Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
File: iA2KtqoscvB5dV92zwEgql3dx98.mft (raw, json)
Hash identifier: 4SAegBh1lG9mzDKJ8ZWnOwrkBnPiu5rYPF2T3qAezLs=
Subject key identifier: 03:31:B6:F6:D7:BE:6F:0F:CD:35:5C:BD:91:F4:FC:43:32:17:FD:24
Authority key identifier: 88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
Certificate issuer: /CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Certificate serial: 018F874A69519B25FECC84BCE44B36303165
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
Manifest number: 0958
Signing time: Fri 17 May 2024 16:02:31 +0000
Manifest this update: Fri 17 May 2024 16:02:31 +0000
Manifest next update: Sat 18 May 2024 16:02:31 +0000
Files and hashes: 1: iA2KtqoscvB5dV92zwEgql3dx98.crl (hash: T04iUdOIB+kUoSJBQNy0HkSyRcDY7czOWQyNMN+abHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:69:51:9b:25:fe:cc:84:bc:e4:4b:36:30:31:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Validity
Not Before: May 17 16:02:31 2024 GMT
Not After : May 18 16:02:31 2024 GMT
Subject: CN=0331b6f6d7be6f0fcd355cbd91f4fc433217fd24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ad:86:a7:c5:d0:64:37:c7:f4:c8:72:16:8c:
9b:b7:fb:e9:67:a6:7c:15:90:cb:ec:7f:ef:d0:ba:
b2:a7:38:ab:c6:28:c6:aa:54:9b:51:14:8e:99:43:
de:23:64:ec:cd:b7:7a:d0:00:56:7b:e6:bf:38:24:
c8:ee:8c:73:5c:65:3b:06:7d:2b:33:fe:cb:fd:e6:
46:bf:10:2c:57:1c:a1:63:03:fb:46:ac:7a:a5:e7:
a1:3f:6f:e5:95:51:c1:f9:19:2f:e2:fe:ec:1e:67:
b0:5c:fb:04:c5:30:06:7a:2b:56:6e:ca:78:fc:3c:
d4:bb:f0:b2:a2:bb:28:41:c8:f8:93:56:d9:19:fb:
d7:a4:da:6b:57:1b:5b:e5:5c:fb:6a:b6:ba:7f:bc:
45:5d:c6:64:0c:72:1f:0d:c3:6b:23:a1:8b:9c:84:
14:eb:7c:fd:24:13:6f:98:8c:ca:78:f6:4d:3b:59:
a9:1d:f3:0d:e9:0a:9c:15:09:57:9b:47:ab:46:72:
1b:68:35:ae:43:61:e0:af:e9:5c:c1:77:5f:04:32:
78:a0:33:02:19:36:c9:e2:f8:eb:1b:8d:51:31:7a:
59:ca:fc:f4:74:c6:00:dc:2f:7a:58:fb:09:f7:55:
d0:89:70:73:9f:06:0a:91:81:e5:d2:34:c6:bc:10:
93:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:31:B6:F6:D7:BE:6F:0F:CD:35:5C:BD:91:F4:FC:43:32:17:FD:24
X509v3 Authority Key Identifier:
keyid:88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:c1:80:0e:a0:29:65:bd:a5:d3:13:33:ef:f1:19:04:40:89:
a1:01:2d:f2:8b:c2:ab:4f:2c:4f:36:f8:5b:f3:8d:f7:79:43:
c5:9c:c7:98:37:fd:79:e0:1d:92:dd:7f:05:01:40:48:85:14:
f9:a8:00:2e:f3:ea:96:ec:bd:61:e7:8a:35:34:1d:60:cf:e1:
f5:60:bd:2e:b6:d4:77:67:fd:bb:2d:28:84:25:fd:42:4e:4f:
05:e1:20:b1:e5:c7:0b:bd:0b:2f:f0:6f:06:65:77:d7:79:c1:
b9:9d:29:5f:b0:5e:fc:85:68:4a:0a:00:71:1c:e0:fa:ec:31:
8a:1d:88:c4:95:bd:1b:8f:a5:42:7b:df:3f:87:dc:59:1c:e5:
5e:cd:0b:65:26:e3:a5:da:ac:6b:1e:e6:28:2f:31:23:31:5c:
c6:f2:d3:cd:4b:15:0f:9b:2f:ad:af:e6:36:a7:41:47:61:e0:
47:46:ee:4d:ae:d0:cd:49:7a:98:4b:96:28:dd:e4:36:ac:e0:
21:c0:8d:52:a4:b5:8b:ad:0a:55:11:b3:cc:9c:ac:0d:ac:11:
78:3e:53:bb:af:a6:a1:79:bb:8c:66:ae:74:05:c9:7b:b5:be:
60:19:30:1b:57:80:7e:a1:1c:3d:ff:91:15:6b:c2:e8:e5:45:
55:fa:b7:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:56:46 2024 by rpki-client on console-ams.rpki-client.org