Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
File: Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft (raw, json)
Hash identifier: tBW7ZGfM7hRA22rF1wsH3xJcKbvNE3l0Ao9g0N/PyFM=
Subject key identifier: 22:5F:01:34:A4:0A:43:33:FA:D7:CC:B5:DD:F7:BC:96:EC:22:3A:3C
Authority key identifier: 4B:17:7C:45:0D:20:35:06:7B:AA:26:92:0B:8A:4B:D3:6C:7B:33:14
Certificate issuer: /CN=4b177c450d2035067baa26920b8a4bd36c7b3314
Certificate serial: 018F874A4C5303518ACC84F56744E921F72E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
Manifest number: 088A
Signing time: Fri 17 May 2024 16:02:24 +0000
Manifest this update: Fri 17 May 2024 16:02:24 +0000
Manifest next update: Sat 18 May 2024 16:02:24 +0000
Files and hashes: 1: Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl (hash: /nZkhH4kJJok4DgN0LSj4YKCVsuwnOasRsuV+ypBZ/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:4c:53:03:51:8a:cc:84:f5:67:44:e9:21:f7:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b177c450d2035067baa26920b8a4bd36c7b3314
Validity
Not Before: May 17 16:02:24 2024 GMT
Not After : May 18 16:02:24 2024 GMT
Subject: CN=225f0134a40a4333fad7ccb5ddf7bc96ec223a3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c3:08:6c:44:49:db:c7:d6:42:03:40:cc:42:
2e:50:1a:0b:bb:74:cd:21:4b:77:8b:27:96:8f:54:
26:8a:24:64:52:b8:33:70:a4:c4:02:2e:8f:eb:bb:
05:1a:60:c1:3b:ea:48:7a:8f:0c:56:7e:c1:a2:96:
35:a1:c8:5d:d3:58:7e:f9:c0:0b:47:a7:f8:b9:ad:
e7:f8:91:2d:1f:b7:0a:e7:04:51:5e:72:cf:5e:3d:
c0:dc:b3:f1:53:37:4a:86:fb:12:c5:c1:7a:19:72:
fc:7d:d6:a6:57:e1:03:c5:84:13:50:84:ad:4a:7b:
8e:f8:31:5b:4e:85:a3:58:fe:4f:47:34:f0:8b:dc:
5f:32:35:ee:4f:39:66:5a:97:3a:99:49:2a:68:cb:
b3:d9:21:3e:04:1e:95:cb:71:04:04:be:3f:db:4d:
86:ab:7e:dd:d0:53:36:10:6b:bc:7c:d0:c4:11:f1:
51:c3:19:25:d6:b1:14:e2:2a:51:12:bc:ee:25:b6:
88:d4:52:7d:0a:eb:a2:59:74:d0:5c:73:67:42:66:
aa:c5:32:0d:b2:9a:79:80:cb:e4:01:77:be:af:bc:
6b:5f:33:37:c7:3e:83:cd:8f:de:c7:0c:e9:e9:c9:
53:e0:7e:e7:46:93:9b:1c:6b:7a:b8:22:2e:b3:e0:
a6:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:5F:01:34:A4:0A:43:33:FA:D7:CC:B5:DD:F7:BC:96:EC:22:3A:3C
X509v3 Authority Key Identifier:
keyid:4B:17:7C:45:0D:20:35:06:7B:AA:26:92:0B:8A:4B:D3:6C:7B:33:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:b8:fc:0b:7c:8f:46:9c:11:ac:e0:ec:79:91:18:26:03:bb:
76:fc:eb:e6:a1:90:73:16:d8:59:db:8e:e6:32:8f:33:02:f6:
52:4f:b7:e4:9d:69:a7:6b:34:8a:dd:51:26:f0:97:89:9c:34:
f8:dc:88:9d:6a:5d:08:e6:9a:d4:7b:77:59:42:7e:79:b4:45:
09:0c:c1:ad:93:db:e4:f2:a0:e2:6f:e7:1d:46:66:cf:d4:47:
c1:0e:c8:4d:6f:6c:43:ba:7a:f4:69:d1:f1:6e:57:27:e3:f2:
35:ff:cd:8b:75:48:48:56:43:c8:7f:43:6e:8f:40:39:83:35:
b2:34:82:e3:0a:bf:c6:55:a2:6c:3d:35:56:7a:75:45:d2:86:
2c:68:da:fb:56:f8:83:82:7a:db:0b:c1:fd:46:34:fc:29:30:
9d:a0:fc:bc:d9:39:8d:7b:dc:43:43:25:c3:1d:bb:83:12:ad:
59:a7:8f:52:19:df:d7:db:a1:42:5c:22:52:f1:b7:ce:43:f8:
c5:d3:d7:20:e6:30:b0:9b:2f:4f:8e:c7:63:6b:dd:61:d0:26:
e8:cc:99:cf:23:4a:62:07:db:13:48:50:7b:ee:7f:89:74:d2:
f5:7a:0d:a6:25:68:a3:0f:fd:0d:0f:0a:da:62:3d:2e:2c:bb:
aa:8e:f4:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:45:48 2024 by rpki-client on console-fra.rpki-client.org