Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.mft
File: JAy7mUeWHigo2EdLysoem5FVZWA.mft (raw, json)
Hash identifier: vq2p3EiB7R4g+jPbSrvLZvVFCvEwh2eWEFKbr/TopGs=
Subject key identifier: 94:0D:3C:BB:07:A5:AF:06:8C:34:1A:5A:C0:87:68:AE:57:37:54:54
Authority key identifier: 24:0C:BB:99:47:96:1E:28:28:D8:47:4B:CA:CA:1E:9B:91:55:65:60
Certificate issuer: /CN=240cbb9947961e2828d8474bcaca1e9b91556560
Certificate serial: 018F86A401C06EF2091E69D9056733308248
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JAy7mUeWHigo2EdLysoem5FVZWA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.mft
Manifest number: 0EB3
Signing time: Fri 17 May 2024 13:00:46 +0000
Manifest this update: Fri 17 May 2024 13:00:46 +0000
Manifest next update: Sat 18 May 2024 13:00:46 +0000
Files and hashes: 1: JAy7mUeWHigo2EdLysoem5FVZWA.crl (hash: gRzavbxFgB96Y0i9arAeLy2m7EKMNIeTY/pXsXYnr50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.mft
rsync://rpki.ripe.net/repository/DEFAULT/JAy7mUeWHigo2EdLysoem5FVZWA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 13:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:a4:01:c0:6e:f2:09:1e:69:d9:05:67:33:30:82:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=240cbb9947961e2828d8474bcaca1e9b91556560
Validity
Not Before: May 17 13:00:46 2024 GMT
Not After : May 18 13:00:46 2024 GMT
Subject: CN=940d3cbb07a5af068c341a5ac08768ae57375454
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:9c:8e:3e:ee:74:d5:b5:e8:68:fd:86:61:06:
c1:e4:1d:40:b1:22:49:d2:72:5a:c5:16:e2:62:db:
1b:b7:7a:b8:01:fa:26:e4:ba:ca:16:53:d3:9a:05:
8b:b9:20:73:68:c9:41:55:7d:bd:90:c3:3c:10:6e:
6a:6a:41:f8:df:a4:f6:42:55:ab:21:09:ba:07:60:
83:b4:23:ef:ef:c3:52:cf:ed:ad:d2:be:5d:fe:e5:
e4:85:31:ad:d5:ab:e6:3f:c4:f3:4e:93:14:fa:e7:
02:a5:03:3d:f5:75:e0:9d:5a:b3:5f:66:e1:69:aa:
40:03:ea:28:dc:22:17:a3:16:fd:e0:c0:67:97:8d:
94:07:ae:07:65:b8:80:0a:7b:5d:fa:12:a8:f4:9d:
40:d3:e6:3e:27:c6:2f:f1:7c:37:24:39:d1:e0:4f:
8d:76:4e:5a:8d:ee:dc:0c:b1:e1:30:d0:e2:4e:86:
d5:87:a4:82:30:71:4c:d3:71:3a:8a:4c:6c:fe:37:
ac:35:8b:de:ce:71:c7:64:6f:42:3d:71:c7:c9:ff:
c7:e7:63:5c:be:f5:3a:78:41:d7:6b:83:b6:0a:48:
37:d8:65:17:7b:70:f2:3c:be:50:73:66:a7:5d:82:
a6:31:fd:8a:08:50:c9:2c:d2:bf:56:7b:8f:14:62:
53:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:0D:3C:BB:07:A5:AF:06:8C:34:1A:5A:C0:87:68:AE:57:37:54:54
X509v3 Authority Key Identifier:
keyid:24:0C:BB:99:47:96:1E:28:28:D8:47:4B:CA:CA:1E:9B:91:55:65:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JAy7mUeWHigo2EdLysoem5FVZWA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:6c:b7:9d:45:04:00:f8:24:df:e7:94:18:26:f6:c7:b3:79:
77:4c:9c:04:48:74:b0:8d:ad:82:9c:16:c7:95:b5:d0:f0:ad:
7e:27:34:c4:7d:a2:25:e8:92:34:6f:d5:c9:19:93:11:8c:1a:
4f:42:73:1a:4a:51:10:0d:68:6c:bc:58:50:f2:41:80:0d:62:
8c:e7:8c:a8:01:3c:98:43:c1:26:3a:83:b5:00:70:ee:fe:17:
01:11:f5:1d:ad:bd:1a:c7:03:60:a5:19:38:ce:1a:63:17:86:
5f:a3:01:69:92:86:3d:5c:93:4e:bf:1c:ec:7c:68:71:90:14:
c7:19:f1:9d:46:bb:dc:d8:5b:a7:47:d0:76:86:3e:e0:49:0d:
03:44:d1:d1:4d:ec:04:3b:b1:2a:ab:2a:72:e3:34:a9:df:ae:
e4:cf:19:97:39:8d:b7:d6:ae:1e:38:93:7f:e3:9f:41:21:89:
5f:d1:97:0b:78:74:c3:d8:56:3b:e5:fb:9c:77:e4:b2:bc:65:
db:5f:ea:47:f5:22:20:c7:52:ad:b7:17:fc:e0:8a:82:65:8b:
b0:19:b0:02:e5:28:a2:77:ac:57:65:3a:d8:2d:52:18:5a:27:
27:a9:2c:36:c0:1e:e1:f6:8a:d2:9e:ef:eb:53:f6:1b:db:b8:
e3:64:c7:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:18:53 2024 by rpki-client on console-ams.rpki-client.org