Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
File: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft (raw, json)
Hash identifier: IFa1OChE1BmCjM099hI6tujDvnwiE8gr1+hny29KhXU=
Subject key identifier: 53:D2:3D:17:2A:BF:8C:BD:EC:DB:34:08:6C:B0:8B:47:F0:25:DE:B2
Authority key identifier: DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B
Certificate issuer: /CN=dd5b224b6593e558038a9e40e660c77142755c1b
Certificate serial: 018F36D1C2EC3A49B437528DF938685E6685
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
Manifest number: 055E
Signing time: Thu 02 May 2024 01:01:07 +0000
Manifest this update: Thu 02 May 2024 01:01:07 +0000
Manifest next update: Fri 03 May 2024 01:01:07 +0000
Files and hashes: 1: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl (hash: o2yMPhDbt7pjVOLrBsCxLhrDN6QBW60Hq5D3JZNwRN4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:36:d1:c2:ec:3a:49:b4:37:52:8d:f9:38:68:5e:66:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd5b224b6593e558038a9e40e660c77142755c1b
Validity
Not Before: May 2 01:01:07 2024 GMT
Not After : May 3 01:01:07 2024 GMT
Subject: CN=53d23d172abf8cbdecdb34086cb08b47f025deb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b0:5c:48:bd:c6:77:34:12:65:5e:03:28:d5:
2b:1c:14:b1:0f:3d:72:a5:f4:a1:63:87:41:42:b9:
00:58:50:c5:cd:48:33:1e:8e:8e:06:f9:e4:0b:61:
73:83:c2:81:e4:db:01:39:1b:4b:87:f3:30:1e:02:
23:3b:cb:3d:be:84:40:75:00:96:93:d9:60:f5:1f:
60:15:35:3d:e3:1b:91:d3:cc:48:c8:68:8c:cd:21:
a3:b1:82:d0:b6:2b:19:36:c8:6f:e0:b7:b1:e8:5a:
26:00:f0:9c:6d:d9:ef:81:37:21:35:32:7c:b7:78:
e6:31:a9:ee:30:dc:8a:29:d6:23:90:c4:65:1e:2d:
44:fd:3d:f7:d6:21:b0:5d:5c:e4:39:ec:ab:63:c1:
f5:cc:71:cf:20:e6:81:6c:80:fe:64:dc:6a:12:b2:
e6:dd:a6:84:35:4c:e6:23:2f:80:2c:b6:d6:81:8b:
d0:82:4a:28:2c:1e:87:75:7c:d7:5a:ca:98:46:2f:
58:b3:c3:0f:d4:7a:d3:47:f3:73:b5:c9:a0:91:77:
28:d3:fa:6d:1a:cf:9f:b2:90:2f:e5:fe:4c:f7:43:
ff:9d:66:f0:30:ac:0d:dd:6d:e0:3a:a2:cf:4b:d7:
fe:0e:2c:8f:11:1b:d3:9f:fc:2a:a7:a8:bf:76:4c:
f2:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:D2:3D:17:2A:BF:8C:BD:EC:DB:34:08:6C:B0:8B:47:F0:25:DE:B2
X509v3 Authority Key Identifier:
keyid:DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:35:39:b0:d7:8f:fe:17:ae:bb:22:dd:f7:15:65:e1:f9:85:
ab:9a:f9:57:d6:3c:8f:65:4b:a9:d3:c8:5f:bb:79:57:32:44:
38:83:c0:72:6a:b6:f1:1f:68:11:80:04:ac:32:ce:3d:88:37:
b7:e7:3a:8c:cc:97:cc:62:09:dc:4b:b5:08:a3:d0:1d:30:a2:
1d:0d:3a:28:b5:20:20:bb:90:bb:df:00:42:1d:68:33:25:54:
a7:39:8a:ac:3d:a8:95:41:89:02:d9:eb:37:56:6b:29:96:12:
b3:41:ed:40:14:4b:45:f5:21:8e:41:8f:96:32:6b:72:0d:e6:
4a:35:e5:9d:09:21:1f:e8:da:c1:4f:2e:3d:ab:b7:cf:86:48:
bc:56:bb:7f:40:bf:8d:5f:c9:40:57:bf:4a:3f:79:24:47:23:
b8:2b:f8:9b:1b:42:12:cc:78:f8:19:42:86:ee:0f:16:09:29:
6f:83:6f:17:41:21:50:a8:80:9d:23:f1:f3:46:31:b5:41:5c:
dc:d0:00:e5:5d:db:8f:f8:d6:8b:bf:af:1c:2a:f2:cf:a7:69:
94:ae:90:55:a3:c6:87:2a:72:86:6d:78:46:d3:52:18:ec:28:
48:f6:13:4d:51:96:fc:29:9a:15:25:c2:9f:d6:ef:04:2f:ac:
cc:e3:7b:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 04:40:46 2024 by rpki-client on console-fra.rpki-client.org