Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.mft
File: TQ8lfzOc-54nVLbMJDZPDxKQWNs.mft (raw, json)
Hash identifier: MFe2CsssCw3ieBdOBKqb+xjquCzKwCq8DE3Tw/zkXNU=
Subject key identifier: 2C:1D:F0:B2:62:10:53:08:90:35:99:0C:7A:CA:72:A9:EF:A6:8F:78
Authority key identifier: 4D:0F:25:7F:33:9C:FB:9E:27:54:B6:CC:24:36:4F:0F:12:90:58:DB
Certificate issuer: /CN=4d0f257f339cfb9e2754b6cc24364f0f129058db
Certificate serial: 018F87B67367029472A1F9AB5CAF3928BA76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQ8lfzOc-54nVLbMJDZPDxKQWNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.mft
Manifest number: 0FB1
Signing time: Fri 17 May 2024 18:00:32 +0000
Manifest this update: Fri 17 May 2024 18:00:32 +0000
Manifest next update: Sat 18 May 2024 18:00:32 +0000
Files and hashes: 1: TQ8lfzOc-54nVLbMJDZPDxKQWNs.crl (hash: aRfoWLtgBAxwnWjS9RitSuczlPcEdIC7xH6179x9Mvs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.mft
rsync://rpki.ripe.net/repository/DEFAULT/TQ8lfzOc-54nVLbMJDZPDxKQWNs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:b6:73:67:02:94:72:a1:f9:ab:5c:af:39:28:ba:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d0f257f339cfb9e2754b6cc24364f0f129058db
Validity
Not Before: May 17 18:00:32 2024 GMT
Not After : May 18 18:00:32 2024 GMT
Subject: CN=2c1df0b2621053089035990c7aca72a9efa68f78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:c8:79:24:ad:ef:cd:d5:a5:6e:1d:09:35:ce:
16:95:7e:fe:3e:bf:10:5f:69:c0:71:7a:99:6d:25:
3f:0c:d7:d1:dc:d5:bb:98:08:2d:1f:cf:a5:0e:35:
95:51:9a:fd:53:c4:f8:ac:ab:0f:48:56:5c:d1:19:
39:8f:3b:3f:02:6e:33:0a:b5:27:e7:9b:27:4a:b6:
1e:60:35:18:43:f8:33:84:92:01:15:30:1f:a2:5a:
c1:44:9d:13:da:c7:dc:99:d5:76:52:c1:a3:03:83:
f7:15:da:06:52:b4:ed:6e:2d:f9:76:ed:4b:2b:60:
d7:df:17:26:85:85:c0:f6:44:a4:b5:6a:b9:1f:a6:
b7:5a:b5:1e:64:03:5f:bb:11:c1:12:40:ef:cd:b1:
99:db:1d:f0:32:7c:31:0a:b2:95:19:87:6c:ed:c1:
88:fd:b4:98:51:4b:81:a4:87:1a:52:09:38:6f:6e:
f6:9b:0a:e8:a3:84:c4:25:0b:a3:3e:54:72:70:7b:
2c:57:9c:31:a5:7a:67:99:60:69:45:30:c3:90:48:
84:b1:37:4d:7f:f3:56:be:ba:59:b6:94:67:3c:53:
fe:d9:32:6f:63:a8:8c:2e:16:fa:6a:e1:b5:c9:2f:
93:77:84:e0:13:cd:f2:0c:32:07:be:e9:c8:7e:29:
4a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:1D:F0:B2:62:10:53:08:90:35:99:0C:7A:CA:72:A9:EF:A6:8F:78
X509v3 Authority Key Identifier:
keyid:4D:0F:25:7F:33:9C:FB:9E:27:54:B6:CC:24:36:4F:0F:12:90:58:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQ8lfzOc-54nVLbMJDZPDxKQWNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:73:a4:4e:78:e7:88:07:dc:79:c4:ac:f5:4c:f6:ee:05:79:
76:92:1c:d7:9c:00:08:7d:de:40:82:8a:0f:8f:fb:7d:3a:68:
27:ff:9f:96:b9:7f:0a:2f:c5:3f:ac:97:92:20:f4:86:bb:80:
43:57:44:ee:50:11:63:da:81:5a:91:0e:6b:38:f9:1f:6e:1e:
34:b1:f5:47:b7:24:82:64:16:92:3a:97:13:fb:2c:20:d6:51:
b7:6d:c5:f1:f1:39:cd:60:a0:ac:d2:a8:0c:55:aa:fb:67:57:
91:65:bf:29:91:02:36:04:f8:d1:5a:ee:14:1d:a0:f8:0a:40:
f7:6c:91:e9:18:93:75:3c:13:a8:ae:87:46:90:a7:9a:1d:86:
04:d3:69:79:63:12:84:ec:ea:c0:78:eb:3c:4b:8e:00:93:2f:
18:be:be:5d:4f:83:ad:59:cc:d1:fc:c8:83:54:cb:8c:19:f9:
e2:a8:bb:df:31:0e:34:26:a1:80:d8:ec:9f:d5:cb:2e:65:77:
d1:26:c9:01:30:8f:0b:d1:27:74:9e:c0:5c:0f:d6:5f:8f:a1:
94:39:74:2b:83:3b:59:1f:51:be:f9:df:c7:a5:b7:2b:8e:c4:
bb:cd:6c:f7:ac:a1:0e:78:36:e0:aa:94:cc:82:13:52:1b:c4:
d6:47:98:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 20:13:32 2024 by rpki-client on console-ams.rpki-client.org