Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
File: 2xjQrivPZ9QUonXLOE8tOWCoN70.mft (raw, json)
Hash identifier: z+FUvBlYvyUSYRkSe3ZIl5JkwGUku08iHec3pPa1qBM=
Subject key identifier: 80:D1:B1:6A:DC:BA:A7:53:5D:43:6D:5E:00:DB:ED:94:3A:7A:94:5F
Authority key identifier: DB:18:D0:AE:2B:CF:67:D4:14:A2:75:CB:38:4F:2D:39:60:A8:37:BD
Certificate issuer: /CN=db18d0ae2bcf67d414a275cb384f2d3960a837bd
Certificate serial: 018F369ADFDEFD6E692794BACAA7FBF44B6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
Manifest number: 08C6
Signing time: Thu 02 May 2024 00:01:10 +0000
Manifest this update: Thu 02 May 2024 00:01:10 +0000
Manifest next update: Fri 03 May 2024 00:01:10 +0000
Files and hashes: 1: 2xjQrivPZ9QUonXLOE8tOWCoN70.crl (hash: yi8QkL64+AY17NmigUd1XAVtcMYyM/FsGffM9Yu+7EM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:36:9a:df:de:fd:6e:69:27:94:ba:ca:a7:fb:f4:4b:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db18d0ae2bcf67d414a275cb384f2d3960a837bd
Validity
Not Before: May 2 00:01:10 2024 GMT
Not After : May 3 00:01:10 2024 GMT
Subject: CN=80d1b16adcbaa7535d436d5e00dbed943a7a945f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:66:d3:c3:a3:87:3f:c1:0b:eb:21:60:77:16:
44:25:86:b5:4e:a9:ae:37:ff:77:0a:a9:5f:fa:8b:
9b:ab:9c:d9:83:1d:03:20:65:d1:3a:45:f8:43:ab:
2e:8b:34:9d:f2:b9:dd:25:5b:8c:4c:88:15:a7:ee:
b1:ca:cd:54:04:1b:72:c2:91:cc:6f:41:e4:56:ea:
a0:27:2f:cf:0e:b6:fc:f4:c3:ff:db:94:f9:98:45:
ec:05:f7:b9:20:0a:37:88:95:10:04:d3:25:5e:8b:
dd:34:91:8b:87:21:05:2d:92:c3:a1:44:83:f5:6d:
3b:7c:96:11:6d:c5:cc:11:89:7a:62:a6:cc:0e:8c:
32:e2:71:74:2d:54:f2:90:cc:1e:3f:cf:a5:5d:d3:
f0:92:62:f4:9d:08:3b:b2:dc:c6:32:3a:c6:cb:bf:
b3:c9:ac:45:aa:d7:db:a5:6d:5f:d1:18:9e:46:00:
a9:84:36:2f:46:58:f8:37:df:99:4a:b1:fc:0d:d8:
88:f4:ca:44:c9:56:f1:92:ed:6e:ab:2e:0b:de:ac:
9f:6f:54:c8:d0:79:35:ba:cb:41:df:62:a3:4a:3b:
84:49:6d:19:01:bb:93:ea:90:49:55:79:50:93:40:
13:4e:4c:fa:3c:2e:ce:dd:a9:1e:7e:c5:d7:cc:f4:
00:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:D1:B1:6A:DC:BA:A7:53:5D:43:6D:5E:00:DB:ED:94:3A:7A:94:5F
X509v3 Authority Key Identifier:
keyid:DB:18:D0:AE:2B:CF:67:D4:14:A2:75:CB:38:4F:2D:39:60:A8:37:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:17:a0:71:51:3e:d4:ac:49:88:04:05:cc:b4:d1:4a:22:40:
07:80:2b:09:b3:94:61:0e:50:2c:36:43:5e:dd:35:57:4c:e8:
ea:11:ff:26:a1:e3:af:a5:e8:21:85:37:49:3e:af:ac:89:c1:
18:ea:f0:32:d3:40:75:8b:b6:b9:04:8b:a9:8b:db:da:62:66:
aa:f4:f7:9a:2a:15:99:cc:12:10:2a:b3:94:c6:01:18:ba:df:
d4:c3:c0:79:c8:94:bf:1b:f2:35:22:4c:62:8f:02:6c:49:0c:
ee:44:a4:6f:7c:d2:24:0d:6b:a0:58:ab:e4:bc:7a:ce:40:08:
ea:1c:52:0b:32:b1:d6:5d:df:e9:6e:26:38:14:2c:6c:f3:92:
a3:6d:85:ca:fd:f8:26:00:cf:17:68:78:fc:4e:fc:0f:c3:e2:
c4:a6:b6:f3:bc:d1:b1:19:01:37:17:10:d6:c7:e9:15:7e:b2:
c3:f2:a2:1e:9e:ac:31:75:1b:a4:af:6f:4d:e7:f4:a6:e9:c4:
a3:99:b1:80:3a:b0:d9:ef:92:2c:31:23:79:d3:b1:88:9a:24:
02:4f:b8:db:ac:0d:80:f9:94:31:06:0b:29:f2:51:9d:78:5b:
4d:7a:47:3e:13:8f:b4:68:69:f0:f1:ae:5a:74:3c:af:5e:8e:
1c:3f:af:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 06:24:14 2024 by rpki-client on console-ams.rpki-client.org