Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
File: XWU9B97R6Nf08uoEvTaELFsS8V4.mft (raw, json)
Hash identifier: R18OPJzKxAtu9uy5PIfjI3sxLCBEIztYDoq7dPgBazo=
Subject key identifier: 95:6A:B5:F5:03:58:67:E5:A4:D4:9E:9B:29:09:0A:AC:67:45:34:4C
Authority key identifier: 5D:65:3D:07:DE:D1:E8:D7:F4:F2:EA:04:BD:36:84:2C:5B:12:F1:5E
Certificate issuer: /CN=5d653d07ded1e8d7f4f2ea04bd36842c5b12f15e
Certificate serial: 0193572DD410CF2CC8DEC68A6C429F597A5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
Manifest number: 0B99
Signing time: Sat 23 Nov 2024 04:00:41 +0000
Manifest this update: Sat 23 Nov 2024 04:00:41 +0000
Manifest next update: Sun 24 Nov 2024 04:00:41 +0000
Files and hashes: 1: XWU9B97R6Nf08uoEvTaELFsS8V4.crl (hash: TEc9uVBxs4VwDiLMKdar2zgbBFS7THFzsanGAKV0geo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:d4:10:cf:2c:c8:de:c6:8a:6c:42:9f:59:7a:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d653d07ded1e8d7f4f2ea04bd36842c5b12f15e
Validity
Not Before: Nov 23 04:00:41 2024 GMT
Not After : Nov 24 04:00:41 2024 GMT
Subject: CN=956ab5f5035867e5a4d49e9b29090aac6745344c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:12:27:61:d5:e4:8e:e8:c4:c7:b3:e9:ce:50:
37:82:34:ad:7a:29:4e:ea:aa:61:c3:41:4e:7f:79:
f2:98:89:d8:63:4d:77:d0:bf:a4:e2:6e:fc:ab:c9:
e4:a4:89:82:eb:11:94:12:d0:44:dd:37:ee:a9:dd:
ba:04:7a:d8:3c:6a:05:2c:a6:d4:e4:3a:f9:d7:f6:
b0:1c:ad:90:06:7a:ae:af:91:6d:5a:d1:dc:65:b3:
e0:6c:28:14:17:f8:9a:eb:c5:3e:f5:43:11:8d:9c:
1d:57:25:d9:b8:3b:97:22:54:5c:2d:13:bb:e7:0e:
75:d2:0d:cd:29:68:91:0d:b6:7c:a9:cd:45:c7:6a:
3b:d6:25:5c:06:38:34:d9:5a:f1:95:13:6d:3a:59:
d1:fe:78:d3:21:21:7b:2c:3a:f9:b0:7f:01:8d:42:
14:d9:7e:74:97:4c:5c:82:ea:55:90:1c:62:2b:fc:
ed:9b:02:ba:ae:a0:f0:e6:99:7b:e2:ee:a5:29:37:
9f:04:8e:48:ce:97:f7:33:84:cf:95:3c:98:5a:82:
e6:0b:6a:c2:e3:21:57:ef:4c:aa:5a:be:df:ec:91:
85:9f:30:e9:76:c6:ab:1e:4e:ea:16:94:f6:8a:d4:
26:f8:ad:df:e9:f2:e9:8d:68:7e:82:8d:58:c5:d3:
b1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:6A:B5:F5:03:58:67:E5:A4:D4:9E:9B:29:09:0A:AC:67:45:34:4C
X509v3 Authority Key Identifier:
keyid:5D:65:3D:07:DE:D1:E8:D7:F4:F2:EA:04:BD:36:84:2C:5B:12:F1:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:0f:a5:20:6f:2c:37:e7:93:5a:dd:ef:b9:7a:97:81:17:e7:
12:05:ea:6a:a7:c4:b9:3a:f4:8e:77:76:1a:d0:77:7d:db:f5:
d5:d3:f5:cc:bb:b1:21:16:31:30:80:79:35:b4:2f:f1:ec:fc:
a4:36:86:d6:46:84:68:97:28:1e:dc:93:af:4d:37:2d:6c:31:
91:33:dd:08:b0:2c:55:32:4e:6f:de:02:71:cb:2f:b8:77:b7:
6c:07:38:a7:59:c2:6f:ae:99:a7:64:2c:29:44:1f:d1:51:d7:
9d:3c:4f:8f:9c:ff:a8:6f:5c:41:95:d7:d0:12:c9:ce:a3:52:
4f:7a:30:e5:ff:ed:33:8f:64:83:fe:13:6a:ff:1d:ba:85:ed:
23:b0:e0:72:38:79:95:e1:1f:50:56:a2:8a:45:d8:52:13:ed:
81:0e:34:25:a4:ac:5a:61:96:3d:fe:2c:d9:9d:c5:18:cf:f9:
96:6e:4e:c7:33:53:bc:d4:e4:b4:a9:ff:37:74:7d:5f:9e:c9:
81:86:70:1e:a4:6b:38:68:64:a1:82:a2:1f:50:ba:1b:dd:be:
ee:d0:1b:37:f4:4f:4b:f7:65:65:9a:41:de:4a:86:eb:a4:e2:
8c:b6:45:ac:de:51:41:dd:87:1d:4a:e3:8f:2d:6e:40:f5:2e:
d7:fd:f0:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:51:25 2024 by rpki-client on console-fra.rpki-client.org