Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft
File: p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft (raw, json)
Hash identifier: 18m9jO5FDup8jKie5s1niEQ7Epd3ngiWP4+ivIjNyGo=
Subject key identifier: 69:82:80:12:D7:AB:01:16:EC:0D:D1:C3:F4:FB:62:6D:06:D1:76:0D
Authority key identifier: A7:73:25:E4:95:CB:01:50:20:3B:79:F2:46:F4:CD:4C:0F:EC:24:FF
Certificate issuer: /CN=a77325e495cb0150203b79f246f4cd4c0fec24ff
Certificate serial: 018F94CE1E27F65985EDBE05B3A958CF7B40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft
Manifest number: 0836
Signing time: Mon 20 May 2024 07:01:27 +0000
Manifest this update: Mon 20 May 2024 07:01:27 +0000
Manifest next update: Tue 21 May 2024 07:01:27 +0000
Files and hashes: 1: p3Ml5JXLAVAgO3nyRvTNTA_sJP8.crl (hash: h3Ta/8huwNopETUjfGQSDGOmzByBEnwtE8fq+bodMYE=)
2: xctHlnXs2EVS3lM3J0-O6PdNbUc.roa (hash: AZVDKoxr/tzbjI4yxUatIj0uMvuCNjez1t0bC4AXOwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 07:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:94:ce:1e:27:f6:59:85:ed:be:05:b3:a9:58:cf:7b:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a77325e495cb0150203b79f246f4cd4c0fec24ff
Validity
Not Before: May 20 07:01:27 2024 GMT
Not After : May 21 07:01:27 2024 GMT
Subject: CN=69828012d7ab0116ec0dd1c3f4fb626d06d1760d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e5:75:e8:aa:4a:22:1d:31:37:76:d3:a7:8b:
16:39:e1:7d:a8:f7:96:79:43:f6:12:d4:11:cc:84:
ed:c2:79:c2:48:e4:f6:e1:08:b0:7f:0e:c0:9a:9a:
a9:4f:5b:27:b0:c3:40:6a:5b:b4:e9:6f:e9:5f:08:
63:69:29:32:34:b9:12:83:e4:6c:ef:81:2a:a3:7d:
d7:ed:94:ca:4e:b0:a4:3c:30:5f:3b:a3:cd:54:fd:
36:d0:cc:91:aa:1d:98:90:08:33:81:f2:bf:16:9b:
e6:1c:20:84:59:5d:40:60:e1:04:d8:cd:32:64:e9:
e8:e0:97:b1:c2:db:e9:4b:be:e4:9f:46:36:79:fe:
35:8a:aa:1d:64:c7:37:3d:56:c5:29:c2:c4:b2:f5:
db:7c:66:d2:a8:00:05:c9:ed:4e:c8:a0:d2:c7:f8:
d8:88:b5:ce:cf:40:a4:96:e0:5e:5d:a7:4a:5a:6e:
cd:1c:31:eb:3a:ff:c3:be:29:7b:20:2c:b5:a2:79:
3f:1d:0f:74:fb:d3:3d:ff:3a:ce:95:66:39:44:48:
5f:54:93:9e:d8:90:b7:85:4f:7f:69:c6:a1:3d:c7:
62:5b:ef:c5:18:23:43:6f:8f:8f:e5:ef:8a:6d:8d:
9c:14:c0:a6:84:fa:d1:45:dc:39:40:e3:b5:f6:4e:
9a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:82:80:12:D7:AB:01:16:EC:0D:D1:C3:F4:FB:62:6D:06:D1:76:0D
X509v3 Authority Key Identifier:
keyid:A7:73:25:E4:95:CB:01:50:20:3B:79:F2:46:F4:CD:4C:0F:EC:24:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:19:4a:d1:08:21:cb:de:87:8e:f7:c9:01:0e:b7:2b:9f:72:
2c:e2:3b:cf:0a:ce:63:7a:63:e0:74:16:cd:eb:09:af:9f:4c:
ab:16:1a:99:4c:3a:77:90:13:11:1e:b9:89:a1:c0:5e:a6:5b:
67:6d:64:d7:1e:1b:61:ff:f7:7e:66:63:7d:a4:07:7c:74:a3:
c5:35:e0:38:df:f0:78:89:f1:ff:56:82:c5:08:d3:fb:5c:f3:
ad:46:0a:cc:93:a3:82:f0:5e:79:6d:d4:03:17:f0:a7:ca:4f:
cf:4e:8e:6b:8e:28:66:fc:27:40:e8:60:26:b4:10:99:14:d3:
c5:ac:03:fe:19:9e:d5:17:8a:c1:33:38:e2:b5:90:c1:34:5c:
fb:f1:4f:c8:b8:37:ec:ba:d7:f2:a5:51:3d:06:24:e8:a9:b7:
fc:ac:ef:43:bd:82:94:f7:3f:79:df:5f:45:a7:d4:c2:b7:c5:
9c:0d:f4:f0:62:a4:54:ea:ca:b8:ba:ce:c9:30:c9:18:ba:62:
68:0a:72:70:2d:36:0f:1e:2e:f5:e2:50:f2:8b:28:bd:7b:a8:
dc:d6:8c:cf:76:0a:8c:ad:94:cd:94:9c:6a:97:60:52:dc:81:
3b:b8:70:c2:aa:9d:5f:bc:97:28:2d:a1:48:ab:4b:f1:b4:66:
a4:be:83:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 14:10:17 2024 by rpki-client on console-fra.rpki-client.org