Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/56a6ec-37be-4368-9434-7a5714f8e6da/1/0XDU3eI6khZqZ7sT9gvHC2Z9hpU.mft
File: 0XDU3eI6khZqZ7sT9gvHC2Z9hpU.mft (raw, json)
Hash identifier: sM0dUmLkA60wA4wU6azd0MC8HNXgUUAfmt6dDswJ2MA=
Subject key identifier: 73:2A:F7:34:CA:68:E9:53:8B:95:30:EA:EF:42:3F:08:B7:49:80:15
Authority key identifier: D1:70:D4:DD:E2:3A:92:16:6A:67:BB:13:F6:0B:C7:0B:66:7D:86:95
Certificate issuer: /CN=d170d4dde23a92166a67bb13f60bc70b667d8695
Certificate serial: 018F441F70030726F9FDD9A060BE85B391E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0XDU3eI6khZqZ7sT9gvHC2Z9hpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/56a6ec-37be-4368-9434-7a5714f8e6da/1/0XDU3eI6khZqZ7sT9gvHC2Z9hpU.mft
Manifest number: 0E8C
Signing time: Sat 04 May 2024 15:01:01 +0000
Manifest this update: Sat 04 May 2024 15:01:01 +0000
Manifest next update: Sun 05 May 2024 15:01:01 +0000
Files and hashes: 1: 0XDU3eI6khZqZ7sT9gvHC2Z9hpU.crl (hash: 22QjDr9obpvqx2849AJ07QZdfWtMDCCjMAsro6USlZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/56a6ec-37be-4368-9434-7a5714f8e6da/1/0XDU3eI6khZqZ7sT9gvHC2Z9hpU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/56a6ec-37be-4368-9434-7a5714f8e6da/1/0XDU3eI6khZqZ7sT9gvHC2Z9hpU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0XDU3eI6khZqZ7sT9gvHC2Z9hpU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:44:1f:70:03:07:26:f9:fd:d9:a0:60:be:85:b3:91:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d170d4dde23a92166a67bb13f60bc70b667d8695
Validity
Not Before: May 4 15:01:01 2024 GMT
Not After : May 5 15:01:01 2024 GMT
Subject: CN=732af734ca68e9538b9530eaef423f08b7498015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5c:af:89:3b:13:bb:81:1c:e8:72:91:83:eb:
41:96:85:58:cb:7a:d1:f3:af:61:20:81:b7:c4:4e:
37:81:cd:b4:be:a5:39:45:3c:6a:41:c7:11:18:90:
2f:20:43:35:5e:6a:f5:f9:e0:68:5d:c5:45:c7:ca:
93:41:f8:70:0b:5f:35:79:c1:e5:3d:d1:ed:2f:d4:
95:46:bb:20:ee:b1:51:ca:8b:9d:69:17:ae:41:8c:
d5:85:18:0d:a7:a3:7a:24:fe:0d:e4:82:32:df:0a:
9a:ff:b3:6c:36:ec:52:6a:d4:38:67:45:2a:0e:83:
45:bb:77:dd:90:a5:52:8b:32:cd:7a:b3:39:7f:6b:
38:d2:e7:45:d0:eb:88:d7:73:8d:34:89:51:94:76:
1c:13:5f:0f:0f:6d:ab:7b:f3:eb:93:14:de:f0:79:
61:ba:bf:45:b2:eb:4c:18:63:04:b8:27:0d:40:be:
d4:21:6a:92:48:8e:cd:45:1c:4a:ce:f8:9b:0e:2d:
1f:75:63:26:3b:ab:08:15:b7:3d:e6:56:aa:33:44:
2d:af:fa:15:55:6e:f6:67:30:5d:3f:c9:e0:fe:a6:
a8:b5:a6:7c:0c:85:ba:4a:5a:fd:62:9b:2a:64:95:
6c:8b:bb:83:2a:ad:c5:b9:21:a1:bb:5d:ae:e4:a5:
d0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:2A:F7:34:CA:68:E9:53:8B:95:30:EA:EF:42:3F:08:B7:49:80:15
X509v3 Authority Key Identifier:
keyid:D1:70:D4:DD:E2:3A:92:16:6A:67:BB:13:F6:0B:C7:0B:66:7D:86:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0XDU3eI6khZqZ7sT9gvHC2Z9hpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/56a6ec-37be-4368-9434-7a5714f8e6da/1/0XDU3eI6khZqZ7sT9gvHC2Z9hpU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/56a6ec-37be-4368-9434-7a5714f8e6da/1/0XDU3eI6khZqZ7sT9gvHC2Z9hpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:0e:88:37:3f:43:e6:8b:23:8a:35:9b:7a:80:a3:6f:bd:47:
b1:c4:0b:ee:59:e8:12:27:13:99:6c:d8:fd:34:da:56:ee:bf:
b8:c5:0e:a7:1f:58:9c:f9:2a:5c:6e:7d:dd:ff:76:8e:d5:a8:
e3:78:70:2a:e2:43:57:fb:2d:48:17:01:f2:a3:0f:7d:9d:0a:
9c:92:71:df:0d:8c:9e:06:50:47:03:02:ba:6d:22:fd:b8:64:
d0:9a:29:8f:fd:43:78:16:85:e8:9e:b4:59:ba:c0:5c:4f:9a:
d9:9a:41:92:93:5d:f2:ed:33:0d:88:42:af:77:cf:ab:06:f0:
24:2b:8c:94:29:d7:dd:03:31:f4:6d:53:00:bf:eb:1c:31:b8:
8d:83:e9:cc:ba:f2:49:59:eb:b0:aa:79:8c:d4:76:6b:97:5f:
4a:eb:4e:20:72:97:ee:a5:1d:14:b9:02:f9:dc:87:f8:32:28:
18:3b:18:70:30:5a:9a:49:e4:3c:b2:98:e8:38:45:3d:33:cd:
bb:05:ed:ba:98:f1:cc:cb:70:3f:7c:59:1f:71:eb:28:43:79:
9c:7b:54:d7:67:fa:50:d1:61:51:dd:0f:ac:9a:20:ef:70:4b:
be:eb:7b:5d:d7:eb:9f:ca:4e:9f:f0:60:64:b9:8e:f5:5d:d9:
d3:80:3b:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 15:51:55 2024 by rpki-client on console-fra.rpki-client.org