Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
File: 2lTIIO5UFUMsaLATYZJ1_0xubqU.mft (raw, json)
Hash identifier: 28qMTgLL6SIr2YAfzhcp9wlvKL/OcCiBzi7LhsE/WWk=
Subject key identifier: C8:BA:0C:F1:1D:CC:BE:17:95:62:91:A8:F1:01:28:A5:7A:DA:BA:2C
Authority key identifier: DA:54:C8:20:EE:54:15:43:2C:68:B0:13:61:92:75:FF:4C:6E:6E:A5
Certificate issuer: /CN=da54c820ee5415432c68b013619275ff4c6e6ea5
Certificate serial: 018F98AA2FE1653B5DCB98ECC980E21E5EBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
Manifest number: 0205
Signing time: Tue 21 May 2024 01:00:41 +0000
Manifest this update: Tue 21 May 2024 01:00:41 +0000
Manifest next update: Wed 22 May 2024 01:00:41 +0000
Files and hashes: 1: 2lTIIO5UFUMsaLATYZJ1_0xubqU.crl (hash: KTQRUGpUiaiXcLcEr8A+4ujsxaKEyndtSrpMXSLg/Zs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:98:aa:2f:e1:65:3b:5d:cb:98:ec:c9:80:e2:1e:5e:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da54c820ee5415432c68b013619275ff4c6e6ea5
Validity
Not Before: May 21 01:00:41 2024 GMT
Not After : May 22 01:00:41 2024 GMT
Subject: CN=c8ba0cf11dccbe17956291a8f10128a57adaba2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:c3:e5:6a:0b:8b:ac:f7:26:9a:ec:c0:a3:67:
64:54:30:49:c2:bb:2e:6b:b4:f9:83:55:81:48:d2:
64:bb:5b:a3:69:86:32:b7:8a:5e:94:a7:ba:2f:fb:
af:8f:e7:55:99:86:e4:ff:81:c5:d2:25:fa:53:84:
37:46:ff:ea:8b:56:4c:7f:8b:7b:7f:b8:ef:3e:af:
f2:a1:50:93:2e:19:ae:3b:38:70:89:c5:e5:26:37:
08:9b:43:46:f9:b9:8f:e6:8e:8f:e4:f8:37:a4:3f:
9d:92:6c:d6:39:71:02:e6:f4:af:23:82:52:ee:3b:
93:6f:91:43:ad:ae:97:a6:a1:ac:8f:75:50:9b:da:
02:cf:6c:98:91:e2:21:4d:a4:22:b0:62:7b:4c:18:
32:09:36:db:3c:91:eb:a9:91:a3:9c:8d:ab:c0:fc:
87:c9:14:38:58:ac:89:c9:a4:71:20:e8:42:4c:99:
e5:ff:5e:9f:3b:97:d7:2e:34:a4:8d:0d:55:63:ee:
82:12:ee:12:e3:37:13:ae:47:4f:2d:d6:db:ee:49:
fc:07:ce:43:d3:5b:d1:7d:24:92:b7:b3:45:bd:a0:
29:ac:87:fa:e8:bc:6d:8d:87:85:16:df:70:71:bb:
29:e0:5d:31:b0:3f:38:b4:db:15:ba:6a:87:23:c3:
59:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:BA:0C:F1:1D:CC:BE:17:95:62:91:A8:F1:01:28:A5:7A:DA:BA:2C
X509v3 Authority Key Identifier:
keyid:DA:54:C8:20:EE:54:15:43:2C:68:B0:13:61:92:75:FF:4C:6E:6E:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:1d:44:e7:f4:29:0c:9e:ab:2b:95:a2:b0:73:13:18:02:42:
93:6f:bc:31:06:21:47:1f:40:4b:1f:7e:e3:c2:7f:c8:79:c7:
2d:d9:04:e1:5e:ee:2c:ac:dc:2b:9b:58:b7:e4:a6:83:63:86:
b0:28:8a:21:a2:e4:3f:b7:f1:17:83:8a:9d:64:4d:27:aa:d6:
45:65:3e:39:bc:93:21:6d:d6:a7:bb:d8:f5:be:85:2d:17:76:
e0:78:29:ff:33:08:22:d4:2b:fb:02:9d:a9:1d:1d:95:24:a8:
da:3e:34:76:a9:1d:fc:ed:b5:01:9e:ed:1f:c9:67:ea:51:9e:
c6:a1:aa:05:38:0d:3c:f0:15:f9:e7:14:61:c4:1e:0f:30:3d:
97:cc:1c:a1:90:1f:0f:d5:77:0d:fb:ac:8b:b8:e9:49:04:00:
2f:9a:f7:d8:7e:86:8e:34:d6:60:e2:c9:3c:55:f7:f8:45:60:
d1:65:a5:e6:f0:17:6d:03:55:fa:dd:8d:99:c6:b2:25:5b:9e:
38:cc:12:c9:4c:6a:1a:b6:14:7d:a1:3d:0b:b4:f8:c9:c4:a4:
52:43:72:8e:a8:0f:9f:5a:ad:d6:6f:5f:4a:5c:6a:22:4f:90:
18:65:dc:be:62:4f:ad:14:ae:b6:05:05:66:60:40:d9:02:55:
84:5f:e6:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 02:11:04 2024 by rpki-client on console-fra.rpki-client.org