Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/389ae4-25e3-42fa-9c72-250a7fb63fc8/1/2DfDMTFrSuUZLvkigRokIlKApjY.mft
File: 2DfDMTFrSuUZLvkigRokIlKApjY.mft (raw, json)
Hash identifier: 7eb72wjKtxl2evc7e+nfx8jeK96xub7eZ0zvPMpjGB8=
Subject key identifier: 5F:36:B2:63:B6:D3:5A:A9:F3:6C:CD:8C:0A:D8:08:A4:9F:70:0F:A3
Authority key identifier: D8:37:C3:31:31:6B:4A:E5:19:2E:F9:22:81:1A:24:22:52:80:A6:36
Certificate issuer: /CN=d837c331316b4ae5192ef922811a24225280a636
Certificate serial: 018F430D0A1FFCC7217D51515360AC65ADBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DfDMTFrSuUZLvkigRokIlKApjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/389ae4-25e3-42fa-9c72-250a7fb63fc8/1/2DfDMTFrSuUZLvkigRokIlKApjY.mft
Manifest number: 0A48
Signing time: Sat 04 May 2024 10:01:18 +0000
Manifest this update: Sat 04 May 2024 10:01:18 +0000
Manifest next update: Sun 05 May 2024 10:01:18 +0000
Files and hashes: 1: 2DfDMTFrSuUZLvkigRokIlKApjY.crl (hash: QeGmAPSekMN0NCpVWL9ZzTwr+UuyhpqZXnKMq7qUjHs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/389ae4-25e3-42fa-9c72-250a7fb63fc8/1/2DfDMTFrSuUZLvkigRokIlKApjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/389ae4-25e3-42fa-9c72-250a7fb63fc8/1/2DfDMTFrSuUZLvkigRokIlKApjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DfDMTFrSuUZLvkigRokIlKApjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:43:0d:0a:1f:fc:c7:21:7d:51:51:53:60:ac:65:ad:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d837c331316b4ae5192ef922811a24225280a636
Validity
Not Before: May 4 10:01:18 2024 GMT
Not After : May 5 10:01:18 2024 GMT
Subject: CN=5f36b263b6d35aa9f36ccd8c0ad808a49f700fa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:15:d2:19:15:c3:7b:4f:79:f6:5e:eb:de:8c:
be:23:a7:66:d0:3e:dc:08:4f:68:bd:25:cb:00:ed:
66:f8:64:60:f8:99:7a:11:88:b6:b5:c9:e3:d9:63:
91:88:e5:4e:33:bf:f7:23:8d:5f:27:ec:28:e3:c4:
28:5d:cc:d6:da:23:fd:e7:a5:0e:8b:a6:53:7c:f1:
f2:a7:6d:72:16:d5:bb:f1:6a:94:4e:29:30:d3:80:
2c:ea:35:9b:da:26:2c:1d:34:5d:66:36:5a:b4:f9:
28:ff:6f:f7:51:be:7a:7f:1e:8b:78:45:1e:b8:c9:
9a:c5:9b:f1:08:b8:c3:7f:1e:af:00:d8:8d:4a:8e:
e1:7f:dc:24:92:1a:7d:83:51:7d:77:8c:b5:91:72:
85:ec:cb:02:18:51:89:20:f8:1f:9a:82:1a:9c:9b:
dd:d4:67:cb:0e:39:4d:9c:ac:d9:cf:0f:7c:ef:38:
0f:73:42:ca:3d:f8:76:a8:8c:1b:50:1f:ed:17:fc:
5a:27:5c:31:6c:22:ca:87:42:2f:7a:ec:d1:42:01:
fc:24:8b:c8:aa:9d:39:db:70:a0:4e:ed:9f:2d:6a:
ba:e2:62:be:62:1e:1a:28:3f:40:ee:9e:11:c5:f7:
b0:00:5e:8d:89:18:3e:e5:bb:d0:0d:88:9c:6c:96:
8d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:36:B2:63:B6:D3:5A:A9:F3:6C:CD:8C:0A:D8:08:A4:9F:70:0F:A3
X509v3 Authority Key Identifier:
keyid:D8:37:C3:31:31:6B:4A:E5:19:2E:F9:22:81:1A:24:22:52:80:A6:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DfDMTFrSuUZLvkigRokIlKApjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/389ae4-25e3-42fa-9c72-250a7fb63fc8/1/2DfDMTFrSuUZLvkigRokIlKApjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/389ae4-25e3-42fa-9c72-250a7fb63fc8/1/2DfDMTFrSuUZLvkigRokIlKApjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:26:ca:55:f7:73:b9:b1:6f:51:67:06:d2:80:cb:3a:5b:df:
3d:45:a1:cf:54:3a:46:ac:fe:33:2a:c8:e9:f1:5e:b1:d7:82:
a1:3a:c6:3a:6b:ce:e2:d3:f6:45:70:f2:22:e0:02:a1:f5:6b:
c6:e3:c9:24:5d:a1:2b:99:16:ef:a2:fb:b0:04:71:61:0c:02:
0a:d0:a7:33:0a:1e:e3:c8:a8:cb:7f:b3:dc:29:13:81:5a:96:
3d:36:52:b5:cf:0f:00:06:ac:7a:4f:3b:2d:eb:9d:9d:f5:4e:
7d:08:a9:61:20:48:68:cf:db:67:33:3a:66:88:8b:30:97:f5:
ab:3d:f5:96:79:91:a3:fb:ce:44:69:5e:9e:32:33:fe:0e:17:
fe:c5:13:a6:23:c8:96:b8:c2:0f:37:86:5f:e0:54:d8:23:67:
86:b1:c3:a0:c7:a2:bf:9f:05:2e:4d:07:15:f4:46:12:bc:3a:
dd:fe:89:a9:10:38:52:ac:c1:75:65:6e:bd:21:00:85:18:26:
2b:2e:fd:30:cf:b5:eb:eb:fa:24:2c:58:13:8b:c6:2f:53:73:
14:ae:4c:97:3c:09:62:d7:ef:8c:dd:d6:3f:18:c5:36:fc:0f:
f5:58:9a:fa:c8:40:74:d6:b0:39:4f:c7:d2:63:c9:ad:3b:ac:
64:48:8c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 11:25:11 2024 by rpki-client on console-ams.rpki-client.org