Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/4792e1-5b9f-4037-8dcb-21014aefbe5a/1/gPALHfY1r9LKor4te0qW7oede2s.mft
File: gPALHfY1r9LKor4te0qW7oede2s.mft (raw, json)
Hash identifier: UPvtnIIEttwm0UATblEqFW+JSsBuiTy/Wjx+g4l0I4g=
Subject key identifier: 7A:0A:96:F1:65:BE:F6:31:42:FB:35:EF:4C:5F:8E:F9:8A:FF:AF:BD
Authority key identifier: 80:F0:0B:1D:F6:35:AF:D2:CA:A2:BE:2D:7B:4A:96:EE:87:9D:7B:6B
Certificate issuer: /CN=80f00b1df635afd2caa2be2d7b4a96ee879d7b6b
Certificate serial: 018F874AF2776A94C04B91D449D52BD2E9F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPALHfY1r9LKor4te0qW7oede2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/4792e1-5b9f-4037-8dcb-21014aefbe5a/1/gPALHfY1r9LKor4te0qW7oede2s.mft
Manifest number: 04CE
Signing time: Fri 17 May 2024 16:03:06 +0000
Manifest this update: Fri 17 May 2024 16:03:06 +0000
Manifest next update: Sat 18 May 2024 16:03:06 +0000
Files and hashes: 1: gPALHfY1r9LKor4te0qW7oede2s.crl (hash: ez1RjXBszS8yZUwYFQfaZDbZ2q2B/7qB67iFkghIg9U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/4792e1-5b9f-4037-8dcb-21014aefbe5a/1/gPALHfY1r9LKor4te0qW7oede2s.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/4792e1-5b9f-4037-8dcb-21014aefbe5a/1/gPALHfY1r9LKor4te0qW7oede2s.mft
rsync://rpki.ripe.net/repository/DEFAULT/gPALHfY1r9LKor4te0qW7oede2s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:03:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:f2:77:6a:94:c0:4b:91:d4:49:d5:2b:d2:e9:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80f00b1df635afd2caa2be2d7b4a96ee879d7b6b
Validity
Not Before: May 17 16:03:06 2024 GMT
Not After : May 18 16:03:06 2024 GMT
Subject: CN=7a0a96f165bef63142fb35ef4c5f8ef98affafbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e5:9d:5f:05:92:25:93:3b:c2:9c:09:aa:3e:
27:ba:31:97:e2:b5:6c:26:76:06:63:c1:0b:fc:48:
c6:6d:ae:b6:b7:57:1a:d5:36:6a:41:f8:51:99:56:
ac:1e:61:19:77:e0:54:ca:1d:9c:b3:52:ae:dc:4c:
c0:2d:24:76:a6:ec:5c:4c:1e:2e:76:36:4c:1d:19:
d9:93:79:2a:08:de:92:5d:06:d6:3e:e8:23:9d:ce:
94:c7:55:b3:80:a2:dd:30:6d:f9:da:10:31:89:66:
7a:2a:ca:cc:fb:d7:b7:52:4e:cb:0f:2e:a3:a0:4e:
f7:81:94:ea:ed:dd:d8:5e:2f:5b:47:84:b4:95:ce:
93:91:03:47:1a:db:7f:72:c3:ba:f5:09:aa:85:4f:
00:b9:ac:19:be:ea:45:bb:31:d7:2e:d0:1a:25:6f:
b7:45:9e:6b:5e:24:85:74:09:2a:3a:86:5f:f4:7f:
02:f8:fe:d9:bd:a5:b4:1c:a4:ff:c3:87:81:bf:76:
98:b1:08:f6:b5:b4:31:d3:26:a3:e3:d7:b6:11:5c:
11:fe:41:9d:a9:63:49:d4:74:ef:24:03:b7:3c:b3:
9f:41:fe:ad:12:78:b7:09:d4:ea:70:b1:4e:69:18:
21:2e:72:d2:9a:40:a3:02:29:4f:69:4b:d6:84:04:
e1:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:0A:96:F1:65:BE:F6:31:42:FB:35:EF:4C:5F:8E:F9:8A:FF:AF:BD
X509v3 Authority Key Identifier:
keyid:80:F0:0B:1D:F6:35:AF:D2:CA:A2:BE:2D:7B:4A:96:EE:87:9D:7B:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPALHfY1r9LKor4te0qW7oede2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/4792e1-5b9f-4037-8dcb-21014aefbe5a/1/gPALHfY1r9LKor4te0qW7oede2s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/4792e1-5b9f-4037-8dcb-21014aefbe5a/1/gPALHfY1r9LKor4te0qW7oede2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:8f:71:c3:f3:7d:4b:22:90:29:02:6d:a2:f0:0d:70:3c:9c:
ab:70:3f:d5:be:bc:02:bb:99:f0:3c:6b:12:80:eb:36:22:f3:
fd:37:38:fd:d8:36:40:f4:d9:32:63:c3:de:c1:3a:64:b2:fa:
c5:0b:39:2d:94:2a:9c:07:26:f4:d7:f0:d0:c1:bb:8c:7b:8a:
30:39:6a:33:9c:57:4d:22:1c:ac:5a:2a:de:4c:9b:0e:97:a1:
17:2c:46:4f:64:dd:ab:ad:3c:8c:c5:8e:6e:1b:02:fa:96:72:
02:c3:4b:fd:2d:d3:83:97:88:dc:6b:ca:02:03:f4:e8:1c:7d:
54:77:e2:0e:d9:bb:36:19:e9:82:8b:bd:67:ac:5c:93:3b:a6:
86:7a:68:12:9d:70:a1:93:6d:8d:53:bd:f8:ac:c7:7f:f1:59:
1f:b2:f7:9e:0b:a6:64:d2:9d:59:16:e7:b4:e5:97:34:16:24:
9f:4a:42:e7:97:ff:2d:26:58:46:e6:1d:c2:e7:d2:a4:79:7c:
6d:d3:02:64:10:e2:37:d8:11:36:89:ca:da:9d:64:a8:f8:c1:
b7:73:31:4e:1e:6e:f6:79:e6:9e:ee:26:8e:cd:25:de:08:ea:
c5:ce:9a:a4:1f:13:1b:48:e0:c3:3e:26:69:0e:23:6c:98:66:
92:9f:56:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 00:31:10 2024 by rpki-client on console-ams.rpki-client.org