Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
File: cfxj7vZnTya1A6gwpd-pU9L_qr4.mft (raw, json)
Hash identifier: ty42+RAXU54/cF3Sk7MX4hRwfDsvIl7KRSVDXfViqW0=
Subject key identifier: 63:A7:D9:4C:B0:C8:F3:81:BF:1C:3A:7D:1C:14:A4:6A:87:5B:1F:FF
Authority key identifier: 71:FC:63:EE:F6:67:4F:26:B5:03:A8:30:A5:DF:A9:53:D2:FF:AA:BE
Certificate issuer: /CN=71fc63eef6674f26b503a830a5dfa953d2ffaabe
Certificate serial: 018F87B64D3F5F6238F2C2F8240DEF3F4B2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cfxj7vZnTya1A6gwpd-pU9L_qr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
Manifest number: 0FE0
Signing time: Fri 17 May 2024 18:00:22 +0000
Manifest this update: Fri 17 May 2024 18:00:22 +0000
Manifest next update: Sat 18 May 2024 18:00:22 +0000
Files and hashes: 1: cfxj7vZnTya1A6gwpd-pU9L_qr4.crl (hash: o4MN0eAfAqc28CRqEBUT1I+jLI02hJPcD+fmUCHROzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cfxj7vZnTya1A6gwpd-pU9L_qr4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:b6:4d:3f:5f:62:38:f2:c2:f8:24:0d:ef:3f:4b:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71fc63eef6674f26b503a830a5dfa953d2ffaabe
Validity
Not Before: May 17 18:00:22 2024 GMT
Not After : May 18 18:00:22 2024 GMT
Subject: CN=63a7d94cb0c8f381bf1c3a7d1c14a46a875b1fff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:9f:ac:7d:64:52:be:c3:09:83:de:1c:4a:44:
01:96:6e:ad:44:f3:5b:d3:ab:7a:c6:52:b2:39:a4:
c5:19:49:c9:f1:df:56:77:85:df:cd:07:db:86:84:
11:4a:97:90:f0:49:58:c0:23:38:5e:d7:74:e6:0d:
f4:f1:f2:07:aa:5c:a1:e5:6b:8f:0b:de:70:32:90:
d1:19:ee:ae:dd:f9:73:12:84:1a:7e:6d:fd:dd:56:
fb:b9:93:7b:a6:e9:d9:8b:72:2c:bd:47:24:69:bd:
3e:4f:89:b7:87:fb:81:8a:65:6b:6d:92:88:8e:ab:
5e:73:35:26:5b:1a:bf:85:b1:50:9e:03:7a:3f:ae:
38:c4:fa:d3:74:f7:4d:63:c9:ca:b8:d6:b2:07:99:
44:79:07:96:02:10:a1:b1:e4:9f:97:4b:de:06:70:
cd:b2:9c:ef:2c:88:1c:68:01:aa:06:3a:9a:6a:78:
9a:62:64:4d:db:94:67:e9:27:42:34:84:6a:be:d2:
92:38:45:ba:02:78:bb:d6:73:83:78:15:ab:3e:73:
88:28:f0:e4:8a:55:f4:00:d6:23:0f:5d:81:dd:92:
39:3c:3e:a2:e8:f6:d2:ac:44:23:20:9e:35:3a:c1:
8d:22:9c:44:81:f1:e0:a8:7d:6d:c1:18:8a:2b:5a:
c6:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:A7:D9:4C:B0:C8:F3:81:BF:1C:3A:7D:1C:14:A4:6A:87:5B:1F:FF
X509v3 Authority Key Identifier:
keyid:71:FC:63:EE:F6:67:4F:26:B5:03:A8:30:A5:DF:A9:53:D2:FF:AA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cfxj7vZnTya1A6gwpd-pU9L_qr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:8a:76:35:4f:0e:44:82:cb:dd:4f:b7:2e:96:2c:54:fc:b3:
f5:aa:8b:4c:42:c1:86:70:a5:e1:34:68:48:86:a4:f5:00:f3:
c1:ec:87:bf:cc:56:a7:67:b4:cc:0d:22:33:05:2e:df:34:18:
74:1e:88:07:67:d9:e1:66:34:0c:36:3e:9a:2f:21:71:f9:65:
88:38:1b:73:5e:c9:9a:14:45:06:0a:2b:f9:72:27:3d:7e:41:
db:b4:1f:a4:08:e2:65:ee:d7:2c:69:2d:6b:f2:5d:20:97:5b:
af:bb:3e:ac:36:5a:e4:58:20:be:bd:06:b6:f7:08:5a:46:c5:
be:d7:80:d3:13:ea:57:0d:8c:5b:c4:85:a3:8f:9c:ca:ce:6f:
dd:b8:e7:37:07:e0:0f:89:54:cd:79:3b:b6:72:d3:25:7c:83:
91:16:30:e1:af:81:60:6e:fc:42:10:2b:71:22:39:29:9f:d2:
42:c0:f0:c3:a4:4b:a6:73:8b:02:26:63:e0:6e:ed:f3:f3:fe:
49:ec:92:6d:6e:dd:84:be:f0:5d:9b:e9:87:81:1a:96:6b:2c:
81:f5:0c:4f:ac:34:8b:ea:a8:c5:9a:10:b3:60:19:63:cf:3b:
ae:f1:99:08:84:29:ad:34:ca:8b:fb:38:6f:4c:b7:40:2d:4d:
75:12:ba:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 20:18:40 2024 by rpki-client on console-fra.rpki-client.org