Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft
File: s1IytLD6jIPU_4wSROhk67yt1os.mft (raw, json)
Hash identifier: t0cgkpUlhaNKpKCSAkwVhPrREYgQvh1Ld3ijAoAHZ3w=
Subject key identifier: CB:C4:C0:4C:B5:39:9F:57:DC:B0:13:91:8D:79:02:42:FB:08:D5:47
Authority key identifier: B3:52:32:B4:B0:FA:8C:83:D4:FF:8C:12:44:E8:64:EB:BC:AD:D6:8B
Certificate issuer: /CN=b35232b4b0fa8c83d4ff8c1244e864ebbcadd68b
Certificate serial: 018F874AC20756431DEE51AC383E5F79335D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s1IytLD6jIPU_4wSROhk67yt1os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft
Manifest number: 0BEF
Signing time: Fri 17 May 2024 16:02:54 +0000
Manifest this update: Fri 17 May 2024 16:02:54 +0000
Manifest next update: Sat 18 May 2024 16:02:54 +0000
Files and hashes: 1: s1IytLD6jIPU_4wSROhk67yt1os.crl (hash: amRy65d57xFLJn+vKsa+EMRlN7QPRYg8N0b7THYMHyE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft
rsync://rpki.ripe.net/repository/DEFAULT/s1IytLD6jIPU_4wSROhk67yt1os.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:c2:07:56:43:1d:ee:51:ac:38:3e:5f:79:33:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b35232b4b0fa8c83d4ff8c1244e864ebbcadd68b
Validity
Not Before: May 17 16:02:54 2024 GMT
Not After : May 18 16:02:54 2024 GMT
Subject: CN=cbc4c04cb5399f57dcb013918d790242fb08d547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:aa:be:c2:4f:18:8a:25:9a:bd:77:ec:09:25:
0b:b9:cf:19:dc:68:a4:91:6d:3c:bf:d5:36:af:dd:
ae:76:57:fa:a7:cc:fd:24:e3:e5:b7:f0:47:09:bc:
1d:67:99:4e:b2:c2:c7:61:ba:98:19:97:86:a6:96:
10:db:83:6b:6f:ea:c5:cd:7e:3f:1b:80:0a:ac:c3:
32:18:61:44:5a:fe:0b:5b:0b:11:00:d0:62:ae:d4:
0c:50:45:3c:7e:63:b1:42:ff:fc:bf:5b:e4:4c:a5:
f6:2b:f4:1e:33:94:b2:64:81:c9:ed:02:92:ae:a0:
b6:0a:aa:dc:31:c1:f4:72:14:3c:90:20:19:b6:73:
87:e0:12:e9:e0:f2:03:02:86:2e:e0:06:4f:26:cf:
7a:c6:be:1b:a4:85:17:8d:b0:19:aa:38:2c:0e:85:
88:ee:49:4a:23:85:aa:1e:29:87:12:e6:05:b2:34:
e5:55:78:85:10:c6:54:fc:0b:33:d2:d2:57:75:10:
98:14:6f:2e:e6:59:45:76:f4:a6:ca:ca:37:0b:52:
73:bc:6c:7b:ae:79:1f:9b:ca:77:5b:d0:30:3d:dd:
9e:d4:0e:9c:64:0e:f6:05:60:f0:9e:ea:95:7c:d8:
63:51:38:c3:38:0f:05:db:52:2c:55:d3:a0:47:6d:
f9:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:C4:C0:4C:B5:39:9F:57:DC:B0:13:91:8D:79:02:42:FB:08:D5:47
X509v3 Authority Key Identifier:
keyid:B3:52:32:B4:B0:FA:8C:83:D4:FF:8C:12:44:E8:64:EB:BC:AD:D6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s1IytLD6jIPU_4wSROhk67yt1os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:2e:a0:a9:22:c5:e7:3c:74:af:bd:e9:61:28:5e:5c:f6:32:
42:26:36:d5:14:0c:ad:6f:e2:fd:4e:bc:3a:79:26:1f:01:96:
8e:ce:6d:60:a1:81:2b:e7:8a:53:7d:e1:92:fe:5a:ca:a6:65:
0b:b9:13:ed:0d:c0:72:fc:5c:ba:ca:e0:f5:42:61:e4:23:bc:
91:09:d5:f9:19:f5:d2:72:08:ea:64:d9:4c:91:d6:a8:22:33:
b9:c3:fa:2f:d7:29:a1:8c:3d:e7:a9:0b:4e:48:33:e2:c9:99:
bf:87:43:72:b4:72:3e:26:b6:8b:06:d1:fe:d9:1b:ea:e2:73:
f7:70:21:cb:e5:46:47:26:2c:44:d3:62:f7:33:09:f2:bb:2b:
76:c0:fe:f5:2a:b2:7a:b5:a0:c4:a7:42:2d:2f:e7:f1:99:cc:
f1:05:0e:60:fb:8b:15:ef:f1:47:dc:62:d3:cd:2b:52:a9:fc:
f4:77:df:fc:fa:98:7c:51:5a:41:d7:b1:93:7c:58:6e:43:0e:
70:65:47:e1:0a:86:af:51:bc:6e:73:2a:e2:7f:63:5a:d0:25:
88:19:8d:f7:5e:20:02:2f:87:18:8a:25:42:21:26:f3:e6:20:
4e:12:07:f8:1a:e2:32:1a:95:e1:9b:29:75:64:3c:62:cd:85:
f9:0a:b6:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 19:19:36 2024 by rpki-client on console-fra.rpki-client.org