Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
File: BkwamGxZM6O5EIToo_8IBm05jhk.mft (raw, json)
Hash identifier: Z5Q/KQ0L7zWfXK+9JdWb1a0Zm7+O3stM+UyxujOo7J8=
Subject key identifier: 6F:4D:C0:76:70:BD:F4:FD:19:F6:9A:37:8B:EA:80:31:12:D6:A7:CF
Authority key identifier: 06:4C:1A:98:6C:59:33:A3:B9:10:84:E8:A3:FF:08:06:6D:39:8E:19
Certificate issuer: /CN=064c1a986c5933a3b91084e8a3ff08066d398e19
Certificate serial: 018F4B6C454A25543984F43BCC419513969D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
Manifest number: 0569
Signing time: Mon 06 May 2024 01:02:17 +0000
Manifest this update: Mon 06 May 2024 01:02:17 +0000
Manifest next update: Tue 07 May 2024 01:02:17 +0000
Files and hashes: 1: BkwamGxZM6O5EIToo_8IBm05jhk.crl (hash: zIsPtPaq05ExqNL6S0w59lAP9vLprTcar29JxS+uQgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 01:02:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4b:6c:45:4a:25:54:39:84:f4:3b:cc:41:95:13:96:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=064c1a986c5933a3b91084e8a3ff08066d398e19
Validity
Not Before: May 6 01:02:17 2024 GMT
Not After : May 7 01:02:17 2024 GMT
Subject: CN=6f4dc07670bdf4fd19f69a378bea803112d6a7cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:44:8c:e1:f0:e8:4e:ee:b1:3b:8c:0a:94:23:
1c:09:66:30:a7:36:d3:ee:d8:ad:cd:3d:06:05:17:
5f:35:61:1a:45:3f:b7:e2:f8:86:56:9f:ce:30:87:
d6:10:7b:6f:a3:1e:18:93:d3:63:c4:e6:b1:a9:0a:
a6:b0:db:77:10:4e:37:97:f7:3f:a3:02:07:30:3f:
97:21:8e:7c:96:f8:1f:f1:20:3a:44:96:f0:4c:2f:
cd:75:73:72:90:bd:b0:fd:61:0c:fd:70:73:b3:1e:
e7:fb:5a:ff:c4:07:1a:2e:ac:e2:c4:f5:93:99:f5:
43:8d:fb:01:16:4a:6d:89:c6:bc:21:97:4c:3e:9b:
46:0f:dc:9b:91:03:f5:94:d6:76:a6:f5:92:58:f8:
6b:e6:8f:43:1e:36:7a:cf:47:0a:10:20:7b:05:af:
06:29:c7:da:a1:69:11:ec:f0:d0:74:d6:db:e4:d6:
07:e8:36:16:3c:77:d1:0f:38:b1:35:66:8a:09:9c:
73:b0:a0:6b:8e:7a:8d:58:aa:87:2a:9d:c4:72:34:
d8:62:d9:6a:bf:d6:68:87:27:f8:c8:05:fd:de:da:
0d:d8:09:e8:3e:f1:a2:40:52:dc:2c:c8:22:af:a3:
a9:25:f9:bc:7c:e5:d8:ef:62:7d:21:58:e5:c1:f4:
3d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:4D:C0:76:70:BD:F4:FD:19:F6:9A:37:8B:EA:80:31:12:D6:A7:CF
X509v3 Authority Key Identifier:
keyid:06:4C:1A:98:6C:59:33:A3:B9:10:84:E8:A3:FF:08:06:6D:39:8E:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:ea:07:2b:95:d1:69:8f:00:5c:b9:72:5c:d6:6a:88:5b:f1:
ce:4c:81:de:5f:d4:bf:d6:ca:34:b8:5b:0f:84:da:85:c2:42:
30:23:00:cc:0c:47:5f:e1:53:8e:ae:75:e0:b5:5d:6d:dd:97:
d9:5f:5b:5f:72:bd:03:81:1b:d3:0e:23:b8:c9:d5:59:93:5a:
22:2f:e3:dd:3d:2f:6d:3d:bf:cd:8a:e7:4a:f7:c4:c2:d0:46:
fa:1a:78:ba:39:8e:50:91:58:86:99:15:40:84:65:db:0b:f6:
d1:02:f0:5f:de:31:4c:29:f9:02:3e:2f:a4:b9:5f:ad:06:5c:
0a:7f:05:b1:f5:87:7b:cf:0b:e4:07:88:98:8b:c3:91:db:9b:
74:e7:b3:8f:70:f5:2a:db:aa:78:34:b5:3e:8c:60:0f:71:b7:
0b:2d:a4:ce:96:4a:5b:2c:47:e9:f2:4d:a0:d3:d5:d5:b9:37:
15:da:be:eb:f5:a6:cc:60:75:96:73:fd:40:b2:38:30:1c:26:
6c:91:1f:c5:5e:53:c5:08:76:a3:df:a5:90:21:ab:c7:2c:00:
0d:60:7d:9a:c7:0c:71:05:fd:fb:27:1f:82:7d:cf:b2:06:89:
5c:a1:fc:03:47:89:f6:d3:42:7b:e7:d8:ec:1d:bf:1b:69:01:
a3:0d:98:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 11:28:37 2024 by rpki-client on console-ams.rpki-client.org