Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
File: yKQR5q7CPK13xDcrTXsLH8gtXcA.mft (raw, json)
Hash identifier: 02IVFdJD6sDyDJdsXdohp81sQd9zb9C5CsZIfFuxzZI=
Subject key identifier: 1D:9C:11:D5:93:1E:50:E0:1C:00:F2:B5:BE:C0:37:DF:A8:B7:97:71
Authority key identifier: C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0
Certificate issuer: /CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0
Certificate serial: 018F87ED979B36ED4656F1E0F2AD16AA5730
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
Manifest number: 1176
Signing time: Fri 17 May 2024 19:00:46 +0000
Manifest this update: Fri 17 May 2024 19:00:46 +0000
Manifest next update: Sat 18 May 2024 19:00:46 +0000
Files and hashes: 1: yKQR5q7CPK13xDcrTXsLH8gtXcA.crl (hash: JJznrcFMVDM9X5VTG889Oe43VGa2+p5HtYEJdtWFOEE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:ed:97:9b:36:ed:46:56:f1:e0:f2:ad:16:aa:57:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0
Validity
Not Before: May 17 19:00:46 2024 GMT
Not After : May 18 19:00:46 2024 GMT
Subject: CN=1d9c11d5931e50e01c00f2b5bec037dfa8b79771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:91:6f:b7:98:ed:8e:10:e1:71:b1:57:79:e4:
87:88:99:77:c1:9d:f8:1d:72:a9:bb:aa:25:19:a3:
0c:cf:6a:5e:95:d5:38:e9:f0:c8:f0:1d:ae:70:24:
69:6c:f4:42:87:ed:39:fe:7a:1b:02:9b:15:fa:56:
db:b1:e9:95:3b:f3:c8:eb:ef:b7:49:9c:ba:d6:e8:
37:d9:a9:2b:ee:32:0d:b9:64:5e:b4:d7:af:61:29:
ab:db:52:d5:36:8f:54:a9:6d:0f:6f:b6:d8:0d:2a:
06:1e:c8:0a:68:1c:cc:9b:59:db:f6:54:c5:d1:19:
e8:02:ec:0c:91:c9:e3:42:f7:b5:21:10:91:eb:0e:
e0:13:b8:ce:81:14:83:ea:aa:08:fa:c1:d9:10:df:
22:29:96:d7:28:a3:f9:91:19:2a:3f:7d:8f:e5:b3:
cd:92:8d:dd:bf:df:45:38:89:bd:db:c6:4e:dc:37:
27:96:4b:88:aa:6d:c8:59:27:68:bf:74:e4:60:81:
c4:76:4b:75:ef:65:22:97:60:25:4e:80:ca:5b:97:
3f:b3:0c:f8:6d:0b:7f:cc:bd:1f:85:ec:d5:05:ed:
fb:06:21:be:7e:48:51:85:2c:8c:d2:5a:1f:65:b3:
45:35:30:9b:77:43:7a:53:25:83:b9:96:89:a5:a1:
e9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:9C:11:D5:93:1E:50:E0:1C:00:F2:B5:BE:C0:37:DF:A8:B7:97:71
X509v3 Authority Key Identifier:
keyid:C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:66:d7:63:49:12:9f:78:26:17:78:4a:0f:e4:dc:19:98:c9:
cb:ea:6e:20:96:74:cf:fb:49:ed:02:d4:5d:34:42:da:e6:15:
08:ae:7d:f2:92:60:0e:89:93:bd:a0:ad:8e:d5:dd:fb:26:e0:
5e:82:8c:e9:33:5e:99:6d:1f:63:52:79:92:e4:68:bd:bb:ee:
40:ae:a5:b9:62:79:c3:69:87:83:31:e4:3b:a4:32:22:31:c3:
75:89:ce:7a:a8:fa:31:a2:c0:9b:94:ac:99:24:5d:3b:18:03:
6a:7c:6d:0c:73:fd:a8:46:13:93:a2:72:9b:bc:c2:cc:bb:31:
29:65:d3:94:ac:74:c5:16:eb:1b:14:80:05:64:f3:e8:2d:94:
e8:e1:82:41:34:3a:19:db:5f:bd:5b:73:85:2c:5a:8b:3c:42:
b2:c8:60:f8:0a:e3:97:e9:ef:ed:b3:52:84:27:a7:fd:96:4b:
df:4a:a5:df:6d:b8:aa:30:d0:79:aa:c8:a7:51:2c:3b:dd:57:
2a:b4:aa:33:56:4a:4e:e7:2a:ae:ab:6e:3c:52:f6:55:5d:e2:
9b:af:67:c0:15:63:48:e7:19:24:84:fe:e6:43:d2:89:89:58:
78:64:cb:04:17:80:58:fb:14:36:85:0b:79:c9:52:79:15:ae:
12:8f:6c:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 00:30:46 2024 by rpki-client on console-fra.rpki-client.org