Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
File: 1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft (raw, json)
Hash identifier: 0e+BDisL5FU0oCsGRemLGkTvF/VuTdlmuMzHAID/u+k=
Subject key identifier: B0:64:97:79:52:EC:9E:4C:87:0C:77:28:4B:BB:B4:9B:A9:C5:FA:D7
Authority key identifier: D4:25:90:03:12:FF:3B:DA:4D:2F:89:6F:64:DF:65:64:6F:D9:C2:51
Certificate issuer: /CN=d425900312ff3bda4d2f896f64df65646fd9c251
Certificate serial: 019357D2D03AED1741118A5397BA226587E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
Manifest number: 1370
Signing time: Sat 23 Nov 2024 07:00:53 +0000
Manifest this update: Sat 23 Nov 2024 07:00:53 +0000
Manifest next update: Sun 24 Nov 2024 07:00:53 +0000
Files and hashes: 1: 1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl (hash: Gk0oPS5RzwOEymle3N5ddXhCqT/Wl9fyEbmscYm4bdI=)
2: g47iM6S-Z3e03TtahpaY_BKgPP4.roa (hash: nG82k34andYMlKFiWLmKSMeIQ6wojgyrn8sbYBcGIp0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:d0:3a:ed:17:41:11:8a:53:97:ba:22:65:87:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d425900312ff3bda4d2f896f64df65646fd9c251
Validity
Not Before: Nov 23 07:00:53 2024 GMT
Not After : Nov 24 07:00:53 2024 GMT
Subject: CN=b064977952ec9e4c870c77284bbbb49ba9c5fad7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:af:e0:a4:83:41:c7:02:31:ba:00:22:24:6f:
3b:8b:bb:35:24:60:b3:df:4e:fc:04:61:e5:09:88:
89:fd:68:f0:a3:6e:76:73:63:a8:98:a4:6a:b4:96:
6a:c3:3e:c3:4d:07:ce:ee:ef:d7:dc:a5:02:bb:aa:
57:80:74:75:fb:2e:88:ba:37:48:57:3d:6a:b3:85:
9c:d4:35:89:3a:99:c7:57:7d:5e:8d:7b:dc:79:7f:
88:97:b7:1a:75:9f:c8:14:f0:1c:87:0a:c5:ca:63:
5f:c8:15:8d:16:3c:cf:a1:85:f5:b0:0e:d9:44:aa:
d5:56:ac:9f:5e:51:80:be:00:01:76:dd:e0:e2:5b:
b0:ce:8a:6f:2d:62:7f:89:cb:d5:a6:8d:6a:89:28:
08:60:07:5b:dd:ad:68:3c:93:85:4f:ae:05:ee:01:
97:1a:d0:e1:2f:2d:df:f9:9e:03:da:06:07:25:74:
f6:d7:c6:41:b4:d2:69:34:4d:a4:b1:e5:05:d0:f1:
2f:c8:14:9e:5d:06:ad:47:8e:b3:0c:79:2e:51:0c:
49:17:e6:60:00:74:dc:83:74:f3:05:8e:fd:66:f4:
60:a7:fc:c1:4b:dd:1e:eb:8a:96:84:bd:9f:b6:0b:
a1:ce:ff:8f:74:f1:da:a7:a2:b9:eb:ac:8d:d8:11:
66:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:64:97:79:52:EC:9E:4C:87:0C:77:28:4B:BB:B4:9B:A9:C5:FA:D7
X509v3 Authority Key Identifier:
keyid:D4:25:90:03:12:FF:3B:DA:4D:2F:89:6F:64:DF:65:64:6F:D9:C2:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:01:98:ea:43:f1:77:88:6b:19:2c:89:7e:d4:96:0a:44:78:
80:bd:a1:44:6d:f7:9f:e5:ca:d1:d9:dd:58:ef:72:d6:43:4e:
35:c6:42:f2:82:1c:61:28:d4:d3:a6:ae:ae:68:d9:3f:20:62:
37:8b:01:10:e1:61:ef:0b:14:51:cd:b4:76:43:e6:97:25:7f:
63:cc:84:c2:a1:13:d0:6f:be:bd:38:fd:d3:0b:3c:c1:2a:6b:
00:a6:25:d3:6c:88:de:c3:56:a3:30:e9:58:74:e4:c3:14:5b:
47:39:d0:f3:be:73:94:78:2c:d6:13:63:a1:ff:da:60:df:45:
61:85:b5:f2:c3:48:9e:31:d7:e8:9d:79:e4:ff:72:ba:ef:81:
b1:dd:34:a2:db:d5:91:23:29:62:60:7a:f4:70:82:dd:ea:c2:
28:e4:ff:b7:1c:94:72:c4:4f:0c:8d:1c:02:cf:b2:4f:73:ba:
61:06:4a:4a:9a:a0:02:16:7c:b1:88:bb:8a:8d:aa:56:6f:96:
7e:ec:45:81:2e:17:a4:37:70:ea:62:b2:99:39:e5:2e:f3:3d:
d4:01:ec:f9:5c:90:5d:c8:73:89:44:61:8c:31:b6:1b:69:cd:
27:52:17:f3:95:12:3f:3b:18:4b:86:24:02:44:2b:44:c9:e0:
c7:8b:f9:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:33:36 2024 by rpki-client on console-ams.rpki-client.org