Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.mft
File: 0jhr7YO2RaK64TifU9llfZGedtE.mft (raw, json)
Hash identifier: rC+kQZ3N2F+xDh1TPU1t2UL6qRawpddBPUaqd1XWnf0=
Subject key identifier: ED:C2:85:72:78:C6:83:B6:5E:3E:48:69:35:1C:64:F2:FC:62:9A:0E
Authority key identifier: D2:38:6B:ED:83:B6:45:A2:BA:E1:38:9F:53:D9:65:7D:91:9E:76:D1
Certificate issuer: /CN=d2386bed83b645a2bae1389f53d9657d919e76d1
Certificate serial: 018F497E0F6C432AD9C5029D170D5453C4EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0jhr7YO2RaK64TifU9llfZGedtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.mft
Manifest number: 051D
Signing time: Sun 05 May 2024 16:02:29 +0000
Manifest this update: Sun 05 May 2024 16:02:29 +0000
Manifest next update: Mon 06 May 2024 16:02:29 +0000
Files and hashes: 1: 0jhr7YO2RaK64TifU9llfZGedtE.crl (hash: d0CRMxSBuJUCzrLSD9zvMWN6wBsUU2N3FNVmd+S0vm4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/0jhr7YO2RaK64TifU9llfZGedtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 16:02:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:49:7e:0f:6c:43:2a:d9:c5:02:9d:17:0d:54:53:c4:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2386bed83b645a2bae1389f53d9657d919e76d1
Validity
Not Before: May 5 16:02:29 2024 GMT
Not After : May 6 16:02:29 2024 GMT
Subject: CN=edc2857278c683b65e3e4869351c64f2fc629a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:4c:54:89:96:3d:ae:0d:a5:80:9b:9a:b0:5c:
db:2c:86:4f:e2:79:d4:30:bd:ef:a4:82:c1:1f:7e:
fd:2d:e1:b3:c2:0d:5f:b0:22:08:12:6b:34:dd:fa:
d5:13:bd:db:f2:f8:08:00:c6:8b:54:03:7a:5a:ed:
57:ec:94:32:f3:03:68:16:9f:8e:c6:89:3b:b4:32:
b8:fd:67:ac:62:e6:3e:28:e8:d6:b2:88:9c:94:52:
6b:ea:dd:85:ce:22:15:98:3b:db:89:ba:91:b4:b8:
9a:cd:10:66:d0:6e:01:d7:db:f0:f3:ba:ae:08:61:
fa:f7:8f:89:f2:58:14:ee:02:12:9a:b5:0e:18:db:
e1:19:12:98:9f:24:4f:6a:08:0c:61:62:4c:84:6b:
0f:a2:f1:eb:23:9a:90:fe:16:31:92:00:10:d4:11:
5d:a6:88:ea:c1:fa:01:0c:f3:a8:71:27:5d:8e:36:
16:f1:4d:00:0c:d4:df:20:dc:c6:bf:d7:23:c2:12:
61:b8:61:d1:27:1f:b0:dc:32:3e:44:43:78:59:a8:
49:f3:d9:01:85:3f:36:2b:1d:f0:25:fc:2a:e2:45:
ad:4b:42:f9:c7:77:48:fc:ad:ea:ee:0e:ca:3d:92:
45:a1:bb:b1:5c:c7:9d:59:3f:c1:e4:1f:d4:a9:45:
fa:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:C2:85:72:78:C6:83:B6:5E:3E:48:69:35:1C:64:F2:FC:62:9A:0E
X509v3 Authority Key Identifier:
keyid:D2:38:6B:ED:83:B6:45:A2:BA:E1:38:9F:53:D9:65:7D:91:9E:76:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0jhr7YO2RaK64TifU9llfZGedtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:30:eb:28:3b:9b:9e:09:af:78:6c:3b:3a:ee:60:ca:b0:8a:
c4:d5:80:04:20:99:af:a3:2e:9b:c4:d2:47:3c:ed:a8:a0:05:
5f:a9:b8:ef:54:54:e1:f2:fa:fb:13:51:36:45:a7:4e:6d:58:
b4:27:83:ed:59:af:2f:01:7a:cf:7c:0e:a4:75:ed:10:1f:99:
ce:dd:2c:94:51:af:ec:a4:2c:79:06:b5:7e:fd:6c:ff:f8:23:
c6:da:4e:76:3d:24:e3:6c:bc:a6:5d:29:12:f2:fc:3a:c5:a6:
b7:84:13:42:8c:1b:9e:89:07:02:b6:23:6f:3d:fe:de:0f:b3:
8e:c4:35:ce:2c:f2:6f:73:5d:84:b0:4a:4a:d3:c8:09:6f:2f:
2a:d2:d6:f1:3c:cf:47:21:9a:20:78:46:b0:c6:79:00:09:d7:
fb:f5:55:4d:df:be:52:27:6b:fa:e8:58:bd:aa:67:21:39:3b:
d8:e9:c5:85:3d:7a:6d:00:96:eb:5b:18:c8:51:55:04:a6:8d:
74:40:78:f2:98:a2:17:6f:55:33:de:ef:73:74:0d:69:ae:96:
9b:02:77:33:95:f3:a8:52:a2:26:2c:89:a2:24:ee:ca:2d:5a:
08:b9:32:b3:6a:be:fe:d9:42:5b:cd:92:f5:9a:78:fa:13:72:
89:19:60:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 20:00:19 2024 by rpki-client on console-ams.rpki-client.org