Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.mft
File: 2lPr-vXBh42KIqk44XMqigdxTzU.mft (raw, json)
Hash identifier: sOzVQ26PULyOF8N4iHCxDTOF6MAJ5/GdxHUf+hdVS3g=
Subject key identifier: B4:2E:65:C6:D9:13:E3:8F:29:6E:98:F2:95:4C:CF:0E:1F:EC:D8:C7
Authority key identifier: DA:53:EB:FA:F5:C1:87:8D:8A:22:A9:38:E1:73:2A:8A:07:71:4F:35
Certificate issuer: /CN=da53ebfaf5c1878d8a22a938e1732a8a07714f35
Certificate serial: 018F4EA3B15F064D219EDD6D7AF56CFD5D4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2lPr-vXBh42KIqk44XMqigdxTzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.mft
Manifest number: 1157
Signing time: Mon 06 May 2024 16:01:41 +0000
Manifest this update: Mon 06 May 2024 16:01:41 +0000
Manifest next update: Tue 07 May 2024 16:01:41 +0000
Files and hashes: 1: 2lPr-vXBh42KIqk44XMqigdxTzU.crl (hash: alL7pLXp57wiZWj2RXJKfaWbgEgYfGIEmDF2YATFraQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2lPr-vXBh42KIqk44XMqigdxTzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 16:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4e:a3:b1:5f:06:4d:21:9e:dd:6d:7a:f5:6c:fd:5d:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da53ebfaf5c1878d8a22a938e1732a8a07714f35
Validity
Not Before: May 6 16:01:41 2024 GMT
Not After : May 7 16:01:41 2024 GMT
Subject: CN=b42e65c6d913e38f296e98f2954ccf0e1fecd8c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ee:23:e1:be:9a:9f:04:2b:91:86:bc:34:af:
7a:61:29:5d:58:cb:e0:27:d1:f0:7f:a1:65:79:41:
02:cc:e7:b4:e8:37:1f:36:b9:53:cb:58:38:45:b8:
eb:e4:2f:1c:12:a5:09:4e:fd:a0:22:e1:05:b7:4b:
5a:37:c9:e2:ad:e1:63:4a:c2:92:be:a2:d4:64:c2:
fc:1e:89:ab:ca:37:1b:b3:86:b3:1f:b5:74:4c:13:
1f:2f:d3:07:35:1f:6b:59:6b:0e:63:e4:99:c2:98:
13:99:2e:9d:8f:3e:54:c9:09:bf:06:d3:2c:16:4b:
28:6b:7d:30:4d:61:31:66:11:f8:88:bb:df:d9:6c:
04:21:c7:4f:73:6c:b0:96:bd:32:9b:fd:f5:95:cf:
1b:be:65:52:ae:47:cc:b5:bc:1a:c1:94:58:e6:d0:
f5:fd:06:41:08:80:1a:44:d9:34:f0:71:76:bd:56:
13:a3:47:15:dd:87:9a:f9:53:32:d4:a2:8c:90:e5:
04:2c:9c:26:6e:3f:e7:b7:d3:07:b0:94:19:de:64:
a1:63:9b:2c:22:9c:ad:9b:82:b4:3e:5d:0b:71:c8:
75:84:31:ae:50:97:18:aa:01:93:da:3c:d5:6e:0e:
4d:f3:4c:7c:af:86:90:3f:f4:86:1f:2b:73:ba:51:
5d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:2E:65:C6:D9:13:E3:8F:29:6E:98:F2:95:4C:CF:0E:1F:EC:D8:C7
X509v3 Authority Key Identifier:
keyid:DA:53:EB:FA:F5:C1:87:8D:8A:22:A9:38:E1:73:2A:8A:07:71:4F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2lPr-vXBh42KIqk44XMqigdxTzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:60:2f:e4:fb:b7:f6:35:80:3a:e5:db:eb:9a:85:c5:07:da:
dc:f2:50:04:3f:a3:52:a3:3c:2a:3c:72:ad:93:b0:c1:5a:f1:
2a:ec:1e:ed:e5:8c:2e:04:a0:92:4c:07:ee:f2:84:4b:04:ee:
44:84:53:5a:21:08:00:69:79:4c:08:c0:27:81:60:de:8f:38:
98:f3:7b:99:f4:e6:df:3b:0e:93:43:7d:01:58:14:a6:41:03:
2c:d6:72:dc:bc:0f:87:b1:6b:2c:af:b3:b2:af:e9:6b:68:08:
ea:54:81:bd:3a:b0:97:4f:67:c0:75:59:35:80:33:91:3f:e5:
fd:b2:b6:ef:62:67:5e:a4:90:a8:88:95:06:c5:af:c3:e9:83:
34:0f:b4:c5:01:c0:07:5f:41:ca:16:d3:69:aa:64:f6:62:d6:
06:b0:0b:e5:57:30:de:15:4b:15:e0:ec:eb:89:b2:c7:20:e1:
cb:32:a3:45:e0:72:a7:8a:41:f5:4e:c9:a5:e0:e6:73:24:7e:
7f:6d:4f:82:7c:6e:71:8f:54:ce:00:4b:36:b7:9a:97:b7:1b:
c5:9f:44:1f:68:99:ff:91:fe:fa:b4:6b:98:b6:ed:e7:5b:c0:
98:fb:eb:0c:fb:bc:74:24:b5:7a:d0:b4:3b:60:42:a9:30:70:
d2:0e:6c:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 23:16:29 2024 by rpki-client on console-ams.rpki-client.org