Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/ab8137-3753-4eca-a94e-8c2130a35016/1/JK_wO1q_sXhyXKbpD149mMumjr8.mft
File: JK_wO1q_sXhyXKbpD149mMumjr8.mft (raw, json)
Hash identifier: KcmrA5RncMe1MQQkPrLaXXQDrBgnmcuCKPbsDK2EYcU=
Subject key identifier: 4E:51:39:40:E7:54:BE:1B:62:8C:A1:3F:94:1C:39:F0:65:B3:40:08
Authority key identifier: 24:AF:F0:3B:5A:BF:B1:78:72:5C:A6:E9:0F:5E:3D:98:CB:A6:8E:BF
Certificate issuer: /CN=24aff03b5abfb178725ca6e90f5e3d98cba68ebf
Certificate serial: 018F885B632AC9B08E29A2587751A66FD25C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JK_wO1q_sXhyXKbpD149mMumjr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/ab8137-3753-4eca-a94e-8c2130a35016/1/JK_wO1q_sXhyXKbpD149mMumjr8.mft
Manifest number: 027B
Signing time: Fri 17 May 2024 21:00:41 +0000
Manifest this update: Fri 17 May 2024 21:00:41 +0000
Manifest next update: Sat 18 May 2024 21:00:41 +0000
Files and hashes: 1: JK_wO1q_sXhyXKbpD149mMumjr8.crl (hash: 4irX84UX8kDfazGAXwEqAnb/C6c45mcPuHdhkAU13Ag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/ab8137-3753-4eca-a94e-8c2130a35016/1/JK_wO1q_sXhyXKbpD149mMumjr8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/ab8137-3753-4eca-a94e-8c2130a35016/1/JK_wO1q_sXhyXKbpD149mMumjr8.mft
rsync://rpki.ripe.net/repository/DEFAULT/JK_wO1q_sXhyXKbpD149mMumjr8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:5b:63:2a:c9:b0:8e:29:a2:58:77:51:a6:6f:d2:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24aff03b5abfb178725ca6e90f5e3d98cba68ebf
Validity
Not Before: May 17 21:00:41 2024 GMT
Not After : May 18 21:00:41 2024 GMT
Subject: CN=4e513940e754be1b628ca13f941c39f065b34008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:70:97:8e:0c:4f:95:4e:58:a7:1e:13:ef:dd:
76:4c:24:8f:3a:49:4a:a0:7f:f1:4e:0d:c5:bf:b8:
82:43:76:ba:e5:15:d3:e0:49:36:69:a9:9b:1b:fc:
6b:f9:1d:64:c4:b2:80:fb:7e:c2:dd:4e:de:8a:44:
04:fb:43:9f:51:53:70:e4:50:ef:6a:8d:b8:a1:bb:
7b:3f:59:d3:1f:38:07:b8:b8:52:3f:ab:58:30:8e:
2c:f2:2f:b6:75:48:72:ec:41:eb:87:0f:58:29:07:
c1:32:56:ab:ef:1d:31:46:9c:c4:a7:21:82:2e:43:
5c:8b:44:53:9a:09:ef:df:80:25:05:9f:8c:ef:76:
cc:4f:79:1d:b8:2b:b3:15:03:08:31:f2:46:f1:b3:
01:7e:3f:97:9d:28:8a:44:e2:58:9a:49:4e:ac:5b:
29:84:c6:a9:6b:be:ee:97:35:cd:23:3c:6e:84:29:
8e:36:b9:a5:c6:73:17:ed:cf:b5:b4:2c:c6:4b:9f:
df:53:72:21:f4:ee:f7:10:95:ee:40:9f:e8:4d:35:
48:fe:f3:5c:61:8e:95:95:fc:8b:18:c3:c7:02:32:
66:81:29:9f:aa:6e:86:19:fc:bc:1a:9d:01:52:3b:
7e:77:1d:5a:8d:27:d3:a3:55:05:e7:a2:c8:f4:72:
e2:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:51:39:40:E7:54:BE:1B:62:8C:A1:3F:94:1C:39:F0:65:B3:40:08
X509v3 Authority Key Identifier:
keyid:24:AF:F0:3B:5A:BF:B1:78:72:5C:A6:E9:0F:5E:3D:98:CB:A6:8E:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JK_wO1q_sXhyXKbpD149mMumjr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ab8137-3753-4eca-a94e-8c2130a35016/1/JK_wO1q_sXhyXKbpD149mMumjr8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ab8137-3753-4eca-a94e-8c2130a35016/1/JK_wO1q_sXhyXKbpD149mMumjr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:82:38:b4:ca:71:09:ca:be:4f:20:45:ea:f7:ac:51:cb:47:
8e:8e:dd:22:b8:16:7d:b1:d0:34:89:f7:59:b1:68:51:ee:cf:
37:5a:3a:b2:cd:86:61:12:36:17:4a:3c:ac:db:59:f4:62:e2:
cc:40:e7:19:ec:d4:75:8d:62:7b:36:18:b5:1c:ee:55:57:c2:
4c:f0:07:6e:08:46:89:f7:d8:1a:1b:51:1a:3e:fb:ba:23:23:
30:ab:47:3e:ac:c1:25:62:bc:df:ab:ff:e7:01:33:74:74:15:
f7:de:0c:ae:75:04:b8:42:7f:52:30:70:46:d5:d4:ba:d5:61:
96:5d:38:e7:52:9d:52:67:38:de:c5:90:9f:47:de:1d:dc:d3:
86:c6:f3:76:ed:6a:48:9f:e0:e5:8c:6c:c1:57:5d:4e:06:4b:
1f:30:33:be:55:23:44:a1:a3:2b:02:e6:d6:ad:28:2c:46:37:
81:ee:6f:af:f1:85:31:9c:ce:65:6e:f2:3d:e0:db:f1:33:90:
ce:04:76:ac:d6:c1:d8:dc:e9:d1:7d:cd:f4:da:ca:17:08:28:
c6:ce:47:bd:0d:92:9e:e2:e7:d3:ac:87:0a:95:32:e5:53:e8:
4f:06:a9:cc:cb:a7:03:f8:a4:54:9f:b8:f3:98:f3:ca:56:46:
a3:f3:d1:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 22:06:59 2024 by rpki-client on console-ams.rpki-client.org