Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
File: PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft (raw, json)
Hash identifier: a00gLy8ifTGnAY1eP7rKHr6XJkY/iMpY++kf4bRgKIw=
Subject key identifier: 0F:EE:3B:49:F7:A5:24:2A:46:0B:E9:EF:03:CC:1A:F6:1B:77:19:93
Authority key identifier: 3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8
Certificate issuer: /CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8
Certificate serial: 018F88922F2BFC26D1EE8DC86357E4C755F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
Manifest number: 1175
Signing time: Fri 17 May 2024 22:00:32 +0000
Manifest this update: Fri 17 May 2024 22:00:32 +0000
Manifest next update: Sat 18 May 2024 22:00:32 +0000
Files and hashes: 1: PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl (hash: fiayuiziQxKxTK1aRlXuAef6EzsAtnC/6rPZf0Ru6Ac=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:92:2f:2b:fc:26:d1:ee:8d:c8:63:57:e4:c7:55:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8
Validity
Not Before: May 17 22:00:32 2024 GMT
Not After : May 18 22:00:32 2024 GMT
Subject: CN=0fee3b49f7a5242a460be9ef03cc1af61b771993
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6c:f4:57:24:5a:be:5a:f8:f4:e9:fb:d1:2d:
a1:b8:51:c2:ad:58:01:7a:c8:54:4e:a2:42:83:45:
6a:2e:44:62:ae:fe:6d:e4:72:9b:55:46:cf:ad:e4:
4e:a5:14:97:ee:b1:0e:ff:7d:bf:08:10:e3:8b:18:
4b:c1:5b:a7:0a:8f:17:2d:fc:16:55:3a:6a:5b:90:
91:01:03:7d:26:60:2e:f4:d1:32:06:91:9b:f8:97:
54:2d:fc:04:ae:19:08:34:d7:07:14:63:e8:c9:94:
7a:cc:ef:3d:46:dc:27:35:19:d4:ea:6b:f7:5d:54:
2d:b9:6a:93:e0:37:5d:5b:75:88:1f:52:18:67:44:
ab:25:6c:19:e7:33:af:93:ce:7d:00:01:46:d1:13:
bc:df:5d:3c:81:9f:86:fd:82:d4:eb:50:d0:d8:28:
0c:33:37:a1:4b:ec:f8:cf:39:8d:a3:7d:54:9a:ed:
eb:32:48:c4:64:68:12:7f:b4:d3:24:d4:9a:9e:81:
c9:29:d5:c9:87:a4:45:4d:ba:75:b0:2b:31:d9:27:
ff:ae:c1:c1:70:35:a0:01:0c:df:31:6c:35:64:89:
52:db:c2:94:a3:5d:f5:55:97:3e:94:11:7d:78:6b:
13:d3:d2:65:96:d9:0e:f8:b4:86:d9:10:b8:36:37:
a0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:EE:3B:49:F7:A5:24:2A:46:0B:E9:EF:03:CC:1A:F6:1B:77:19:93
X509v3 Authority Key Identifier:
keyid:3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:f6:7b:18:67:e0:30:78:a6:d2:56:1d:b1:b1:c7:d9:5c:3b:
c0:ac:ce:8b:dd:fb:d1:32:06:99:e7:8f:28:8a:91:0a:83:fb:
11:4a:c8:68:59:c2:b6:26:04:b5:e2:dc:0d:7f:89:6a:3d:e0:
a4:8d:91:d7:20:d7:90:7a:f1:7f:a1:b0:84:e6:87:6f:af:91:
58:7a:0d:59:a3:ad:92:6f:80:6e:95:1b:6c:7b:72:e2:8c:28:
05:5b:89:99:ca:58:31:0f:41:01:c8:28:ae:bb:af:bf:1e:a3:
be:7b:12:dc:b9:68:aa:c5:b1:26:7c:ad:14:78:6d:ac:95:9d:
e3:ed:b9:1f:c7:8c:11:1a:4b:dc:85:b6:d2:9e:4d:88:95:1c:
07:1b:0c:b2:06:c1:69:dd:a5:21:6e:a2:87:75:c3:49:ac:67:
e5:ab:57:bf:99:6b:d7:12:36:cd:00:23:96:1c:56:ff:bf:38:
8e:a8:83:23:e3:45:0b:97:89:98:17:29:d4:f7:2c:0d:da:70:
b4:af:e4:a9:8c:78:79:71:56:c0:1a:ae:df:7a:99:32:ed:3c:
38:c6:a8:f6:68:67:5a:3a:b9:7a:99:59:c3:1a:8b:58:69:a4:
97:57:8d:fe:e5:97:9a:5b:1d:43:29:10:02:7b:8a:fc:58:4c:
b4:6e:91:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 00:25:57 2024 by rpki-client on console-fra.rpki-client.org