Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/4bc47e-3987-4a34-92bc-8901e8813aac/1/VHbgkAHDGGUmGQ0fNdKluZ_KonA.mft
File: VHbgkAHDGGUmGQ0fNdKluZ_KonA.mft (raw, json)
Hash identifier: BBRKA5pfDHUiyH5mjWHFqDIoz/+ffh6FnD56EhPjXw4=
Subject key identifier: 02:DA:3A:E9:C6:58:29:CE:76:22:B1:4C:44:97:4B:90:23:19:A0:A6
Authority key identifier: 54:76:E0:90:01:C3:18:65:26:19:0D:1F:35:D2:A5:B9:9F:CA:A2:70
Certificate issuer: /CN=5476e09001c3186526190d1f35d2a5b99fcaa270
Certificate serial: 018F874ABC89B3E55DCB6DF48C7731D31974
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VHbgkAHDGGUmGQ0fNdKluZ_KonA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/4bc47e-3987-4a34-92bc-8901e8813aac/1/VHbgkAHDGGUmGQ0fNdKluZ_KonA.mft
Manifest number: 1176
Signing time: Fri 17 May 2024 16:02:53 +0000
Manifest this update: Fri 17 May 2024 16:02:53 +0000
Manifest next update: Sat 18 May 2024 16:02:53 +0000
Files and hashes: 1: VHbgkAHDGGUmGQ0fNdKluZ_KonA.crl (hash: oCyNNTtD8E7U8al/K3Y95nG9CrOmRdw+bi5EtF06aqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/4bc47e-3987-4a34-92bc-8901e8813aac/1/VHbgkAHDGGUmGQ0fNdKluZ_KonA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/4bc47e-3987-4a34-92bc-8901e8813aac/1/VHbgkAHDGGUmGQ0fNdKluZ_KonA.mft
rsync://rpki.ripe.net/repository/DEFAULT/VHbgkAHDGGUmGQ0fNdKluZ_KonA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:bc:89:b3:e5:5d:cb:6d:f4:8c:77:31:d3:19:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5476e09001c3186526190d1f35d2a5b99fcaa270
Validity
Not Before: May 17 16:02:53 2024 GMT
Not After : May 18 16:02:53 2024 GMT
Subject: CN=02da3ae9c65829ce7622b14c44974b902319a0a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:70:86:bb:dd:19:b3:90:04:36:58:7d:13:a2:
c0:34:1e:70:00:ce:59:16:97:c9:50:b5:18:eb:dc:
fb:20:76:03:ba:1c:a7:35:d1:ef:e9:5b:1e:70:ad:
de:a1:95:45:99:74:8e:2f:5d:38:27:04:74:82:57:
49:43:40:ee:c5:58:22:73:44:a8:aa:80:d2:1c:8d:
16:29:01:d6:aa:73:a9:6b:bb:3f:7b:ca:9d:8b:90:
5f:31:33:8e:ae:f5:b9:06:10:ce:2a:50:ea:7a:3c:
f6:27:5a:77:cc:31:d1:1c:1f:08:18:d8:0e:36:a4:
4f:a8:b4:d4:4c:95:f5:5c:3f:22:09:44:7b:1e:22:
91:af:72:c1:e0:af:6e:89:14:c9:9c:2f:8b:ab:fe:
e9:d8:2a:ef:b7:af:8d:d3:de:1c:42:ed:cf:ad:cc:
79:7a:94:f2:c3:d4:ba:d2:7a:e3:62:a2:5e:9e:33:
2b:f6:86:2e:4d:e0:4b:ea:d2:53:58:78:9e:8a:19:
39:0d:37:e4:ce:4a:89:a0:d4:51:42:92:7f:5d:8c:
9e:5b:d3:26:6f:7e:b4:38:e0:00:d7:0b:23:c1:65:
4c:20:cd:34:bf:d1:32:92:eb:6a:de:8b:86:a7:13:
10:f0:90:a1:a5:3b:08:4e:19:fe:27:5f:aa:46:67:
2b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:DA:3A:E9:C6:58:29:CE:76:22:B1:4C:44:97:4B:90:23:19:A0:A6
X509v3 Authority Key Identifier:
keyid:54:76:E0:90:01:C3:18:65:26:19:0D:1F:35:D2:A5:B9:9F:CA:A2:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VHbgkAHDGGUmGQ0fNdKluZ_KonA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/4bc47e-3987-4a34-92bc-8901e8813aac/1/VHbgkAHDGGUmGQ0fNdKluZ_KonA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/4bc47e-3987-4a34-92bc-8901e8813aac/1/VHbgkAHDGGUmGQ0fNdKluZ_KonA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:09:28:04:ed:c3:c5:7c:5f:a1:7f:56:e4:e5:4a:04:04:c0:
5f:cf:1b:b1:d4:e4:1a:6f:2c:9b:d2:0a:8e:c8:37:e6:47:17:
73:ae:8e:4d:46:a2:f6:20:c3:cc:3a:c2:06:a7:7c:17:4d:7e:
57:5d:57:83:80:30:50:90:e8:23:be:a6:ba:64:93:44:60:3b:
4c:15:f8:9b:95:ab:f8:0a:48:a8:22:f0:75:ff:95:e7:f2:0e:
e2:24:fb:50:f9:5e:a6:93:52:87:f7:9d:00:f5:10:5e:95:67:
29:0c:f6:2b:c9:c4:01:7d:8c:48:29:e2:39:08:d7:f0:b8:73:
ac:60:ae:f0:ab:76:96:7e:67:01:21:4a:46:50:45:b6:52:6c:
6a:7c:bd:0e:a1:c0:74:7f:1b:7d:10:13:e8:5d:03:b8:d7:15:
d1:6c:a7:6b:e5:55:e6:eb:f7:3d:ce:93:a7:ff:3f:48:bf:1f:
34:d5:9c:6e:a7:13:25:1b:de:f5:2b:11:c9:43:d5:1c:86:04:
45:f2:cb:7d:4e:46:23:0a:52:9a:65:e3:46:f8:51:26:73:73:
af:09:5b:8e:08:aa:5f:85:04:09:b3:8e:d9:50:65:c6:f2:a4:
aa:85:fb:f3:ea:f4:47:7e:68:57:49:34:74:de:f8:9f:1d:f3:
4e:04:8e:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 19:03:47 2024 by rpki-client on console-fra.rpki-client.org