Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/3aab07-1085-40c3-b67e-81fed3a7e5f1/1/Ib40C2oyCYkZeIM2_OHmiSA_xL4.mft
File: Ib40C2oyCYkZeIM2_OHmiSA_xL4.mft (raw, json)
Hash identifier: jXOusMuxO+fh+SU5gHCvx8rXqBEZy5bLk4tfLmrqRFQ=
Subject key identifier: AA:65:FC:CA:59:6B:0F:CF:3C:C1:63:DC:A5:2B:C8:A0:C7:FB:80:86
Authority key identifier: 21:BE:34:0B:6A:32:09:89:19:78:83:36:FC:E1:E6:89:20:3F:C4:BE
Certificate issuer: /CN=21be340b6a32098919788336fce1e689203fc4be
Certificate serial: 018F5091FD1187C62646939F0D40DCE5625D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ib40C2oyCYkZeIM2_OHmiSA_xL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/3aab07-1085-40c3-b67e-81fed3a7e5f1/1/Ib40C2oyCYkZeIM2_OHmiSA_xL4.mft
Manifest number: 0665
Signing time: Tue 07 May 2024 01:01:35 +0000
Manifest this update: Tue 07 May 2024 01:01:35 +0000
Manifest next update: Wed 08 May 2024 01:01:35 +0000
Files and hashes: 1: Ib40C2oyCYkZeIM2_OHmiSA_xL4.crl (hash: V5QEBuS4H0zBNnwr3cgT3+z+GntRdKMoeDcCYloR364=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/3aab07-1085-40c3-b67e-81fed3a7e5f1/1/Ib40C2oyCYkZeIM2_OHmiSA_xL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/3aab07-1085-40c3-b67e-81fed3a7e5f1/1/Ib40C2oyCYkZeIM2_OHmiSA_xL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ib40C2oyCYkZeIM2_OHmiSA_xL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:50:91:fd:11:87:c6:26:46:93:9f:0d:40:dc:e5:62:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21be340b6a32098919788336fce1e689203fc4be
Validity
Not Before: May 7 01:01:35 2024 GMT
Not After : May 8 01:01:35 2024 GMT
Subject: CN=aa65fcca596b0fcf3cc163dca52bc8a0c7fb8086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:26:73:44:39:bc:15:b1:6f:57:ca:60:57:2b:
86:e8:7e:09:05:61:40:75:ac:15:34:58:99:c8:36:
a1:69:03:03:57:37:90:7d:5f:02:da:9f:ea:a9:39:
46:94:67:68:bc:69:c6:31:74:a7:35:14:4c:0f:47:
96:e8:29:0c:5e:c2:df:0c:af:1e:bd:92:fb:b7:56:
5a:56:26:86:43:90:a0:d1:69:f2:b1:c1:9c:fb:f5:
63:a1:37:38:eb:6e:f4:bf:6d:85:35:ba:00:39:a2:
cc:33:b7:19:71:fe:5d:e4:c9:6d:83:cd:ed:a4:2e:
77:fa:be:62:b0:da:a7:bb:ed:7b:72:bc:b3:fc:2c:
b8:89:5d:8a:73:ae:25:df:7b:69:7e:07:ae:9d:e0:
35:fa:b2:03:e8:73:be:2f:0d:5d:5c:35:00:cf:09:
99:3f:a1:82:ac:7c:72:b0:7f:df:d5:fc:94:05:4f:
6a:b4:a3:9c:dd:48:f9:a6:bc:32:37:57:00:d1:cb:
01:86:1b:05:72:cd:1b:3a:5b:33:2e:d1:a1:14:b4:
31:5a:24:db:6e:a8:45:2e:b2:43:b6:ec:44:2e:9b:
41:ec:00:5a:99:72:a3:09:d7:be:03:96:3a:f0:93:
d6:23:33:7f:0b:86:bd:f7:d0:29:56:eb:be:72:b6:
4b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:65:FC:CA:59:6B:0F:CF:3C:C1:63:DC:A5:2B:C8:A0:C7:FB:80:86
X509v3 Authority Key Identifier:
keyid:21:BE:34:0B:6A:32:09:89:19:78:83:36:FC:E1:E6:89:20:3F:C4:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ib40C2oyCYkZeIM2_OHmiSA_xL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/3aab07-1085-40c3-b67e-81fed3a7e5f1/1/Ib40C2oyCYkZeIM2_OHmiSA_xL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/3aab07-1085-40c3-b67e-81fed3a7e5f1/1/Ib40C2oyCYkZeIM2_OHmiSA_xL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:bd:28:6c:be:67:03:c5:27:76:5f:72:d6:27:99:f2:2a:bc:
0c:1c:c2:df:b3:77:bc:62:43:33:ec:cc:e3:75:7b:bd:7a:be:
9b:26:76:cf:fc:94:c0:12:74:91:b5:82:d7:e9:db:8c:62:cf:
e0:e5:17:85:53:8a:80:c1:5b:e5:3e:ea:98:11:07:c3:82:5d:
78:ae:09:fc:cb:2a:82:85:93:f8:ba:d3:2e:78:0e:05:d1:1d:
71:e5:4e:9a:58:b6:e3:7b:a7:06:42:8e:82:be:9b:5d:03:de:
d4:5d:01:bf:36:7e:6e:15:ed:cd:bf:82:17:25:2d:ac:2b:9b:
c3:99:ef:af:41:48:cf:55:bd:b8:47:3e:45:66:f0:42:6e:37:
c8:fd:01:ad:3f:db:74:29:c1:89:88:3a:6c:b6:ba:26:76:40:
ed:93:13:1d:fa:da:07:12:86:c4:53:de:73:e6:f6:11:b3:ad:
b6:07:b3:86:6e:04:f4:aa:69:df:fe:17:4b:1c:94:e6:c2:46:
09:7f:f0:91:78:a6:cd:d4:90:43:f2:94:31:62:d8:fd:76:65:
36:58:86:1b:7e:92:6f:93:f2:77:1a:9d:e2:88:42:e7:79:2a:
79:71:00:48:2a:00:d4:da:a4:d8:1b:8a:44:a3:9a:bc:1c:72:
eb:e3:1c:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 02:19:47 2024 by rpki-client on console-ams.rpki-client.org