Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/7d82a1-4e1b-46d7-83bb-211b62485666/1/o2ApslnXf2dY38twYITlGk7WP-0.mft
File: o2ApslnXf2dY38twYITlGk7WP-0.mft (raw, json)
Hash identifier: hjonf4B7xL8ddcCtl+O32N2Li3IyetDffRUP3QasbkA=
Subject key identifier: EE:19:BA:26:4E:A4:5F:B2:18:B4:B7:6B:66:36:E8:92:AA:61:33:2B
Authority key identifier: A3:60:29:B2:59:D7:7F:67:58:DF:CB:70:60:84:E5:1A:4E:D6:3F:ED
Certificate issuer: /CN=a36029b259d77f6758dfcb706084e51a4ed63fed
Certificate serial: 018F874946B3A47327D06FEF889E1ACD0970
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2ApslnXf2dY38twYITlGk7WP-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/7d82a1-4e1b-46d7-83bb-211b62485666/1/o2ApslnXf2dY38twYITlGk7WP-0.mft
Manifest number: 04E7
Signing time: Fri 17 May 2024 16:01:17 +0000
Manifest this update: Fri 17 May 2024 16:01:17 +0000
Manifest next update: Sat 18 May 2024 16:01:17 +0000
Files and hashes: 1: o2ApslnXf2dY38twYITlGk7WP-0.crl (hash: Pj7/agh2emQ8cAW+DBGIfu8MX0FqFsZXK17hDVu0Rkg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/7d82a1-4e1b-46d7-83bb-211b62485666/1/o2ApslnXf2dY38twYITlGk7WP-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/7d82a1-4e1b-46d7-83bb-211b62485666/1/o2ApslnXf2dY38twYITlGk7WP-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2ApslnXf2dY38twYITlGk7WP-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:46:b3:a4:73:27:d0:6f:ef:88:9e:1a:cd:09:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a36029b259d77f6758dfcb706084e51a4ed63fed
Validity
Not Before: May 17 16:01:17 2024 GMT
Not After : May 18 16:01:17 2024 GMT
Subject: CN=ee19ba264ea45fb218b4b76b6636e892aa61332b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c1:0f:3d:72:44:f5:1c:08:d6:a9:22:6e:a3:
39:65:fb:8f:88:0b:32:25:69:dc:53:d3:40:eb:14:
a5:d1:8a:0f:52:50:a4:45:2e:6e:76:91:de:dd:fe:
b4:07:b2:e4:c1:9d:ed:c5:fa:7e:18:fa:17:17:ac:
be:a4:7d:e7:8c:a4:a4:ae:bc:e7:56:49:99:46:4d:
1b:e4:eb:1a:30:ea:5c:3f:43:f4:16:ba:39:93:51:
e3:e7:b1:f3:51:e0:08:54:eb:18:bf:fe:22:a1:64:
20:de:6d:40:71:d6:c8:d5:8d:25:ba:7c:d1:1a:f8:
98:de:68:c9:b9:9b:2e:53:07:eb:37:ee:c6:54:6d:
4f:ed:0b:43:a0:0f:2a:98:80:ef:66:52:4e:9f:e4:
e8:03:a7:1b:3d:0c:64:98:c3:5d:e9:ff:89:3a:9e:
28:87:2c:2f:20:53:b9:7a:38:e0:c9:95:c8:6d:39:
3f:c5:7a:14:24:9e:68:c1:9e:33:85:8d:24:cb:07:
a9:81:77:0d:48:2a:02:41:17:37:c5:7f:88:9d:95:
4b:e0:c8:c2:8c:5f:9a:fe:21:39:09:76:5d:ba:52:
18:38:bc:43:df:82:bf:2a:d1:d6:31:3a:de:3e:e7:
7e:7d:2c:86:5f:9a:7f:f2:49:ff:51:b0:24:62:b3:
7b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:19:BA:26:4E:A4:5F:B2:18:B4:B7:6B:66:36:E8:92:AA:61:33:2B
X509v3 Authority Key Identifier:
keyid:A3:60:29:B2:59:D7:7F:67:58:DF:CB:70:60:84:E5:1A:4E:D6:3F:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2ApslnXf2dY38twYITlGk7WP-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/7d82a1-4e1b-46d7-83bb-211b62485666/1/o2ApslnXf2dY38twYITlGk7WP-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/7d82a1-4e1b-46d7-83bb-211b62485666/1/o2ApslnXf2dY38twYITlGk7WP-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:89:11:65:ae:3c:69:1a:fe:36:fd:d9:dd:1e:6d:39:99:74:
93:94:84:a0:f0:f8:ad:d0:45:e1:97:48:14:6c:b6:c2:fe:cc:
65:ea:26:78:56:40:a1:f6:20:4d:02:9d:f6:56:6d:47:2b:29:
63:04:5d:bf:7e:6e:fa:d5:c9:7f:7f:52:52:1e:9d:cb:65:bb:
8c:e8:d5:e9:a7:f8:c3:5d:68:6a:a3:db:50:33:69:ef:56:7c:
11:87:89:df:ea:68:bb:56:54:67:44:77:5c:f9:1f:cc:09:1c:
bc:c0:3b:82:21:fc:74:4a:2d:2a:41:28:99:df:d7:4f:e0:0d:
0c:30:fc:ae:19:10:d1:52:a3:d8:94:a5:cc:8b:f7:30:34:d7:
01:dd:21:ae:0a:b8:00:96:0f:2e:9b:d7:d0:75:5c:6c:67:f3:
c3:a7:66:c1:85:71:03:d5:5a:b6:60:40:31:15:d0:d9:30:00:
25:5d:e8:8c:70:48:97:1d:c1:8f:55:c0:5f:b6:00:d8:46:50:
e3:13:67:fb:c8:c7:56:8e:87:f6:66:d2:b0:7c:f8:02:46:03:
a3:dc:12:43:3a:1e:b2:e6:43:01:21:63:b3:c2:5d:08:43:7d:
c5:1c:1a:9f:72:f0:3b:52:37:a6:1a:d9:5d:2e:1c:ff:e9:05:
18:26:c7:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 02:45:08 2024 by rpki-client on console-fra.rpki-client.org