9:8f:d5:a9:57:37:86:b2:
31:89:3d:ad:14:7e:d0:20:e3:6c:38:20:a6:7b:5f:
1e:a1:db:c2:3e:3a:7e:34:1c:8b:ce:14:f5:7e:ee:
72:c5:0b:55:44:7f:32:10:6b:4b:0c:cf:8d:db:14:
6b:64:4d:e0:ef:77:0e:9a:df:21:3b:23:34:d1:55:
b8:d1:af:28:ef:51:bd:ac:52:df:92:ce:47:15:0f:
d3:48:95:4d:da:ed:02:58:11:7f:77:80:24:18:82:
a0:02:ba:94:9b:c4:b0:d0:f5:17:7e:2a:43:70:8e:
ba:e7:e5:48:8f:22:e2:54:53:54:3d:2e:9e:9a:c6:
40:6e:fb:63:87:5e:f8:a4:41:81:88:33:6e:65:1b:
ed:42:d5:7a:4c:04:81:6d:aa:d0:59:ab:87:91:21:
bc:fc:f8:cf:49:fa:33:62:72:6c:8e:c5:a4:15:c4:
e7:0f:41:59:f4:3a:5c:9e:a5:dc:1e:0f:18:ea:79:
e2:61:7a:c8:5e:c9:ba:15:75:e5:9b:2b:a4:dd:17:
b7:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:4F:18:A9:89:7D:33:89:38:46:1B:7A:D4:DC:AB:57:8C:F0:DF:02
X509v3 Authority Key Identifier:
keyid:DA:71:A5:FB:A2:80:D6:D0:18:EC:C3:A9:D7:E5:8C:3C:61:1E:6A:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nGl-6KA1tAY7MOp1-WMPGEeav0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:06:f6:06:46:fe:bc:d5:a3:41:f1:72:04:81:fb:82:07:df:
26:1f:9c:6a:06:f5:ce:6a:57:90:74:81:18:4f:5f:0d:7d:8a:
52:88:77:2e:57:fe:6d:ea:92:31:05:cd:86:9d:2a:1f:0d:c0:
35:02:cb:92:f9:23:9f:92:04:83:d0:15:57:07:b3:cf:c6:1e:
76:e7:22:42:06:54:8f:03:55:58:3c:5d:6f:6d:98:12:b0:de:
3e:62:a2:9b:61:63:01:13:e0:7d:4d:fc:74:cf:5f:5c:16:8c:
89:af:3f:0e:ea:73:b4:16:a4:01:0e:ee:d2:b9:b5:ac:9e:dd:
52:b8:04:d1:3e:ff:0b:fd:1a:d7:e7:ab:d5:dd:cc:4a:ff:21:
15:38:88:c3:26:a8:d0:6b:49:b5:98:f7:84:4f:17:b0:96:1e:
ca:05:e0:26:26:6d:52:c7:5f:8c:01:93:de:68:c1:f5:a4:75:
2a:56:38:2d:5b:ee:49:d8:b2:f6:c1:5f:8e:02:4f:f0:6f:17:
54:bf:de:08:4f:7b:ba:be:04:78:32:2e:3b:d9:e0:a1:12:e0:
db:19:6b:38:4f:bd:84:94:d0:67:b2:fb:31:53:97:78:85:15:
37:f7:23:94:68:3f:3d:e4:eb:e3:a5:c0:f4:4a:9e:fa:88:0b:
06:11:c6:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 02:42:13 2024 by rpki-client on console-fra.rpki-client.org