Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
File: gSdW6ySj41K9bonR9aoISIlhpnQ.mft (raw, json)
Hash identifier: sFnQqxtmlMJ6X9ZeTrwq19/bLu9JKubHFp2Hzyk2xrg=
Subject key identifier: 44:64:93:1F:02:C5:3B:66:B2:D3:19:35:BE:C6:42:28:B8:11:BF:43
Authority key identifier: 81:27:56:EB:24:A3:E3:52:BD:6E:89:D1:F5:AA:08:48:89:61:A6:74
Certificate issuer: /CN=812756eb24a3e352bd6e89d1f5aa08488961a674
Certificate serial: 018F874A9AE81F015FBFC675F2ECDED5F49F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
Manifest number: 048F
Signing time: Fri 17 May 2024 16:02:44 +0000
Manifest this update: Fri 17 May 2024 16:02:44 +0000
Manifest next update: Sat 18 May 2024 16:02:44 +0000
Files and hashes: 1: gSdW6ySj41K9bonR9aoISIlhpnQ.crl (hash: Tl7HS/Jquaa0+CluGe5WqFWlkwLcy3ghU5E78QZrZjU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:9a:e8:1f:01:5f:bf:c6:75:f2:ec:de:d5:f4:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=812756eb24a3e352bd6e89d1f5aa08488961a674
Validity
Not Before: May 17 16:02:44 2024 GMT
Not After : May 18 16:02:44 2024 GMT
Subject: CN=4464931f02c53b66b2d31935bec64228b811bf43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5d:3d:32:c8:bc:7f:26:c8:fb:eb:96:82:75:
a2:f0:31:d1:bf:33:99:29:3a:0f:fd:c6:78:f9:40:
1f:c6:ae:a0:18:8d:78:51:69:39:a6:b9:da:71:90:
86:d5:91:bf:31:13:6e:17:ac:77:2a:30:70:f2:2e:
63:59:33:c4:a7:39:74:cd:c7:34:b9:40:a5:06:4b:
ca:96:9b:82:c8:94:da:46:6e:a0:45:f2:bd:aa:85:
cd:33:c8:c4:cc:bc:20:d4:2c:1a:01:69:92:3e:4c:
32:13:d1:70:e8:b7:8b:3d:8e:e0:e9:8d:ac:c3:a2:
06:e0:13:3d:9d:f3:13:e0:dc:20:34:8f:84:df:46:
e1:c0:ee:40:cf:51:3f:00:63:dc:ea:34:8b:f7:61:
6f:3c:b4:b3:0b:98:1c:e5:45:78:f1:b8:62:ab:6a:
18:37:db:01:98:7d:63:16:16:1c:68:b8:d0:f5:c3:
1b:81:75:3b:72:e8:80:86:a9:ef:d5:ad:d9:45:d0:
89:1a:15:02:42:dc:2f:46:4c:72:ec:b6:5d:65:16:
a4:76:40:9c:72:22:31:6e:1a:c2:1b:df:c7:60:e4:
54:c6:4e:2b:07:62:25:50:3c:9e:c7:c7:a6:31:6a:
75:91:a4:d4:11:9d:42:31:8f:b5:b1:e6:07:cd:cc:
a5:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:64:93:1F:02:C5:3B:66:B2:D3:19:35:BE:C6:42:28:B8:11:BF:43
X509v3 Authority Key Identifier:
keyid:81:27:56:EB:24:A3:E3:52:BD:6E:89:D1:F5:AA:08:48:89:61:A6:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:e0:9c:61:d2:54:02:c1:94:4f:90:80:02:10:d4:d2:7d:1b:
8c:70:20:ea:27:5e:a4:53:64:8f:b3:4a:7f:72:77:cb:d0:a3:
1f:86:9c:21:fd:98:59:60:56:b5:e4:1c:19:20:13:d7:b9:c2:
1d:b3:bf:0e:46:4c:8b:16:3b:1a:36:92:1c:eb:c8:90:e1:76:
67:a3:1e:95:c6:10:04:b4:a0:1d:b7:13:e5:d5:7b:e0:95:30:
46:d6:d7:45:09:ef:db:da:01:2f:13:05:10:1d:58:ed:cc:a7:
9b:3d:f5:19:fb:7c:e2:7f:34:cd:67:63:54:f4:9a:01:d4:63:
39:9e:6e:64:3b:1d:d3:8a:12:21:f9:76:cd:cc:0e:1f:d7:43:
e4:b4:1e:e2:52:20:3a:13:97:5a:1f:2e:c4:b9:18:e7:6e:e4:
e4:dd:4d:c8:67:bf:b8:c3:95:96:71:94:4d:dc:19:32:26:78:
e8:b8:07:f7:fc:dc:81:e0:58:f8:c3:94:5a:6a:e0:32:7e:98:
3d:5c:4e:61:ba:7e:f1:c2:1d:a9:78:2c:4c:06:84:31:a4:23:
a4:34:e3:d5:92:4d:b7:35:56:e2:1d:7e:22:ae:36:b4:8a:05:
e5:26:ed:a4:da:61:40:8c:15:91:8f:71:22:22:b8:08:e6:d1:
e8:dd:03:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:43:43 2024 by rpki-client on console-ams.rpki-client.org