Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6ef54c-b034-49e6-8da4-c5ad153c2d46/1/7HDF2GfeIA8BSGsaiAqUuEldciA.mft
File: 7HDF2GfeIA8BSGsaiAqUuEldciA.mft (raw, json)
Hash identifier: O0N8RMVNPELd6s3oAFlSfIaNyVzQXAOwYGIf6+cIuqc=
Subject key identifier: F1:AA:B9:F6:DE:5D:A6:B2:65:01:CF:B2:9F:29:8D:64:3D:5B:65:3D
Authority key identifier: EC:70:C5:D8:67:DE:20:0F:01:48:6B:1A:88:0A:94:B8:49:5D:72:20
Certificate issuer: /CN=ec70c5d867de200f01486b1a880a94b8495d7220
Certificate serial: 018F3FD4D519DE7904962F9A7D2194AA0968
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7HDF2GfeIA8BSGsaiAqUuEldciA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/6ef54c-b034-49e6-8da4-c5ad153c2d46/1/7HDF2GfeIA8BSGsaiAqUuEldciA.mft
Manifest number: 0A15
Signing time: Fri 03 May 2024 19:01:03 +0000
Manifest this update: Fri 03 May 2024 19:01:03 +0000
Manifest next update: Sat 04 May 2024 19:01:03 +0000
Files and hashes: 1: 7HDF2GfeIA8BSGsaiAqUuEldciA.crl (hash: AUM5mDyaJyw5nfVEa9wSX6vfwAFTgM+n5IihiJ4zzmg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/6ef54c-b034-49e6-8da4-c5ad153c2d46/1/7HDF2GfeIA8BSGsaiAqUuEldciA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/6ef54c-b034-49e6-8da4-c5ad153c2d46/1/7HDF2GfeIA8BSGsaiAqUuEldciA.mft
rsync://rpki.ripe.net/repository/DEFAULT/7HDF2GfeIA8BSGsaiAqUuEldciA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 19:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3f:d4:d5:19:de:79:04:96:2f:9a:7d:21:94:aa:09:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec70c5d867de200f01486b1a880a94b8495d7220
Validity
Not Before: May 3 19:01:03 2024 GMT
Not After : May 4 19:01:03 2024 GMT
Subject: CN=f1aab9f6de5da6b26501cfb29f298d643d5b653d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:50:af:71:18:02:ce:30:45:44:ee:7a:04:28:
26:c1:0d:c7:a1:cf:b8:75:4b:18:b1:e6:70:20:6b:
27:ba:f4:a7:fe:57:89:b9:19:cf:e3:b5:ef:a4:c0:
16:a4:aa:ff:a3:81:73:ad:76:58:f1:5f:b4:5e:b9:
34:8e:21:b6:f2:07:a6:f7:e1:69:e7:b3:4c:a1:f7:
8a:8e:e9:98:d0:56:cc:8c:6a:5c:22:c1:82:48:22:
dd:7b:e5:89:68:b9:5d:3c:a2:92:ee:b2:f0:1c:96:
ff:99:97:d2:e2:f6:a3:72:e9:1d:6f:79:07:0e:a9:
35:09:2f:93:6e:1f:72:7f:d6:11:b4:aa:c3:93:2d:
6b:dc:75:0c:64:39:3d:38:9e:60:78:e3:31:38:7f:
e5:23:2a:bf:3b:82:af:a6:ba:99:57:4e:fd:00:b1:
12:95:3f:2d:3a:26:2d:b0:55:6d:d8:8d:9e:e5:1e:
dc:ea:5f:c7:6a:0e:2a:19:a1:8f:e8:81:aa:b8:1b:
f8:a2:eb:6d:7d:8f:c2:3c:55:ca:25:75:49:30:c8:
60:7d:60:eb:81:6c:57:5e:99:22:0e:09:19:b9:73:
09:32:b7:5e:5e:29:16:8a:0b:0d:06:fd:e3:1c:dc:
ee:ff:ae:e6:66:80:27:0b:7a:0a:60:d3:12:f7:a6:
75:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:AA:B9:F6:DE:5D:A6:B2:65:01:CF:B2:9F:29:8D:64:3D:5B:65:3D
X509v3 Authority Key Identifier:
keyid:EC:70:C5:D8:67:DE:20:0F:01:48:6B:1A:88:0A:94:B8:49:5D:72:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7HDF2GfeIA8BSGsaiAqUuEldciA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6ef54c-b034-49e6-8da4-c5ad153c2d46/1/7HDF2GfeIA8BSGsaiAqUuEldciA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6ef54c-b034-49e6-8da4-c5ad153c2d46/1/7HDF2GfeIA8BSGsaiAqUuEldciA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:88:65:60:54:9e:ee:b7:94:e8:39:d1:7d:7d:3c:0a:4f:97:
d4:be:b0:10:a2:f2:12:a3:18:de:b2:ba:6d:8d:b4:b3:39:9d:
14:82:90:5f:93:5c:60:43:f5:c3:0c:53:3f:10:b4:d1:d6:c6:
e0:e5:a6:b3:a6:cf:82:ce:36:6f:b1:8c:2d:d7:ba:e2:0c:1e:
14:fc:bb:83:be:3a:83:a3:8a:c4:a4:f8:a8:88:03:cf:ee:ff:
3c:e9:3a:98:97:a0:bb:df:08:97:ac:6a:7b:76:b4:51:6b:70:
7e:18:17:7a:5b:e0:c5:7a:dd:71:f7:e3:04:a6:bb:38:86:1d:
c5:9f:4b:1e:ff:0b:e1:36:24:f3:9f:9b:da:60:15:56:c8:c5:
86:30:9f:5e:28:e8:83:4f:b0:2e:99:d4:21:91:36:64:1d:f7:
02:e4:83:d5:51:73:76:f9:32:89:be:60:98:34:d3:1e:9b:e1:
3d:b0:08:5c:b9:0b:4d:60:62:ba:13:58:be:d6:4a:1c:aa:d3:
7f:a4:4d:44:94:06:f0:e7:a6:81:e6:00:13:fd:c6:27:54:7e:
f1:5e:4f:06:bb:74:73:74:65:e5:b7:44:f6:97:49:c5:96:5f:
26:36:61:cc:74:70:07:88:34:d7:bc:63:cb:c3:d7:2e:89:2a:
2a:aa:34:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 01:30:12 2024 by rpki-client on console-fra.rpki-client.org