Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/6c992b-bcdd-4203-b524-81a2fc0a0687/1/l8OiXUi_gek3G3sOuGjV2i2rkZU.mft
File: l8OiXUi_gek3G3sOuGjV2i2rkZU.mft (raw, json)
Hash identifier: 6lqnWrqCYHDJ4Epkg89b0e7E9j4kyqiVlhe/Vtt6sA8=
Subject key identifier: 1D:A8:67:17:0D:07:26:EB:CE:89:86:E0:DD:AF:48:95:6C:C2:D9:19
Authority key identifier: 97:C3:A2:5D:48:BF:81:E9:37:1B:7B:0E:B8:68:D5:DA:2D:AB:91:95
Certificate issuer: /CN=97c3a25d48bf81e9371b7b0eb868d5da2dab9195
Certificate serial: 018F86A398ABF8194EF3A5ABA31A47CD4777
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l8OiXUi_gek3G3sOuGjV2i2rkZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/6c992b-bcdd-4203-b524-81a2fc0a0687/1/l8OiXUi_gek3G3sOuGjV2i2rkZU.mft
Manifest number: 017E
Signing time: Fri 17 May 2024 13:00:19 +0000
Manifest this update: Fri 17 May 2024 13:00:19 +0000
Manifest next update: Sat 18 May 2024 13:00:19 +0000
Files and hashes: 1: l8OiXUi_gek3G3sOuGjV2i2rkZU.crl (hash: /LxW+JmP0DHEEGjRmaZSp6mkZYeLcSMav66PjqVCpnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/6c992b-bcdd-4203-b524-81a2fc0a0687/1/l8OiXUi_gek3G3sOuGjV2i2rkZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/6c992b-bcdd-4203-b524-81a2fc0a0687/1/l8OiXUi_gek3G3sOuGjV2i2rkZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/l8OiXUi_gek3G3sOuGjV2i2rkZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 13:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:a3:98:ab:f8:19:4e:f3:a5:ab:a3:1a:47:cd:47:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97c3a25d48bf81e9371b7b0eb868d5da2dab9195
Validity
Not Before: May 17 13:00:19 2024 GMT
Not After : May 18 13:00:19 2024 GMT
Subject: CN=1da867170d0726ebce8986e0ddaf48956cc2d919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4b:b3:c8:0b:6a:2c:b6:f4:2c:e8:3f:c9:11:
b8:44:25:70:0d:5c:cb:5e:8a:99:53:14:31:01:30:
fc:43:72:91:56:c6:ca:c7:80:73:38:74:1b:ae:17:
38:40:9c:7b:33:88:d3:28:cd:b6:26:d1:4b:8c:89:
03:e8:e3:73:c4:96:66:2b:ec:59:63:56:a4:de:61:
08:48:5b:f5:14:5c:f6:c5:80:48:50:7c:2c:49:41:
6b:88:35:45:8d:78:cf:84:b2:cd:80:f7:80:a1:a7:
78:00:4f:7e:1f:fb:1f:4a:69:c0:3c:9b:6e:4e:de:
b1:81:30:a1:95:ef:65:85:9c:32:d9:7a:0c:14:4d:
cc:c2:6e:18:f8:1b:ae:9b:a2:b2:18:66:38:6e:3b:
ce:8c:6f:73:70:cc:59:35:53:a9:0b:cd:03:cd:3b:
34:91:17:e6:23:f2:b8:75:3c:e3:05:96:c7:9a:57:
e3:89:48:67:31:4d:b7:26:c5:5f:26:1e:02:95:83:
f6:c2:04:db:28:57:e7:6d:5f:d1:e9:b7:7e:2e:99:
31:8c:a5:a3:4e:22:c2:a8:3f:91:38:91:0b:74:39:
98:a1:cb:7c:9c:e7:90:a7:0c:36:8b:30:22:1f:cb:
fe:28:76:36:dc:cf:4b:7b:a4:9e:1a:9d:d2:55:b1:
4b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A8:67:17:0D:07:26:EB:CE:89:86:E0:DD:AF:48:95:6C:C2:D9:19
X509v3 Authority Key Identifier:
keyid:97:C3:A2:5D:48:BF:81:E9:37:1B:7B:0E:B8:68:D5:DA:2D:AB:91:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l8OiXUi_gek3G3sOuGjV2i2rkZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/6c992b-bcdd-4203-b524-81a2fc0a0687/1/l8OiXUi_gek3G3sOuGjV2i2rkZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/6c992b-bcdd-4203-b524-81a2fc0a0687/1/l8OiXUi_gek3G3sOuGjV2i2rkZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:3b:2e:2f:b9:fe:6c:dc:95:b1:44:86:ae:c3:a3:e3:56:0f:
65:90:1a:d7:f6:77:db:cf:76:a3:4e:3a:6c:c8:6f:01:e0:d9:
6c:7d:e5:d6:95:ad:0d:82:99:d2:8a:8d:16:2d:ab:59:7c:0a:
67:48:8a:46:65:18:91:48:7c:9e:cf:1d:d4:2b:18:53:a1:e4:
99:79:e1:27:76:fe:1a:1b:0c:a6:f1:66:b3:58:b6:a1:67:7c:
23:3b:57:0f:60:11:d7:2a:37:f0:7e:ed:e9:6e:24:48:ab:50:
f9:9e:f3:a0:ba:38:be:85:8c:13:ca:e6:e8:7a:6e:08:75:fd:
d3:10:a7:07:4f:25:8e:58:1a:0b:f5:68:26:b1:9f:15:a0:7a:
6f:7e:93:75:cb:0f:a4:2b:e4:7b:19:d5:e3:73:28:82:70:fc:
2c:06:9f:b7:4d:22:98:21:15:2a:28:bf:d3:37:7e:6d:0c:aa:
87:1e:df:59:ff:76:68:ff:61:cc:a4:00:a7:03:8c:1a:db:3b:
d4:d6:f3:a5:5d:d4:a3:81:4e:20:0d:f8:01:43:08:1f:34:68:
e3:2f:04:08:bc:f0:24:90:4a:cc:09:c8:3c:f3:0b:25:4b:f1:
bf:b0:5a:a2:0d:43:f1:18:26:10:59:9f:22:36:67:d0:03:93:
2d:1c:60:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:58:46 2024 by rpki-client on console-ams.rpki-client.org