Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
File: i9lSvUDOCXP5EEEfWS426QE2wuo.mft (raw, json)
Hash identifier: 88E4s+/nezH732h7YdqdJc0TdLm3aCwXvuVJkATMdk8=
Subject key identifier: 99:FD:99:DC:F7:0F:2A:5E:D9:AF:41:FD:1E:D1:DD:51:58:81:CD:E7
Authority key identifier: 8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
Certificate issuer: /CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Certificate serial: 019357D2680BC7D94D07EEA55489AB39BE5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
Manifest number: 04F1
Signing time: Sat 23 Nov 2024 07:00:26 +0000
Manifest this update: Sat 23 Nov 2024 07:00:26 +0000
Manifest next update: Sun 24 Nov 2024 07:00:26 +0000
Files and hashes: 1: i9lSvUDOCXP5EEEfWS426QE2wuo.crl (hash: exbCUDcWeTrDzx9zbzPYc7xVMYTxzFN2/YYxw8z/0R8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:68:0b:c7:d9:4d:07:ee:a5:54:89:ab:39:be:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Validity
Not Before: Nov 23 07:00:26 2024 GMT
Not After : Nov 24 07:00:26 2024 GMT
Subject: CN=99fd99dcf70f2a5ed9af41fd1ed1dd515881cde7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5e:f8:c8:c1:ab:c6:e6:2d:27:65:48:c3:77:
4e:43:d7:14:8f:03:23:95:eb:13:9d:a3:c0:85:fa:
2c:a7:87:a5:ef:9f:7a:8e:ba:d1:42:4a:07:47:3c:
e1:46:07:38:98:a5:da:07:d4:2c:e4:ef:06:4b:3e:
0d:d8:0f:97:70:79:a1:c4:08:e4:d5:d0:ac:db:1f:
99:33:dd:6a:c4:61:59:7f:9a:a5:bb:ff:f1:c1:85:
f9:87:db:99:26:77:85:b4:82:01:82:22:49:05:ac:
59:b6:c2:d7:e6:ea:6a:77:01:87:5a:5c:00:36:06:
6b:9f:39:84:8d:16:11:e4:a5:b2:a3:cd:e3:53:22:
6d:ee:f3:44:01:47:e0:d6:a6:1a:42:25:09:21:62:
4d:bc:b7:37:ec:96:5a:14:2f:96:08:6a:7e:0f:90:
76:5b:0b:81:ff:55:2d:f9:1e:2b:34:e2:ab:82:70:
10:a5:44:a1:e3:b1:62:7e:a6:04:63:dd:82:2b:58:
47:03:5f:3d:df:9e:6b:25:97:b4:ef:b0:20:50:d1:
fe:2f:b8:54:24:93:bc:78:a8:8f:07:9a:0e:fc:8f:
1f:a0:5a:e8:f9:aa:1f:4b:4c:2f:17:05:7e:8b:cf:
2b:b7:8c:52:54:9a:e2:31:d9:a5:55:b6:22:d6:02:
44:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:FD:99:DC:F7:0F:2A:5E:D9:AF:41:FD:1E:D1:DD:51:58:81:CD:E7
X509v3 Authority Key Identifier:
keyid:8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:58:25:cb:0b:d3:02:5a:a4:e8:4f:e8:07:bf:29:07:b5:eb:
cd:78:e5:08:f7:04:74:29:a7:c9:33:02:4d:3d:8c:1b:58:08:
dc:33:33:3a:8d:78:ac:1a:ea:64:34:31:22:6b:12:57:c3:bd:
76:27:c2:13:86:3a:2d:17:67:af:66:bc:fc:e8:5a:dc:c6:de:
27:76:eb:61:bd:98:57:f2:97:cc:f3:46:4a:0c:98:8e:35:67:
5f:87:53:17:b4:ee:81:07:78:39:fe:84:22:af:f5:c8:5f:cc:
0d:82:15:2e:81:e4:c3:b5:46:20:34:b8:1c:b2:43:b3:89:9c:
71:01:cb:57:44:ea:1f:1b:70:e3:f6:b7:87:1e:5e:c7:9c:09:
b5:e8:0e:df:29:00:2d:63:76:92:99:42:ea:ae:07:c1:fa:ed:
e6:30:de:c7:2b:50:fe:82:4b:9b:7c:ae:58:9a:3e:81:b5:e9:
a3:f4:6f:fb:e5:0a:a5:33:11:4f:62:b4:a5:fb:77:61:5c:73:
bd:6e:2c:92:f9:67:b7:f9:2d:be:5f:aa:66:26:08:b4:a2:a5:
7a:5f:0c:3d:36:4b:e0:2a:91:7d:60:c4:4c:00:c6:23:6f:4c:
b7:6c:3f:14:2b:0c:e2:17:86:0f:1e:e1:1a:f2:cb:d2:5b:a6:
5a:0a:9c:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:34:02 2024 by rpki-client on console-ams.rpki-client.org