Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft
File: bNmlABXpaTdlb8DKW21WXkWb02A.mft (raw, json)
Hash identifier: Ct3O2+3hmG+MbSS1ClDyOJJHK9Qn2ndDpTWqlfAoIDo=
Subject key identifier: E1:D6:CA:B0:EC:19:C0:C5:F8:9C:55:B2:8F:64:D2:5A:0D:3F:B5:AE
Authority key identifier: 6C:D9:A5:00:15:E9:69:37:65:6F:C0:CA:5B:6D:56:5E:45:9B:D3:60
Certificate issuer: /CN=6cd9a50015e96937656fc0ca5b6d565e459bd360
Certificate serial: 018F874A223A03D768F0867432B04FB16EA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmlABXpaTdlb8DKW21WXkWb02A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft
Manifest number: 1176
Signing time: Fri 17 May 2024 16:02:13 +0000
Manifest this update: Fri 17 May 2024 16:02:13 +0000
Manifest next update: Sat 18 May 2024 16:02:13 +0000
Files and hashes: 1: bNmlABXpaTdlb8DKW21WXkWb02A.crl (hash: knUd4YNTZBZFedtMX8MhRCQx+DUJaoWTCxWMBBy30qs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft
rsync://rpki.ripe.net/repository/DEFAULT/bNmlABXpaTdlb8DKW21WXkWb02A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:22:3a:03:d7:68:f0:86:74:32:b0:4f:b1:6e:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd9a50015e96937656fc0ca5b6d565e459bd360
Validity
Not Before: May 17 16:02:13 2024 GMT
Not After : May 18 16:02:13 2024 GMT
Subject: CN=e1d6cab0ec19c0c5f89c55b28f64d25a0d3fb5ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:12:7f:b6:bf:31:a6:5b:18:32:ba:14:d6:25:
40:b3:7c:e4:6f:f9:f1:a3:8b:50:66:b1:3a:36:d6:
5f:5f:3d:c9:44:f1:6d:d3:a7:17:a5:b0:aa:c6:c4:
db:74:9d:de:8b:42:4c:ff:ea:0d:63:17:b3:68:20:
8f:97:4d:ad:d1:11:b8:1c:54:ca:d1:f0:c2:1c:eb:
63:44:31:20:ec:f1:10:cd:14:1a:1a:4d:68:fe:34:
ed:42:ba:d6:e6:45:05:dd:d9:f3:37:28:25:74:12:
44:83:2f:c3:09:5c:5f:9e:41:fc:bb:f9:fd:f1:46:
ff:c2:9a:e5:b1:1a:f5:0b:03:33:77:e2:b4:32:85:
db:77:7d:20:9f:a2:67:00:aa:31:75:80:97:01:0a:
da:62:92:71:29:7a:8f:b6:b1:20:ce:91:63:12:e0:
cd:20:e9:35:9d:9d:ff:c2:a6:c6:f5:0e:c1:70:15:
8d:ed:31:aa:ed:46:89:38:d8:5f:0f:2c:d0:95:99:
7f:ca:19:eb:cf:ba:86:3b:b6:e0:1e:b2:74:38:e8:
5c:cc:58:f5:5b:36:59:df:c1:d3:38:f8:cb:2b:c9:
67:37:f1:e5:32:69:79:98:ed:f5:58:be:3c:2f:00:
86:71:b6:c8:24:8a:74:ab:9f:1a:95:be:e1:dc:a1:
25:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D6:CA:B0:EC:19:C0:C5:F8:9C:55:B2:8F:64:D2:5A:0D:3F:B5:AE
X509v3 Authority Key Identifier:
keyid:6C:D9:A5:00:15:E9:69:37:65:6F:C0:CA:5B:6D:56:5E:45:9B:D3:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmlABXpaTdlb8DKW21WXkWb02A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:8e:62:35:de:95:0e:8a:56:9b:f4:c1:a9:00:fb:2b:78:af:
6b:55:81:ff:94:de:d1:31:d9:ed:86:95:7a:11:c6:4a:5d:f4:
e4:b6:32:f7:92:f5:b8:a3:c5:bd:51:c7:ce:8c:42:6b:52:55:
b4:d2:56:38:d0:f8:69:17:fe:9d:fc:d1:cd:ec:b7:1b:90:43:
52:68:40:e1:20:ed:ad:c9:3f:2c:4c:45:0b:0f:41:ac:6e:52:
55:4f:f2:cb:91:d8:f4:d3:62:87:67:00:83:1c:64:f5:9b:e7:
65:bf:33:ea:08:28:78:69:b8:81:84:a2:19:39:14:b8:70:86:
b3:f7:f0:ef:0e:4e:b9:11:f6:9e:26:a3:16:9d:51:74:0c:f1:
1c:8b:81:9c:5b:8f:ff:4f:69:05:b5:e0:f7:9a:02:13:97:95:
7c:1e:4b:9c:ae:34:ea:5d:8c:4d:cb:3e:47:cd:08:a7:c7:bb:
82:b1:97:b8:85:5d:f0:5f:49:df:63:c6:5f:89:34:0f:29:ee:
c6:f2:22:78:d3:23:59:0f:1d:3b:69:21:37:00:3c:92:c4:68:
12:5b:ec:df:d2:c7:0a:45:65:4c:ca:9f:b2:77:37:0a:8f:7a:
ef:17:8a:2a:7b:9d:e6:e8:10:72:be:8b:8b:78:02:f3:85:91:
62:94:6e:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:40:32 2024 by rpki-client on console-ams.rpki-client.org