Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/d774bf-00fe-4379-ad24-ca0836318995/1/w9bWn9WH0FQXblPRknJoI2GxZzY.mft
File: w9bWn9WH0FQXblPRknJoI2GxZzY.mft (raw, json)
Hash identifier: Jl0tp2JNmH2WIeJqlIBr3iS7B41NLAHTD2sFGej55zM=
Subject key identifier: D9:68:13:D5:70:FA:54:42:13:FA:77:38:93:08:29:FE:17:F3:3A:BB
Authority key identifier: C3:D6:D6:9F:D5:87:D0:54:17:6E:53:D1:92:72:68:23:61:B1:67:36
Certificate issuer: /CN=c3d6d69fd587d054176e53d19272682361b16736
Certificate serial: 018F874A68D8F04BEDDF3AA9B5B41435B01F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w9bWn9WH0FQXblPRknJoI2GxZzY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/d774bf-00fe-4379-ad24-ca0836318995/1/w9bWn9WH0FQXblPRknJoI2GxZzY.mft
Manifest number: 1174
Signing time: Fri 17 May 2024 16:02:31 +0000
Manifest this update: Fri 17 May 2024 16:02:31 +0000
Manifest next update: Sat 18 May 2024 16:02:31 +0000
Files and hashes: 1: w9bWn9WH0FQXblPRknJoI2GxZzY.crl (hash: I7+yCsiiyF9ReEgdsRMZNTU0wEy3XHxTYHOvLdzieRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/d774bf-00fe-4379-ad24-ca0836318995/1/w9bWn9WH0FQXblPRknJoI2GxZzY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/d774bf-00fe-4379-ad24-ca0836318995/1/w9bWn9WH0FQXblPRknJoI2GxZzY.mft
rsync://rpki.ripe.net/repository/DEFAULT/w9bWn9WH0FQXblPRknJoI2GxZzY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:68:d8:f0:4b:ed:df:3a:a9:b5:b4:14:35:b0:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3d6d69fd587d054176e53d19272682361b16736
Validity
Not Before: May 17 16:02:31 2024 GMT
Not After : May 18 16:02:31 2024 GMT
Subject: CN=d96813d570fa544213fa7738930829fe17f33abb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:80:02:70:fe:4f:4d:0a:32:f2:aa:76:0c:d2:
80:8d:dd:4d:95:cf:4b:75:28:8e:7d:cf:70:85:cd:
c1:83:9f:14:15:f4:4b:6a:36:4c:b6:c5:0b:3d:cb:
da:fb:e9:6b:6a:45:c2:12:10:66:7c:f9:06:5d:a6:
85:f5:6f:a1:79:28:df:6f:4d:4d:81:0b:21:1c:2b:
2d:07:37:8d:9b:00:6e:f2:07:f1:06:fa:75:33:87:
0f:38:58:1b:0e:23:28:9c:60:27:15:f8:a1:5d:fb:
7a:36:70:78:0b:1e:4d:5d:72:bd:36:67:d4:3b:48:
7f:e2:24:fe:38:af:71:43:19:f9:51:df:c2:de:44:
9f:b3:40:35:3d:3f:81:2d:c0:0f:b9:68:af:66:c3:
b1:ef:83:1d:6d:02:66:e9:53:c7:9b:2a:37:ba:e8:
ba:30:b5:68:ed:78:ff:e4:93:f3:61:8b:8a:d9:b9:
a6:f5:e3:e1:e1:46:41:88:71:a5:50:a4:50:7c:f7:
f6:3d:3c:31:30:63:87:0f:57:cb:c3:39:08:a4:53:
82:6b:22:45:e6:37:15:f4:75:c1:bf:a9:d9:4e:74:
64:09:0c:1f:28:1c:35:60:f6:2f:c7:a4:c4:ea:7c:
87:91:54:47:3a:26:f5:9b:b8:32:24:63:a5:21:67:
74:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:68:13:D5:70:FA:54:42:13:FA:77:38:93:08:29:FE:17:F3:3A:BB
X509v3 Authority Key Identifier:
keyid:C3:D6:D6:9F:D5:87:D0:54:17:6E:53:D1:92:72:68:23:61:B1:67:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w9bWn9WH0FQXblPRknJoI2GxZzY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d774bf-00fe-4379-ad24-ca0836318995/1/w9bWn9WH0FQXblPRknJoI2GxZzY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d774bf-00fe-4379-ad24-ca0836318995/1/w9bWn9WH0FQXblPRknJoI2GxZzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:71:92:ae:44:7f:64:90:fd:f3:54:d4:01:87:a9:78:af:c4:
06:2e:41:f9:4a:1e:4b:94:ac:70:80:b4:4b:49:48:48:90:83:
94:b7:d6:b0:9d:d0:17:79:bb:fc:68:0f:22:6f:d2:58:9b:6a:
d9:2f:35:6a:0d:fc:6c:90:86:e2:48:c1:4a:78:dd:6f:eb:0c:
28:2c:04:5e:f0:be:e7:9d:d4:e1:11:e6:e2:ed:9a:bc:fc:94:
66:ad:60:2a:dd:d4:67:a6:6a:b4:36:da:db:c0:d1:1b:c8:38:
6a:f3:c9:f4:ed:2c:34:6b:8a:df:7e:3d:c2:3a:89:ff:33:13:
c0:d3:94:50:7d:60:3b:40:02:93:36:94:e1:ac:b0:59:92:5f:
44:11:24:20:f9:36:d9:8f:63:28:6f:cd:49:db:3c:82:28:bd:
ca:de:88:9d:ac:a6:ec:1c:13:aa:99:77:16:e0:ef:82:24:45:
71:5e:58:4a:a8:06:07:ee:e1:75:35:8c:65:c3:38:50:b2:d3:
82:12:d3:08:e8:3c:24:9c:0a:b1:fd:a3:dc:01:ed:24:d7:45:
97:7b:17:1f:23:8d:66:3f:c8:c6:86:0e:da:ba:5a:0e:27:95:
3b:6e:8c:fb:ee:00:1f:ef:ce:9b:1f:c9:92:47:1b:0c:c4:df:
b5:9e:87:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:43:26 2024 by rpki-client on console-fra.rpki-client.org