Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/fbbe41-15b7-4f6e-9e07-8bcce303b919/1/DZHf1FaDQonB_QOg_vG1Kl79HZE.mft
File: DZHf1FaDQonB_QOg_vG1Kl79HZE.mft (raw, json)
Hash identifier: g9muKVpyrAjt1ywwq+pSDTlChlgpZnXJqSlWVknAiKo=
Subject key identifier: C9:F1:88:A4:9A:7E:D3:17:42:7F:46:87:0F:05:D0:40:5A:0D:C0:27
Authority key identifier: 0D:91:DF:D4:56:83:42:89:C1:FD:03:A0:FE:F1:B5:2A:5E:FD:1D:91
Certificate issuer: /CN=0d91dfd456834289c1fd03a0fef1b52a5efd1d91
Certificate serial: 018F4C46D4BD4784EE9DC86A06D155C99EB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DZHf1FaDQonB_QOg_vG1Kl79HZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/fbbe41-15b7-4f6e-9e07-8bcce303b919/1/DZHf1FaDQonB_QOg_vG1Kl79HZE.mft
Manifest number: 09C1
Signing time: Mon 06 May 2024 05:01:01 +0000
Manifest this update: Mon 06 May 2024 05:01:01 +0000
Manifest next update: Tue 07 May 2024 05:01:01 +0000
Files and hashes: 1: DZHf1FaDQonB_QOg_vG1Kl79HZE.crl (hash: C/OgtzwsBTxlUov7fClC/2M+2StcDtyhEnEUX6rPpnk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/fbbe41-15b7-4f6e-9e07-8bcce303b919/1/DZHf1FaDQonB_QOg_vG1Kl79HZE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/fbbe41-15b7-4f6e-9e07-8bcce303b919/1/DZHf1FaDQonB_QOg_vG1Kl79HZE.mft
rsync://rpki.ripe.net/repository/DEFAULT/DZHf1FaDQonB_QOg_vG1Kl79HZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4c:46:d4:bd:47:84:ee:9d:c8:6a:06:d1:55:c9:9e:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d91dfd456834289c1fd03a0fef1b52a5efd1d91
Validity
Not Before: May 6 05:01:01 2024 GMT
Not After : May 7 05:01:01 2024 GMT
Subject: CN=c9f188a49a7ed317427f46870f05d0405a0dc027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a1:5f:61:bb:ae:92:ce:11:28:c5:30:60:16:
4e:41:9a:47:1f:39:c3:f1:e9:56:ba:1e:18:3e:0c:
cb:18:ed:86:f1:d0:0f:44:67:73:43:79:20:8d:07:
09:8c:33:8d:9b:4e:8b:81:de:53:17:2b:a2:21:6d:
8b:3d:d3:47:93:ed:d3:77:f7:2f:5a:0b:ab:13:d9:
af:4a:34:ad:6e:f0:a1:82:d3:0c:7b:99:a3:5c:c3:
b7:5e:02:69:24:0b:67:0e:3a:b9:3f:e1:b2:d0:e1:
8b:08:1f:26:a5:a1:d2:98:2b:18:11:71:fe:9d:c2:
cb:6f:be:cf:f6:60:22:97:18:be:43:37:86:98:e6:
fd:23:51:55:7f:01:61:69:50:be:b5:29:be:4f:e0:
9b:a2:d7:88:67:ee:80:87:8a:de:4c:fd:0a:59:05:
21:74:be:f8:26:14:c3:ee:8f:68:21:3a:eb:bc:5f:
1c:a7:80:1e:de:1d:5a:00:b5:24:f6:d4:c1:d7:21:
a3:2a:ad:82:b6:59:db:9d:fd:e7:2e:48:54:c8:78:
cb:35:d2:0f:44:27:3a:dc:de:a9:37:42:2c:78:bb:
59:fb:23:7c:e7:9f:e1:4d:92:c0:22:ad:58:2f:f9:
a7:6d:f6:86:72:cb:dd:7d:98:01:b7:7e:af:65:e2:
f5:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:F1:88:A4:9A:7E:D3:17:42:7F:46:87:0F:05:D0:40:5A:0D:C0:27
X509v3 Authority Key Identifier:
keyid:0D:91:DF:D4:56:83:42:89:C1:FD:03:A0:FE:F1:B5:2A:5E:FD:1D:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DZHf1FaDQonB_QOg_vG1Kl79HZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/fbbe41-15b7-4f6e-9e07-8bcce303b919/1/DZHf1FaDQonB_QOg_vG1Kl79HZE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/fbbe41-15b7-4f6e-9e07-8bcce303b919/1/DZHf1FaDQonB_QOg_vG1Kl79HZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:a9:28:d7:a4:e4:b0:d8:f7:ea:e3:d1:6d:5c:e9:69:a0:58:
ff:75:41:56:d1:ce:31:55:1d:a7:dd:f0:c3:ea:3a:7f:98:97:
1c:94:a1:54:d9:22:74:65:51:5d:95:ca:04:e0:2f:60:72:b8:
95:70:a2:3b:d8:ba:b5:60:ba:0e:64:1c:22:1f:37:73:0d:6a:
c5:14:c1:1c:7c:f8:a4:f0:0c:72:41:34:aa:a0:ad:90:24:b5:
59:99:9c:52:79:02:51:02:ef:0f:f6:0d:2f:06:86:7c:ec:3c:
ff:d3:cd:5d:90:39:ff:66:44:8d:80:ca:23:70:80:9b:65:c2:
ca:40:88:a4:35:65:c6:81:e0:39:86:1e:bf:0d:fb:18:b5:39:
24:9e:05:1f:a1:64:b7:79:0a:6e:8a:0d:d0:1f:0d:61:28:e9:
13:60:90:03:1e:9a:fc:50:0e:e1:e2:82:92:e3:aa:76:48:c5:
10:88:c3:a0:f0:28:40:87:df:3e:e1:ba:0a:22:d5:5d:e2:33:
5d:31:2e:ef:47:d2:30:69:63:33:7c:2a:4a:23:ae:79:c7:42:
6d:09:64:b1:24:cb:9c:a9:3f:cb:5b:61:69:6c:ce:80:b4:5c:
7f:69:eb:d2:20:28:18:31:8c:fe:a1:5d:22:ce:04:18:89:67:
52:ff:42:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:03:20 2024 by rpki-client on console-fra.rpki-client.org