Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/9cfc79-8bda-4862-a7d8-4f8d9355d862/1/WFRbn70B0owOptCPW0cts0-tLqM.mft
File: WFRbn70B0owOptCPW0cts0-tLqM.mft (raw, json)
Hash identifier: kZqBI2gFgMPXZYki2pgUSRgO/T3I0agXAHhN1wUAKSg=
Subject key identifier: C5:6F:D0:CE:CA:4B:20:07:07:DB:AC:B1:EB:47:E3:28:4C:30:B4:62
Authority key identifier: 58:54:5B:9F:BD:01:D2:8C:0E:A6:D0:8F:5B:47:2D:B3:4F:AD:2E:A3
Certificate issuer: /CN=58545b9fbd01d28c0ea6d08f5b472db34fad2ea3
Certificate serial: 01936A7DB22E8F4C868E31F6339232136AA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WFRbn70B0owOptCPW0cts0-tLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/9cfc79-8bda-4862-a7d8-4f8d9355d862/1/WFRbn70B0owOptCPW0cts0-tLqM.mft
Manifest number: 1341
Signing time: Tue 26 Nov 2024 22:00:42 +0000
Manifest this update: Tue 26 Nov 2024 22:00:42 +0000
Manifest next update: Wed 27 Nov 2024 22:00:42 +0000
Files and hashes: 1: WFRbn70B0owOptCPW0cts0-tLqM.crl (hash: WwHHWaWjzcFyHKc+o8ZhvZ+nsW2GZN4Orjll/Mf+qpQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/9cfc79-8bda-4862-a7d8-4f8d9355d862/1/WFRbn70B0owOptCPW0cts0-tLqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/9cfc79-8bda-4862-a7d8-4f8d9355d862/1/WFRbn70B0owOptCPW0cts0-tLqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/WFRbn70B0owOptCPW0cts0-tLqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:7d:b2:2e:8f:4c:86:8e:31:f6:33:92:32:13:6a:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58545b9fbd01d28c0ea6d08f5b472db34fad2ea3
Validity
Not Before: Nov 26 22:00:42 2024 GMT
Not After : Nov 27 22:00:42 2024 GMT
Subject: CN=c56fd0ceca4b200707dbacb1eb47e3284c30b462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:93:3f:92:d6:d5:25:83:ab:71:87:39:88:11:
e3:d5:14:e2:37:2c:23:df:6c:d4:1b:24:fd:ce:a1:
0c:1a:0e:ef:0f:cb:a8:99:6e:b5:8f:e5:e1:96:6e:
47:eb:5d:96:53:5d:aa:7c:58:53:96:ee:04:23:ed:
17:51:92:74:aa:f6:6a:8a:be:fa:2d:1a:b4:af:4d:
2b:87:47:bd:27:25:8e:3e:16:c8:69:6f:97:94:45:
66:36:b9:e6:ba:a1:f8:e0:56:f3:83:b1:56:67:03:
02:6f:db:eb:1e:48:41:25:eb:3c:51:f6:24:0c:94:
d8:b0:23:e3:14:fa:1c:64:7e:0f:29:f8:35:dc:5b:
87:df:e6:bc:57:f6:ae:55:99:c6:d1:b9:f7:3d:eb:
84:55:b3:2b:1a:a2:e1:a1:cd:d6:1e:25:db:d5:98:
18:42:79:ef:89:4f:5f:ca:f0:5b:4e:ab:70:d7:f5:
88:91:65:7f:6d:29:00:6e:b5:e2:7d:72:c0:9a:05:
b7:2c:2b:79:cb:39:a7:8a:53:cc:ee:f3:02:27:ed:
ba:db:b9:7a:9d:36:74:1c:44:e3:72:ff:84:ad:e0:
1c:b9:95:15:e2:5a:2d:1f:9b:0d:94:5e:ea:06:66:
31:f7:3e:d9:c7:cb:32:89:4b:23:a7:ed:00:88:44:
70:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:6F:D0:CE:CA:4B:20:07:07:DB:AC:B1:EB:47:E3:28:4C:30:B4:62
X509v3 Authority Key Identifier:
keyid:58:54:5B:9F:BD:01:D2:8C:0E:A6:D0:8F:5B:47:2D:B3:4F:AD:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WFRbn70B0owOptCPW0cts0-tLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9cfc79-8bda-4862-a7d8-4f8d9355d862/1/WFRbn70B0owOptCPW0cts0-tLqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9cfc79-8bda-4862-a7d8-4f8d9355d862/1/WFRbn70B0owOptCPW0cts0-tLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:53:91:b5:b8:f5:56:fb:c7:7e:d4:16:a3:95:74:2c:51:14:
51:17:39:df:a0:be:49:02:57:88:45:74:e9:fe:74:23:0b:90:
93:7c:4e:4b:ce:62:b6:0f:b1:96:97:21:c6:6b:13:6b:e2:56:
f3:74:69:3b:a1:f9:46:bf:6b:84:e1:18:73:7e:c9:c6:71:f7:
e2:a1:17:4b:ac:08:36:21:e8:fe:69:57:d8:1b:a5:3c:96:7f:
f7:b8:14:24:68:de:5e:b1:b2:15:b7:53:6c:81:87:64:96:7e:
42:72:4e:34:aa:4a:78:17:c4:35:d3:ba:96:8d:b8:97:e4:2c:
33:e6:a3:97:c2:28:23:39:37:26:fa:c1:91:93:15:40:31:8b:
6c:d6:12:c0:b1:ad:eb:be:b2:ae:81:72:79:75:cf:50:ac:c7:
a8:8b:3b:96:10:f7:af:90:54:2e:a4:75:a8:fd:84:25:3e:8a:
2e:b7:1e:08:74:0f:6a:ad:78:57:22:30:ba:60:ee:d3:a0:ca:
a0:1c:0f:e7:06:64:c1:d8:60:f9:b6:c5:5e:71:f8:fa:80:91:
3a:82:12:04:b9:89:c2:3f:08:28:80:2c:ca:90:06:0d:d6:b1:
4e:ee:35:3a:49:80:98:5a:fd:35:46:94:50:c3:0d:30:ea:da:
69:40:02:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:12:23 2024 by rpki-client on console-ams.rpki-client.org