Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft
File: uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft (raw, json)
Hash identifier: pJlm8GIw9of+S03CCq95aZZ1OSbJAdYDSbPu0+bwtP4=
Subject key identifier: CA:70:06:4B:61:CE:1C:1B:31:97:83:2C:98:9C:1C:04:BC:14:85:BA
Authority key identifier: B8:5E:0B:E6:B7:27:9C:DE:CF:78:BD:D6:41:05:F8:44:3D:0C:0C:02
Certificate issuer: /CN=b85e0be6b7279cdecf78bdd64105f8443d0c0c02
Certificate serial: 018F874AF7218518B2B61F49E3EF51CC45EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uF4L5rcnnN7PeL3WQQX4RD0MDAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft
Manifest number: 0BC9
Signing time: Fri 17 May 2024 16:03:08 +0000
Manifest this update: Fri 17 May 2024 16:03:08 +0000
Manifest next update: Sat 18 May 2024 16:03:08 +0000
Files and hashes: 1: uF4L5rcnnN7PeL3WQQX4RD0MDAI.crl (hash: ZFJaDA7RxUQjCu37c3vNrN6s0hDBWEDxDyiLWN41O80=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/uF4L5rcnnN7PeL3WQQX4RD0MDAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:03:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:f7:21:85:18:b2:b6:1f:49:e3:ef:51:cc:45:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b85e0be6b7279cdecf78bdd64105f8443d0c0c02
Validity
Not Before: May 17 16:03:08 2024 GMT
Not After : May 18 16:03:08 2024 GMT
Subject: CN=ca70064b61ce1c1b3197832c989c1c04bc1485ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ef:9f:c6:b6:0e:22:97:92:e4:67:78:aa:48:
bf:3b:48:53:bc:48:62:5f:ba:a0:87:e9:43:d8:92:
6e:95:0f:86:c4:5e:53:68:c6:41:d1:88:16:28:cf:
07:71:b3:00:58:5e:12:ff:4d:58:9a:99:65:33:23:
19:7f:98:5d:84:15:c0:14:18:9d:78:55:2d:4a:a1:
0b:dc:e9:a8:dc:f4:71:fd:70:0a:65:af:93:7d:ce:
0c:fd:a4:14:c9:db:0d:4a:e6:a1:63:85:1c:42:39:
96:72:71:37:83:d2:db:d6:2d:27:01:be:98:ec:df:
27:a6:5f:dd:51:87:ab:f6:80:c1:ce:53:0a:92:06:
be:ed:9b:e9:2e:ae:42:8d:32:8a:30:6c:75:6b:0f:
d9:5f:a9:2d:c9:45:67:b0:80:57:cb:49:fb:f7:b9:
f0:3e:45:35:15:44:c5:57:a0:5c:fa:7d:6e:6f:8f:
a2:f3:d6:72:64:18:90:0e:68:f1:8b:46:e9:0c:16:
44:70:3f:8b:a2:fc:a4:5f:eb:67:45:57:75:6e:df:
57:75:3f:ff:8d:51:ff:c8:bf:0d:87:4e:98:06:82:
dd:88:e8:2e:65:ff:fd:d9:f0:7a:30:f0:eb:1e:6a:
a4:10:2f:92:c8:55:a9:9c:b4:80:bf:98:fe:09:a3:
8c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:70:06:4B:61:CE:1C:1B:31:97:83:2C:98:9C:1C:04:BC:14:85:BA
X509v3 Authority Key Identifier:
keyid:B8:5E:0B:E6:B7:27:9C:DE:CF:78:BD:D6:41:05:F8:44:3D:0C:0C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uF4L5rcnnN7PeL3WQQX4RD0MDAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:3e:64:21:5f:7f:32:f4:78:bf:f8:9e:8e:c6:d3:aa:4d:b4:
bf:74:7f:3f:2c:42:e8:c4:4d:a0:de:ac:f1:52:fe:e2:4d:45:
6c:c5:72:9b:09:c2:74:e4:3c:19:aa:75:20:3b:6a:ed:6b:08:
e8:42:d8:f0:8e:18:06:50:27:12:fa:b1:6a:98:c2:a5:3c:c2:
f1:7c:28:11:73:5a:c0:61:9c:99:26:21:72:9a:cb:a7:c5:80:
38:74:0b:d1:53:55:18:3c:0d:d2:1b:a6:c1:ed:17:0b:01:6d:
1c:75:c8:22:a1:ef:da:af:4d:e2:60:5b:3c:63:c2:1e:b2:6a:
50:19:cd:59:2d:f8:dd:e6:77:e0:93:9f:75:b5:88:65:af:82:
70:9e:d1:50:0f:aa:b0:b4:05:0c:c2:da:0c:07:f3:d5:48:e8:
69:c9:f2:2a:73:fe:3c:8d:47:94:66:8c:79:6d:d2:64:ca:af:
c3:b2:85:2d:04:e7:45:f8:d3:c6:b4:19:3f:40:fd:70:d3:00:
3a:8a:6d:85:10:92:c0:94:e9:c5:0d:8b:d6:6b:36:4d:99:68:
1f:be:13:70:a6:01:fa:a5:e3:a8:89:d3:66:27:6c:58:63:34:
fe:93:f4:96:94:55:00:0a:92:f9:01:94:e2:51:24:a8:d0:eb:
41:2c:84:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:44:58 2024 by rpki-client on console-fra.rpki-client.org