Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/4b5cf1-4320-44c2-9358-e07f959356a1/1/NkITiw7v_lajLMuqWNb_5u3D8p4.mft
File: NkITiw7v_lajLMuqWNb_5u3D8p4.mft (raw, json)
Hash identifier: 3B9xjuqxWiwlIFQHa00pyPgOA7LykEH79Kuc8e+Tq9c=
Subject key identifier: 3B:8F:CB:D7:D7:FF:AD:B6:8F:F8:AA:C6:EB:9B:F8:A0:C5:46:2C:34
Authority key identifier: 36:42:13:8B:0E:EF:FE:56:A3:2C:CB:AA:58:D6:FF:E6:ED:C3:F2:9E
Certificate issuer: /CN=3642138b0eeffe56a32ccbaa58d6ffe6edc3f29e
Certificate serial: 018F874AEEC6485FFF877113B009AADBC178
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NkITiw7v_lajLMuqWNb_5u3D8p4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/4b5cf1-4320-44c2-9358-e07f959356a1/1/NkITiw7v_lajLMuqWNb_5u3D8p4.mft
Manifest number: 7C
Signing time: Fri 17 May 2024 16:03:05 +0000
Manifest this update: Fri 17 May 2024 16:03:05 +0000
Manifest next update: Sat 18 May 2024 16:03:05 +0000
Files and hashes: 1: NkITiw7v_lajLMuqWNb_5u3D8p4.crl (hash: HEwsuzJyA2yCtG5e0LF0cBvqlKn9YMgVs4KLXmV7BE8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/4b5cf1-4320-44c2-9358-e07f959356a1/1/NkITiw7v_lajLMuqWNb_5u3D8p4.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/4b5cf1-4320-44c2-9358-e07f959356a1/1/NkITiw7v_lajLMuqWNb_5u3D8p4.mft
rsync://rpki.ripe.net/repository/DEFAULT/NkITiw7v_lajLMuqWNb_5u3D8p4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:03:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:ee:c6:48:5f:ff:87:71:13:b0:09:aa:db:c1:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3642138b0eeffe56a32ccbaa58d6ffe6edc3f29e
Validity
Not Before: May 17 16:03:05 2024 GMT
Not After : May 18 16:03:05 2024 GMT
Subject: CN=3b8fcbd7d7ffadb68ff8aac6eb9bf8a0c5462c34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:8b:23:a6:d5:05:e2:5c:05:d8:8c:d2:ba:cd:
3f:25:fb:76:7d:08:4d:59:4c:3a:3d:9e:bc:87:75:
0d:83:5f:23:10:67:bb:7b:6c:35:c0:7d:7b:23:53:
57:e9:35:2e:2b:fc:f3:36:73:45:de:41:d9:88:03:
f4:9a:c4:6c:48:11:13:de:3d:c9:1f:1f:91:88:15:
a0:4f:62:46:70:fb:f3:e8:63:be:14:b9:c9:65:6b:
d5:a4:c5:35:cf:9e:1e:80:3a:41:0a:03:26:a1:5d:
b7:79:f5:49:c4:e8:9b:28:a5:40:7c:16:28:8d:c1:
b6:c1:ec:ea:fa:67:45:08:1e:db:19:35:5a:6d:5e:
22:f9:47:7d:1b:a3:09:2f:73:90:15:db:14:82:ec:
11:3a:40:50:59:8a:33:6c:ba:25:58:42:b9:c1:7e:
4e:a8:d3:a8:96:ee:aa:d4:ce:15:6e:92:4d:80:15:
2f:b6:06:ca:50:80:e4:49:0b:28:ed:2b:b6:c7:f2:
e7:97:0d:78:ea:a8:df:0e:d9:25:78:cf:52:f9:8d:
1f:1e:91:63:61:50:c2:bb:aa:80:38:5c:20:04:f0:
a2:a9:13:cf:c0:4c:3c:df:48:dd:94:c3:cf:55:dc:
bf:ae:1d:56:c4:c9:ea:ba:48:5f:40:47:e7:7c:36:
10:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:8F:CB:D7:D7:FF:AD:B6:8F:F8:AA:C6:EB:9B:F8:A0:C5:46:2C:34
X509v3 Authority Key Identifier:
keyid:36:42:13:8B:0E:EF:FE:56:A3:2C:CB:AA:58:D6:FF:E6:ED:C3:F2:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NkITiw7v_lajLMuqWNb_5u3D8p4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/4b5cf1-4320-44c2-9358-e07f959356a1/1/NkITiw7v_lajLMuqWNb_5u3D8p4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/4b5cf1-4320-44c2-9358-e07f959356a1/1/NkITiw7v_lajLMuqWNb_5u3D8p4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:cc:76:11:fd:6e:35:cc:11:bd:55:50:7e:0b:c8:08:e8:a3:
ac:af:ec:b1:7c:ab:ca:c4:0a:d8:ac:1e:ee:3f:40:9e:21:47:
ac:39:7b:95:c2:bf:26:c3:b9:cb:c9:97:3c:bf:50:88:9c:87:
50:28:77:89:da:50:7a:7f:3b:e6:7a:2e:d1:22:b2:3d:2e:94:
1f:2f:dd:87:e8:5e:7d:32:3a:ae:e4:ee:57:a5:24:6d:5e:72:
a0:1f:5a:6c:0a:c7:d6:f8:b2:ac:fe:ec:75:e7:31:95:8b:8d:
0b:ef:c6:0c:16:2e:c9:a7:2b:62:38:49:83:96:f2:a4:5a:f5:
0b:d8:47:c6:a4:92:15:eb:67:bc:1b:41:48:3d:5f:8c:15:20:
81:da:19:6b:ab:1b:ed:9b:c1:1d:cd:25:86:e0:16:00:29:39:
3e:27:6b:e7:7f:f3:f0:a5:e0:e0:e8:84:9b:ab:75:3f:e1:7e:
0d:5d:28:42:dd:5f:c0:38:04:8b:40:4b:8f:49:9b:36:a6:46:
e4:f1:1b:b8:18:70:47:86:52:91:5a:56:da:8d:eb:01:e6:a8:
58:17:d8:5d:42:5d:37:76:f7:9b:fd:55:99:33:19:f4:45:e7:
a1:91:8c:dd:5c:46:6d:58:b1:3b:f0:af:7f:c6:04:57:3d:89:
82:eb:d2:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 00:34:52 2024 by rpki-client on console-fra.rpki-client.org