Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.mft
File: riYajfUykscw4q4d_PxP4_92sdA.mft (raw, json)
Hash identifier: ZebBwtsoL2kyyn7MdFqCQ7ecL9ZkP+K/wa/61mVJkcg=
Subject key identifier: 79:A0:5A:43:2D:6C:FB:6C:BA:48:CC:30:D7:F0:EF:57:CF:8C:04:77
Authority key identifier: AE:26:1A:8D:F5:32:92:C7:30:E2:AE:1D:FC:FC:4F:E3:FF:76:B1:D0
Certificate issuer: /CN=ae261a8df53292c730e2ae1dfcfc4fe3ff76b1d0
Certificate serial: 018F9917CD47BA066B9E717883207482B1E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/riYajfUykscw4q4d_PxP4_92sdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.mft
Manifest number: 117E
Signing time: Tue 21 May 2024 03:00:24 +0000
Manifest this update: Tue 21 May 2024 03:00:24 +0000
Manifest next update: Wed 22 May 2024 03:00:24 +0000
Files and hashes: 1: riYajfUykscw4q4d_PxP4_92sdA.crl (hash: TYMJKRGgh5mPDGUHQNpH8ur6iqTMm8OAXjuZTOXxCxE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.mft
rsync://rpki.ripe.net/repository/DEFAULT/riYajfUykscw4q4d_PxP4_92sdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 22:57:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:99:17:cd:47:ba:06:6b:9e:71:78:83:20:74:82:b1:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae261a8df53292c730e2ae1dfcfc4fe3ff76b1d0
Validity
Not Before: May 21 03:00:24 2024 GMT
Not After : May 22 03:00:24 2024 GMT
Subject: CN=79a05a432d6cfb6cba48cc30d7f0ef57cf8c0477
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:dd:6e:05:cc:f2:e7:e5:f6:d2:a6:a6:f3:c6:
5a:b9:11:e1:43:e8:24:e2:0e:af:56:f8:49:ff:e4:
5a:f0:67:4b:e6:10:38:9f:84:41:11:c4:0e:97:f7:
ad:88:11:a2:f6:5f:6d:1d:d6:3f:66:ba:c2:b8:7b:
ed:16:0a:f9:bd:8f:59:0d:ef:48:74:68:79:0e:30:
f3:9f:38:5e:ac:ad:35:b5:5d:f2:ae:84:1a:4c:a9:
40:93:8c:ea:d1:08:5b:51:b7:6c:20:5c:8d:e8:6d:
f0:43:b6:b3:d1:df:1b:e3:9e:55:d3:00:46:6a:c9:
eb:2c:7f:41:ce:93:f1:05:7c:b9:ed:b1:0b:3b:3d:
b4:08:c3:1f:ab:54:98:d4:a7:5d:1d:0b:d9:8d:30:
a3:19:8c:f9:3f:8e:cf:55:65:a5:f4:e8:1a:98:b3:
13:b8:bc:0c:51:03:34:9f:fc:f9:1d:e9:b0:68:5b:
cc:0d:0d:05:05:1a:17:89:7b:36:a8:8b:b2:06:3b:
f0:8b:12:0c:a1:c2:b1:b9:df:76:9f:a6:bf:e0:06:
db:2f:88:d8:86:9f:7a:08:04:8c:c1:6d:10:35:98:
44:6d:e4:3f:26:d4:7c:dc:35:e7:2b:fd:a3:7a:47:
3b:2a:d6:af:ea:f2:97:d3:fe:2d:c0:88:2e:5d:4e:
94:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:A0:5A:43:2D:6C:FB:6C:BA:48:CC:30:D7:F0:EF:57:CF:8C:04:77
X509v3 Authority Key Identifier:
keyid:AE:26:1A:8D:F5:32:92:C7:30:E2:AE:1D:FC:FC:4F:E3:FF:76:B1:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/riYajfUykscw4q4d_PxP4_92sdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:93:b2:bf:86:2e:37:a8:da:02:a5:5e:f5:cb:67:3b:1e:e2:
4d:32:70:67:cc:fc:95:c5:47:32:d7:0b:f2:f6:93:b6:bb:55:
ca:44:e1:c5:c7:2f:20:5f:19:8b:38:3f:95:63:3e:2c:82:ca:
5e:6f:2a:4e:8c:25:79:35:b7:b0:19:8c:5e:f6:a2:9a:4f:f8:
bf:47:66:16:6b:39:a2:96:4e:2e:cd:8f:ef:6c:85:d0:34:53:
7f:ac:ea:02:42:58:bc:15:61:46:40:82:94:19:44:f0:55:d3:
b0:31:09:81:28:65:2a:1f:f7:ef:a9:45:b9:c4:29:4b:87:4c:
87:24:d2:71:b2:90:c5:81:d7:c4:3a:5c:fe:11:95:1c:5d:53:
e5:f0:8e:2a:66:6f:e0:2b:7b:46:b5:3f:be:1b:37:09:72:a9:
cd:98:0b:90:f1:78:c1:68:b7:de:5e:36:a0:b0:c2:41:d2:10:
76:0f:9e:52:d5:36:ef:ef:85:a1:4b:8a:f4:61:02:af:c4:ea:
dc:58:21:c8:0e:51:1c:d4:30:5b:12:7c:f2:b3:4e:63:c6:32:
45:20:6b:37:b3:24:75:4c:9f:86:0a:a2:a5:6d:6a:86:34:9a:
80:95:da:c4:29:e8:2b:ab:ce:08:b2:c7:ef:24:20:06:0c:7f:
d0:1b:3a:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 03:35:59 2024 by rpki-client on console-fra.rpki-client.org