Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.mft
File: spuNaKggdWqqP4l5UdWv1n_bPbs.mft (raw, json)
Hash identifier: AKyft0jWDEEimh6pP019kVM5ioNju/FlNgeK/gw4vds=
Subject key identifier: 7A:DA:CC:76:9B:A7:6E:FE:0A:B3:8B:3C:0C:9E:0F:30:43:5B:0C:5A
Authority key identifier: B2:9B:8D:68:A8:20:75:6A:AA:3F:89:79:51:D5:AF:D6:7F:DB:3D:BB
Certificate issuer: /CN=b29b8d68a820756aaa3f897951d5afd67fdb3dbb
Certificate serial: 018F96BB5854013C8736F7789E2BB525F7AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/spuNaKggdWqqP4l5UdWv1n_bPbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.mft
Manifest number: 117E
Signing time: Mon 20 May 2024 16:00:11 +0000
Manifest this update: Mon 20 May 2024 16:00:11 +0000
Manifest next update: Tue 21 May 2024 16:00:11 +0000
Files and hashes: 1: spuNaKggdWqqP4l5UdWv1n_bPbs.crl (hash: SppkUZHPQg3/u8fn4nVyYzovjr1WstoFp2bXEZX9C0M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.mft
rsync://rpki.ripe.net/repository/DEFAULT/spuNaKggdWqqP4l5UdWv1n_bPbs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:96:bb:58:54:01:3c:87:36:f7:78:9e:2b:b5:25:f7:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b29b8d68a820756aaa3f897951d5afd67fdb3dbb
Validity
Not Before: May 20 16:00:11 2024 GMT
Not After : May 21 16:00:11 2024 GMT
Subject: CN=7adacc769ba76efe0ab38b3c0c9e0f30435b0c5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:b1:21:4b:07:9e:c6:20:a5:05:f3:2d:4e:52:
26:68:ee:23:f0:94:5f:01:db:9d:e4:cc:8a:b6:14:
4e:cb:0a:a2:97:a9:62:3b:b2:92:86:fe:62:93:06:
1f:34:a0:76:93:d8:dd:24:b4:5c:da:c4:6e:cc:12:
5a:dc:a0:d4:9d:9c:2c:c1:25:de:89:64:d5:2e:9b:
4b:70:4a:c8:10:0e:e5:e2:0d:a0:7a:2b:f4:1e:65:
9a:c6:d4:a9:88:55:2a:c6:ca:35:23:0c:0f:d9:69:
a4:fe:d8:63:bb:a0:b5:48:1f:0b:ee:7a:5b:53:14:
3d:dd:4a:ee:ef:7f:e4:45:8c:55:93:f6:fd:e3:6a:
0f:cc:c2:04:12:d0:89:61:84:1c:07:2b:4b:3d:11:
c1:7e:71:05:0c:56:e9:1e:d3:9a:9f:7c:74:82:13:
7d:0b:25:52:82:f6:80:9d:7f:1f:cf:b9:7e:b5:d1:
15:3c:f9:6d:0c:b8:ba:95:60:e1:92:fe:24:38:58:
23:e0:1d:2b:0a:64:97:3e:db:b0:ef:47:17:63:aa:
d4:7f:12:69:ad:ed:40:01:78:d9:09:94:67:34:9f:
cd:28:a0:95:2b:cb:f2:f0:cb:55:9f:16:eb:3d:2a:
d9:26:f5:fc:78:de:44:ed:b9:8a:13:62:63:bf:d4:
bd:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:DA:CC:76:9B:A7:6E:FE:0A:B3:8B:3C:0C:9E:0F:30:43:5B:0C:5A
X509v3 Authority Key Identifier:
keyid:B2:9B:8D:68:A8:20:75:6A:AA:3F:89:79:51:D5:AF:D6:7F:DB:3D:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/spuNaKggdWqqP4l5UdWv1n_bPbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:5d:be:a5:3c:61:8c:06:fe:6b:e3:b7:21:11:85:97:e6:47:
21:b6:ac:3f:c3:7d:cf:48:35:f1:f5:2c:a0:16:42:16:58:32:
3a:60:7e:47:ac:e4:55:dd:34:95:ea:9d:16:bb:8c:aa:4b:19:
9d:ea:3f:aa:3c:55:12:fe:ef:cc:59:9e:8e:5b:7f:c1:af:a8:
1d:e4:ff:73:2d:a5:a2:ce:de:53:84:65:b2:d5:ca:bd:b4:6e:
82:bc:44:13:d9:54:3d:26:2a:2c:55:ef:0f:cc:22:17:62:f8:
2a:88:0d:1e:d9:a7:d5:27:9d:1b:01:d7:5e:ab:15:e9:70:3f:
28:ce:dc:5c:1e:8d:5b:35:76:3e:f5:1c:4b:40:11:56:70:25:
e4:e1:03:f9:97:e0:ea:c4:29:e1:89:9d:38:2d:82:85:9a:af:
f0:42:5b:ed:83:59:62:b9:41:b3:80:cb:82:57:4e:b6:33:a6:
55:b5:26:a7:05:af:b1:8d:25:83:14:3b:59:f9:3b:89:2f:ea:
45:73:60:28:ad:e9:a1:70:d7:69:2c:ca:84:97:e9:7b:98:bc:
ff:be:f9:4b:81:6b:6c:26:46:9f:3f:55:a0:09:bf:c3:a1:fb:
91:8d:d7:df:2f:d9:4d:ab:62:9e:cd:f2:e7:13:67:e2:d3:08:
a1:14:77:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 18:34:27 2024 by rpki-client on console-ams.rpki-client.org