Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft
File: hFNK68PtnHkETCI8iyXgEdq_L98.mft (raw, json)
Hash identifier: 5RQ41YMzwHQ4yC8rvKUxO9r417p2qoyOl2YN1pLhano=
Subject key identifier: 29:DF:CD:D5:50:E7:BB:96:2D:C6:50:5E:A8:59:20:7A:E5:94:9A:29
Authority key identifier: 84:53:4A:EB:C3:ED:9C:79:04:4C:22:3C:8B:25:E0:11:DA:BF:2F:DF
Certificate issuer: /CN=84534aebc3ed9c79044c223c8b25e011dabf2fdf
Certificate serial: 018F882423068138AEF115B21BA167ABDA6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFNK68PtnHkETCI8iyXgEdq_L98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft
Manifest number: 025D
Signing time: Fri 17 May 2024 20:00:20 +0000
Manifest this update: Fri 17 May 2024 20:00:20 +0000
Manifest next update: Sat 18 May 2024 20:00:20 +0000
Files and hashes: 1: hFNK68PtnHkETCI8iyXgEdq_L98.crl (hash: yg0xKjtdj/osx2qQhthaJQ7ZCkmm7jBKU3dRbuMUJ+g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft
rsync://rpki.ripe.net/repository/DEFAULT/hFNK68PtnHkETCI8iyXgEdq_L98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:24:23:06:81:38:ae:f1:15:b2:1b:a1:67:ab:da:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84534aebc3ed9c79044c223c8b25e011dabf2fdf
Validity
Not Before: May 17 20:00:20 2024 GMT
Not After : May 18 20:00:20 2024 GMT
Subject: CN=29dfcdd550e7bb962dc6505ea859207ae5949a29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:58:e8:ec:d0:d3:2a:e5:6a:7c:ab:c7:d9:e4:
7c:fc:82:a0:05:8f:19:3b:83:fc:10:cd:bc:99:83:
17:c0:75:a4:1a:c7:73:c5:e1:57:b4:30:ef:d9:77:
e0:57:ee:4f:0a:0f:36:ab:0c:3a:19:e4:93:86:32:
1f:6a:fc:45:f0:0c:c2:f5:d1:e7:89:6f:f2:61:68:
1b:22:21:37:e4:ba:d8:c0:a5:c4:2c:72:77:3c:5f:
ef:8d:c2:35:5e:64:bb:d2:f3:79:44:5a:dc:e4:92:
3d:c8:15:ba:01:7e:63:f4:77:ee:de:bd:9d:a6:e1:
73:41:d3:52:77:c6:82:b6:2d:5c:42:1c:a0:e6:bc:
68:ce:28:16:1e:d1:ac:61:c1:48:00:16:77:04:08:
6c:2f:4c:3c:f4:36:44:5e:4f:0c:96:3c:1f:2e:7d:
10:22:36:9f:c7:b5:21:ab:39:5c:23:0f:44:8c:3f:
c1:e0:fc:9e:a2:1a:13:fc:ba:83:ff:30:51:b9:12:
08:24:d5:e5:60:1b:a7:b7:b2:c6:e7:36:12:9a:86:
10:ff:5a:99:90:0a:06:66:f6:4b:fe:c1:6d:7e:df:
5c:27:c5:4d:c5:41:b3:f5:46:a5:d6:3e:a9:9d:22:
77:76:e5:98:dd:f8:a7:5b:ca:a0:5a:1f:6c:7a:99:
69:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:DF:CD:D5:50:E7:BB:96:2D:C6:50:5E:A8:59:20:7A:E5:94:9A:29
X509v3 Authority Key Identifier:
keyid:84:53:4A:EB:C3:ED:9C:79:04:4C:22:3C:8B:25:E0:11:DA:BF:2F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFNK68PtnHkETCI8iyXgEdq_L98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:64:f6:84:f0:c8:e0:33:6b:f5:b6:2b:8d:4a:44:17:dd:51:
49:0f:cb:c2:23:f3:2b:5a:a1:f4:11:71:86:44:9f:9f:59:84:
33:6f:6e:0a:27:77:db:f1:10:d4:c9:2c:4a:da:2f:a8:50:b8:
39:f2:fa:5f:62:6f:18:e4:53:8f:44:82:e8:57:ba:80:3d:ba:
af:0e:cc:80:8a:20:16:bf:99:a6:2f:95:8b:3e:45:43:1b:e4:
53:4b:bb:87:bf:99:45:99:aa:ee:be:be:c4:5e:fd:0e:7e:a4:
0a:f9:91:ca:dd:20:64:67:be:27:45:d6:33:e7:ef:3c:35:49:
fe:c5:df:a5:4a:cd:79:3e:0d:61:bf:4a:8b:b0:21:05:73:f1:
a3:7f:78:54:d8:b8:d1:9e:06:fd:6c:1d:46:94:57:e5:ac:6b:
cb:6a:11:0d:73:78:03:28:6c:e0:42:29:ff:3c:d2:3f:a4:c7:
94:8d:31:84:68:c6:d7:3a:12:bb:8f:24:f8:0e:ea:d7:7d:ed:
96:ed:75:92:1e:1a:d0:78:8f:5e:9e:aa:62:64:b6:b6:48:a2:
ba:f6:89:58:fe:c8:c4:79:84:ec:91:82:a1:00:ac:1a:14:66:
ba:f3:5a:59:c8:89:cc:bb:89:e5:d5:8a:44:b2:f3:1e:02:28:
1d:65:21:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 00:29:15 2024 by rpki-client on console-fra.rpki-client.org