Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/06684c-9955-424b-ace8-23797aeabb0f/1/xbqElpIUKuxW19DdyN1N20HPg8E.mft
File: xbqElpIUKuxW19DdyN1N20HPg8E.mft (raw, json)
Hash identifier: jSoHMtJoYXB+xMKE8UtDliNyy7xUK+wPzWEyjM1McYE=
Subject key identifier: D2:86:91:55:2C:8F:2E:76:FF:EF:05:8C:B6:34:EC:23:0B:7B:A9:47
Authority key identifier: C5:BA:84:96:92:14:2A:EC:56:D7:D0:DD:C8:DD:4D:DB:41:CF:83:C1
Certificate issuer: /CN=c5ba849692142aec56d7d0ddc8dd4ddb41cf83c1
Certificate serial: 018F9383D17F3BCD71D1FE5E4BB7443241BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xbqElpIUKuxW19DdyN1N20HPg8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/06684c-9955-424b-ace8-23797aeabb0f/1/xbqElpIUKuxW19DdyN1N20HPg8E.mft
Manifest number: 0A7E
Signing time: Mon 20 May 2024 01:00:40 +0000
Manifest this update: Mon 20 May 2024 01:00:40 +0000
Manifest next update: Tue 21 May 2024 01:00:40 +0000
Files and hashes: 1: xbqElpIUKuxW19DdyN1N20HPg8E.crl (hash: WMp+L9ri9hyTBc6FEc6WQB3DfaDbJHtNX3zzF8sVVZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/06684c-9955-424b-ace8-23797aeabb0f/1/xbqElpIUKuxW19DdyN1N20HPg8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/06684c-9955-424b-ace8-23797aeabb0f/1/xbqElpIUKuxW19DdyN1N20HPg8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/xbqElpIUKuxW19DdyN1N20HPg8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 01:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:93:83:d1:7f:3b:cd:71:d1:fe:5e:4b:b7:44:32:41:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5ba849692142aec56d7d0ddc8dd4ddb41cf83c1
Validity
Not Before: May 20 01:00:40 2024 GMT
Not After : May 21 01:00:40 2024 GMT
Subject: CN=d28691552c8f2e76ffef058cb634ec230b7ba947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c0:dc:6d:ce:d0:b4:03:e0:08:f3:46:84:4d:
16:5e:0b:15:80:d9:d7:82:8b:c2:5a:d0:05:8c:6f:
47:57:e5:87:fe:74:ad:ea:63:f4:31:2c:59:e3:2d:
92:66:06:36:36:6e:ba:70:a1:32:ec:5c:d6:96:db:
35:3e:ed:3f:3e:c2:db:73:38:38:4a:f0:3e:3a:54:
00:cd:8f:6e:d3:10:fc:ec:ed:7a:2d:49:03:aa:fe:
9c:d6:e7:a3:5e:e6:f0:d2:b9:56:eb:17:76:e1:92:
41:12:91:05:ee:c1:d4:6f:14:f8:3b:08:a0:e4:c8:
63:6b:55:89:b9:ab:95:5a:b1:6f:ba:ff:7e:8d:ef:
3f:04:a0:31:e0:04:22:86:0c:0c:af:c8:38:fa:f0:
80:c2:c0:0b:8f:8f:ba:23:53:b5:05:52:7e:28:e4:
73:40:be:97:6b:9b:f7:4a:3a:83:b1:68:9f:64:93:
60:c3:3d:1f:3e:35:05:a5:81:d8:e7:37:8c:26:1b:
2d:8c:30:2b:cb:43:b9:70:63:be:7b:6f:5a:df:e2:
a7:41:f0:a3:18:22:a3:e6:d0:37:21:0f:86:59:68:
41:75:a3:25:1f:61:94:94:d0:c0:8e:02:1b:b5:97:
c8:58:20:e0:17:67:2a:79:22:7e:60:47:f6:f2:b5:
c2:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:86:91:55:2C:8F:2E:76:FF:EF:05:8C:B6:34:EC:23:0B:7B:A9:47
X509v3 Authority Key Identifier:
keyid:C5:BA:84:96:92:14:2A:EC:56:D7:D0:DD:C8:DD:4D:DB:41:CF:83:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xbqElpIUKuxW19DdyN1N20HPg8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/06684c-9955-424b-ace8-23797aeabb0f/1/xbqElpIUKuxW19DdyN1N20HPg8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/06684c-9955-424b-ace8-23797aeabb0f/1/xbqElpIUKuxW19DdyN1N20HPg8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:5d:af:6d:49:d8:0a:eb:5a:95:89:6b:a7:bf:c8:5e:18:57:
2e:a7:c6:a4:56:c1:59:18:d2:17:22:b3:19:37:0e:d7:18:99:
0d:62:9e:2c:a0:44:06:20:af:38:a7:b6:77:2e:26:14:b5:f2:
7a:ce:7e:cd:b7:46:b7:23:6d:58:12:12:7b:eb:8b:cf:f4:c5:
80:0a:91:84:90:fd:30:65:4d:15:de:be:c2:95:38:c8:d6:69:
4c:ee:1a:c2:56:1f:6c:90:5e:2f:14:f3:18:b9:47:ee:fc:01:
64:77:a2:39:a9:5b:16:1d:db:cf:5b:23:b3:13:b6:0e:1c:9d:
e9:25:b5:35:da:3b:1c:d9:80:b5:0e:a7:83:73:4a:64:4d:27:
de:fc:2c:8c:12:10:72:c1:67:37:b4:f2:74:e8:3d:7b:93:94:
cb:59:b1:e2:cc:dc:01:6c:20:9b:9e:40:71:09:2f:9e:73:7d:
f0:21:b6:31:9c:ee:0c:44:e7:b6:78:27:44:f1:d0:bf:35:19:
0e:f4:bd:89:69:c6:68:a0:97:59:c6:66:be:7c:50:17:d5:99:
e5:a1:12:e3:18:70:6f:4d:7e:3b:3e:4b:03:b1:50:9a:58:9c:
ef:67:b8:c3:aa:8e:25:47:61:54:d2:b4:c0:78:af:7c:79:21:
aa:b6:0a:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 10:44:19 2024 by rpki-client on console-ams.rpki-client.org