Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/23d64f-5192-4dd6-b026-ee9116d7e1d6/1/nYy-lCn5RJlbPJNL2vZglrURSNQ.mft
File: nYy-lCn5RJlbPJNL2vZglrURSNQ.mft (raw, json)
Hash identifier: H3N1jVNT8IuYXRmhdYaU5TsJPlbZWicxNHCS7BcLXfk=
Subject key identifier: 1C:61:F7:71:F6:C7:96:F9:0A:11:FD:AA:40:A8:B8:90:A5:1B:C9:AB
Authority key identifier: 9D:8C:BE:94:29:F9:44:99:5B:3C:93:4B:DA:F6:60:96:B5:11:48:D4
Certificate issuer: /CN=9d8cbe9429f944995b3c934bdaf66096b51148d4
Certificate serial: 018F87ED404B11A9EA60DAC9EB6BAF2F6316
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nYy-lCn5RJlbPJNL2vZglrURSNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/23d64f-5192-4dd6-b026-ee9116d7e1d6/1/nYy-lCn5RJlbPJNL2vZglrURSNQ.mft
Manifest number: C5
Signing time: Fri 17 May 2024 19:00:23 +0000
Manifest this update: Fri 17 May 2024 19:00:23 +0000
Manifest next update: Sat 18 May 2024 19:00:23 +0000
Files and hashes: 1: nYy-lCn5RJlbPJNL2vZglrURSNQ.crl (hash: kTD77LwBhw4nqlksn0Aw1Ck0DkWbB4Zzp5BpvFHFmVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/23d64f-5192-4dd6-b026-ee9116d7e1d6/1/nYy-lCn5RJlbPJNL2vZglrURSNQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/23d64f-5192-4dd6-b026-ee9116d7e1d6/1/nYy-lCn5RJlbPJNL2vZglrURSNQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nYy-lCn5RJlbPJNL2vZglrURSNQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:ed:40:4b:11:a9:ea:60:da:c9:eb:6b:af:2f:63:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d8cbe9429f944995b3c934bdaf66096b51148d4
Validity
Not Before: May 17 19:00:23 2024 GMT
Not After : May 18 19:00:23 2024 GMT
Subject: CN=1c61f771f6c796f90a11fdaa40a8b890a51bc9ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:70:3f:52:d5:83:e9:0c:66:58:6e:66:2f:93:
a2:11:2d:b2:f0:77:66:8a:68:11:52:4c:00:63:53:
57:c4:41:3e:d7:18:b5:85:3c:7b:6e:a3:26:4a:34:
b7:33:0b:f8:ae:92:34:0f:dc:fa:d4:22:c3:ce:bc:
6c:7b:fd:ab:ed:d0:0d:2b:2a:d4:69:66:a4:3c:23:
cd:7a:12:a5:f0:00:5a:ad:99:ea:92:31:e0:28:1d:
e0:2c:12:b7:d3:a9:ac:5d:f2:75:c2:26:0a:8c:9d:
75:8c:93:d4:6e:b1:41:54:c4:08:91:22:79:07:4f:
54:b6:e7:0d:40:e5:d3:9f:f9:96:db:69:92:d3:5b:
ca:ea:a5:89:85:72:c3:2c:06:53:26:ca:cc:7b:db:
7f:90:41:53:67:45:11:2e:03:41:dc:a0:20:75:f7:
bc:97:67:0e:de:e2:05:4d:c2:86:5c:e4:b8:f0:f3:
52:d1:9f:52:f2:4c:1b:fe:b5:c1:3f:af:d9:f9:be:
f1:da:d8:70:a5:42:8e:ef:09:95:73:8e:08:3d:fd:
f1:3a:12:89:4a:15:c8:98:2b:68:da:11:e7:b7:93:
8d:e3:3f:f3:33:47:26:33:06:b4:04:a5:4c:a9:c0:
cf:8d:1a:d4:52:ce:bc:8f:5b:de:c2:f0:74:e5:99:
bf:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:61:F7:71:F6:C7:96:F9:0A:11:FD:AA:40:A8:B8:90:A5:1B:C9:AB
X509v3 Authority Key Identifier:
keyid:9D:8C:BE:94:29:F9:44:99:5B:3C:93:4B:DA:F6:60:96:B5:11:48:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nYy-lCn5RJlbPJNL2vZglrURSNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/23d64f-5192-4dd6-b026-ee9116d7e1d6/1/nYy-lCn5RJlbPJNL2vZglrURSNQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/23d64f-5192-4dd6-b026-ee9116d7e1d6/1/nYy-lCn5RJlbPJNL2vZglrURSNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:60:79:c5:da:7c:fa:90:10:28:e7:3e:93:ec:a6:fc:fb:d5:
1f:63:ab:5d:f1:ac:4c:6b:70:22:79:92:bc:b4:d2:85:30:1b:
64:a5:25:6d:2b:20:a1:df:7d:c4:7e:ba:c7:b5:01:77:ca:32:
1f:67:01:04:9a:b1:42:cd:2a:37:e1:45:44:cb:05:6c:c2:2a:
a7:b5:84:61:05:41:9b:c3:d3:fc:f3:de:60:ed:a1:e5:d4:f0:
92:07:a9:ef:32:48:9e:3e:c2:da:05:a1:d9:e6:a9:7b:af:7c:
46:4a:aa:6e:36:db:ec:53:56:f6:19:ec:a2:fc:19:f1:c3:2b:
d7:90:d8:78:9f:e1:fd:8c:eb:a4:4a:7c:2b:0f:3c:d4:a0:63:
1b:a0:36:b9:88:c4:6c:87:c0:07:46:8c:01:48:67:2c:34:b8:
48:a6:12:8d:c6:ee:94:09:7c:a8:73:bc:b4:58:f7:04:a7:4c:
67:1c:b4:ab:01:cc:df:f6:c3:7d:2d:34:55:7e:c5:24:e8:cc:
25:dd:b5:2e:3c:1d:b8:0e:f5:a5:e7:00:24:18:8c:f5:bb:b3:
13:9c:ea:97:20:25:78:3f:ba:c2:c0:50:17:4f:03:50:80:fd:
73:f4:2f:ca:78:71:73:21:80:27:48:d6:cc:0f:cd:9e:73:66:
0a:36:2b:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 20:12:08 2024 by rpki-client on console-ams.rpki-client.org