Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.mft
File: 3HO-OHr1UpcM9i9pUX4_PJwS0vY.mft (raw, json)
Hash identifier: 7gaFQjHMnom3quMKqJ+D0zuFokAeh67mbaI6L+cQEgo=
Subject key identifier: 34:78:A4:6B:A1:AE:84:CE:B3:66:B9:1A:E9:09:11:2E:DB:99:34:57
Authority key identifier: DC:73:BE:38:7A:F5:52:97:0C:F6:2F:69:51:7E:3F:3C:9C:12:D2:F6
Certificate issuer: /CN=dc73be387af552970cf62f69517e3f3c9c12d2f6
Certificate serial: 018F3AE5E63478EF604ABC6D2F682D8D88B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3HO-OHr1UpcM9i9pUX4_PJwS0vY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.mft
Manifest number: 0A52
Signing time: Thu 02 May 2024 20:01:36 +0000
Manifest this update: Thu 02 May 2024 20:01:36 +0000
Manifest next update: Fri 03 May 2024 20:01:36 +0000
Files and hashes: 1: 3HO-OHr1UpcM9i9pUX4_PJwS0vY.crl (hash: +/aeExv9SGmdYhxja3OC9guDc2GPZ0SnHrvctkE2Tb4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3HO-OHr1UpcM9i9pUX4_PJwS0vY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 16:59:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3a:e5:e6:34:78:ef:60:4a:bc:6d:2f:68:2d:8d:88:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc73be387af552970cf62f69517e3f3c9c12d2f6
Validity
Not Before: May 2 20:01:36 2024 GMT
Not After : May 3 20:01:36 2024 GMT
Subject: CN=3478a46ba1ae84ceb366b91ae909112edb993457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5f:c5:a0:ff:ff:0d:9d:4d:a9:2c:a6:60:33:
68:e6:2a:a3:43:a5:99:f7:ad:d5:2e:c0:9b:d6:df:
87:d9:d6:86:e2:b8:84:b6:f5:da:7e:21:ab:d1:4c:
b7:71:af:52:cd:64:bf:f6:f2:9b:ce:27:ea:93:de:
14:15:52:19:6a:75:25:7f:60:61:c5:53:a1:b4:3b:
48:8e:0e:56:2c:16:f0:dd:22:04:68:ed:87:4e:b5:
2f:b4:a5:e6:d6:54:1d:3d:57:10:c7:9e:f4:3d:61:
2c:91:32:b8:2c:9c:b8:68:5b:f8:49:e2:bf:33:2a:
73:51:26:34:a8:b1:e9:3f:e0:98:e1:f9:ca:72:41:
5b:26:8a:2b:15:be:51:b3:b5:24:60:fd:4d:a1:a6:
b2:76:c2:14:df:25:66:50:98:b7:fb:e6:f1:4d:91:
64:dc:73:eb:0e:5c:e0:a6:06:81:65:39:ea:fe:21:
3b:15:67:7f:9f:9e:77:00:7c:e5:80:cd:40:0c:e1:
3e:03:3b:25:3e:f7:ee:10:a7:49:f2:74:20:b9:3e:
4b:54:28:ea:d1:dd:25:9f:e3:95:73:9e:d2:cb:35:
e6:cc:82:a3:e8:a5:2a:5c:5f:6a:3e:81:8a:97:b4:
f4:e6:e7:32:f3:d0:13:35:1e:f5:af:4b:34:ef:af:
3c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:78:A4:6B:A1:AE:84:CE:B3:66:B9:1A:E9:09:11:2E:DB:99:34:57
X509v3 Authority Key Identifier:
keyid:DC:73:BE:38:7A:F5:52:97:0C:F6:2F:69:51:7E:3F:3C:9C:12:D2:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3HO-OHr1UpcM9i9pUX4_PJwS0vY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:9e:1e:e4:19:11:fa:d6:f3:57:e8:a5:05:51:87:1b:e6:99:
5b:62:02:fa:a7:f4:ab:45:73:d1:8e:be:00:84:52:77:29:b9:
c4:d6:05:48:81:4f:65:dc:ea:e6:87:ac:41:ca:4b:7a:55:d2:
6d:f7:f8:c9:ef:99:73:6c:15:8a:c0:90:09:f5:a7:51:63:bc:
83:34:f6:db:67:8d:19:da:49:e2:42:17:1a:6a:8f:fe:57:23:
f2:e4:59:94:1a:e3:0c:ed:4b:2d:a2:61:da:75:b3:0d:bc:e7:
69:8a:c1:e2:a0:71:8e:59:f6:1e:ec:90:e2:1b:6d:2a:ae:f8:
12:8d:83:ab:63:5b:e9:1a:b0:df:7b:22:c8:71:1e:9e:91:35:
91:da:e7:74:94:a0:6d:ba:a3:ee:f4:9c:81:cc:67:fb:1b:f9:
47:e0:15:06:9c:a0:9f:5e:b2:b8:8e:60:2f:e1:2e:40:62:8c:
0e:1d:31:4c:ff:ad:90:e3:e7:9c:85:a6:f6:b0:06:44:53:15:
e6:0d:2d:02:aa:5d:74:d3:cc:d6:8f:11:f0:98:39:df:f8:5c:
f1:3d:23:1f:77:4c:a5:5c:bc:93:88:19:b0:d3:9a:bc:88:84:
6f:e9:6e:86:34:7a:9d:b4:78:b0:67:f1:82:07:34:24:e8:68:
ea:b4:3a:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 21:30:41 2024 by rpki-client on console-fra.rpki-client.org