Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/a20777-85d9-48b8-a90d-0025fb0ba817/1/oacUNoyt3jYFUYCftnU4i271BRw.mft
File: oacUNoyt3jYFUYCftnU4i271BRw.mft (raw, json)
Hash identifier: 8rt3A3+m4rh8LfUXCN2imnhZIABqjPzia5wBUnmxEAQ=
Subject key identifier: 84:60:B3:8A:61:6C:84:1A:E9:50:2F:80:48:64:26:CE:C4:76:3C:4A
Authority key identifier: A1:A7:14:36:8C:AD:DE:36:05:51:80:9F:B6:75:38:8B:6E:F5:05:1C
Certificate issuer: /CN=a1a714368cadde360551809fb675388b6ef5051c
Certificate serial: 019095A7C51515AD5F65417FDF721526E0C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oacUNoyt3jYFUYCftnU4i271BRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/a20777-85d9-48b8-a90d-0025fb0ba817/1/oacUNoyt3jYFUYCftnU4i271BRw.mft
Manifest number: 1201
Signing time: Tue 09 Jul 2024 04:01:58 +0000
Manifest this update: Tue 09 Jul 2024 04:01:58 +0000
Manifest next update: Wed 10 Jul 2024 04:01:58 +0000
Files and hashes: 1: oacUNoyt3jYFUYCftnU4i271BRw.crl (hash: 60UNZI3faBRN+h8E4ixmp0zmDdX2MmuQBEDYiPpGG4E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/a20777-85d9-48b8-a90d-0025fb0ba817/1/oacUNoyt3jYFUYCftnU4i271BRw.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/a20777-85d9-48b8-a90d-0025fb0ba817/1/oacUNoyt3jYFUYCftnU4i271BRw.mft
rsync://rpki.ripe.net/repository/DEFAULT/oacUNoyt3jYFUYCftnU4i271BRw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Jul 2024 04:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:95:a7:c5:15:15:ad:5f:65:41:7f:df:72:15:26:e0:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1a714368cadde360551809fb675388b6ef5051c
Validity
Not Before: Jul 9 04:01:58 2024 GMT
Not After : Jul 10 04:01:58 2024 GMT
Subject: CN=8460b38a616c841ae9502f80486426cec4763c4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f2:1d:73:c2:46:6d:32:b7:dd:8e:71:ce:0e:
de:aa:89:1a:d0:dc:b2:8f:88:07:fb:b8:9f:0b:c2:
eb:64:cf:38:44:74:fd:d5:ab:c9:cb:5f:d0:9f:92:
1e:95:67:0a:77:4e:72:87:64:d2:c1:a4:96:f9:9b:
77:fa:c1:e1:34:2e:53:11:86:f4:62:4b:f3:a0:c6:
2f:ad:00:b0:0c:0a:86:c7:25:0c:bd:4b:03:f9:63:
03:31:f4:e1:40:86:ed:af:ea:92:71:46:6f:9f:ce:
0a:21:0d:6d:16:52:4f:6b:d1:fb:d9:1d:1c:65:c2:
4b:70:12:19:04:de:ce:f9:45:cb:f1:33:7f:86:e1:
60:dd:20:57:76:60:ed:12:ab:88:61:1e:31:a1:54:
98:ba:be:6c:0b:2b:6c:44:79:e8:6c:38:c4:bf:d4:
65:c5:80:2b:20:a9:07:0c:56:2d:ef:48:28:3a:95:
cf:7e:7f:f7:34:55:ea:a0:b1:63:89:2c:a9:c7:04:
1c:be:cd:46:10:27:fb:39:21:6e:88:99:8c:4a:e2:
9f:22:ec:ce:e3:1e:b6:f5:75:18:c5:0c:d4:0c:c9:
3c:c5:59:eb:3e:22:e1:70:72:e1:b4:f3:fd:ff:1e:
a6:fd:f2:59:57:75:eb:44:ae:76:85:08:a9:53:ae:
35:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:60:B3:8A:61:6C:84:1A:E9:50:2F:80:48:64:26:CE:C4:76:3C:4A
X509v3 Authority Key Identifier:
keyid:A1:A7:14:36:8C:AD:DE:36:05:51:80:9F:B6:75:38:8B:6E:F5:05:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oacUNoyt3jYFUYCftnU4i271BRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/a20777-85d9-48b8-a90d-0025fb0ba817/1/oacUNoyt3jYFUYCftnU4i271BRw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/a20777-85d9-48b8-a90d-0025fb0ba817/1/oacUNoyt3jYFUYCftnU4i271BRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:20:a6:02:52:c2:4a:15:ad:72:44:2f:3e:df:52:f6:9a:0a:
ff:20:8d:3c:e2:36:65:c9:a9:6f:9e:6d:57:9e:74:81:f2:b6:
46:a1:e5:94:71:10:32:f2:01:6a:3b:53:ab:82:8b:14:71:6b:
e4:5d:9f:03:de:41:83:ef:e5:0b:09:25:4a:2e:24:de:f6:c7:
2f:7d:41:ee:be:0e:1a:27:5f:16:be:b5:b2:bb:80:28:ee:ef:
c9:56:19:c5:ed:f6:91:53:20:6d:f2:48:87:a9:91:98:c3:6b:
0b:c7:d1:7c:8d:ba:e1:d4:dc:10:f1:fd:0b:df:62:2a:b0:88:
c0:43:28:b8:75:98:ac:98:e1:7d:56:dd:35:87:cd:b7:0a:ec:
86:2e:93:f5:e1:93:ee:3c:16:07:40:39:e1:3f:07:06:46:fc:
a3:08:b2:d1:fa:03:64:d3:be:59:b6:a8:2b:06:e0:db:e9:eb:
cc:1f:90:a3:f8:dc:8f:17:c5:3a:5c:5f:ed:5b:62:bd:87:44:
1a:14:86:ff:50:ec:40:9e:be:07:41:55:51:2a:96:59:25:1c:
8d:36:ed:eb:bf:6d:7c:6f:b6:31:f6:17:44:59:6f:a1:f9:77:
73:a8:d2:40:e0:77:2f:50:00:af:92:97:dd:61:3b:b8:a2:c8:
c7:77:aa:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 9 11:31:23 2024 by rpki-client on console.sobornost.net