Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
File: 20YNIBeVpqmS7UrBi7fFLBCLeFI.mft (raw, json)
Hash identifier: /PTNUZDG31oRHbdC5mZFuHvNzSdYDJ3ytmz/L/KcrrE=
Subject key identifier: 3E:53:2E:9B:7F:B8:58:B4:84:54:74:CD:F7:1E:DE:E6:AC:43:4B:31
Authority key identifier: DB:46:0D:20:17:95:A6:A9:92:ED:4A:C1:8B:B7:C5:2C:10:8B:78:52
Certificate issuer: /CN=db460d201795a6a992ed4ac18bb7c52c108b7852
Certificate serial: 0193572DBFD2D40E6261628C3A9157802A7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
Manifest number: 136D
Signing time: Sat 23 Nov 2024 04:00:36 +0000
Manifest this update: Sat 23 Nov 2024 04:00:36 +0000
Manifest next update: Sun 24 Nov 2024 04:00:36 +0000
Files and hashes: 1: 20YNIBeVpqmS7UrBi7fFLBCLeFI.crl (hash: i2XnuSlZEs4sZZ5tyXMJQFboJWsYdtkwkZtqNqlxIQo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:bf:d2:d4:0e:62:61:62:8c:3a:91:57:80:2a:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db460d201795a6a992ed4ac18bb7c52c108b7852
Validity
Not Before: Nov 23 04:00:36 2024 GMT
Not After : Nov 24 04:00:36 2024 GMT
Subject: CN=3e532e9b7fb858b4845474cdf71edee6ac434b31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:0c:08:a8:9c:57:14:dc:c3:2a:9b:3d:8b:ee:
8d:4b:99:14:2c:0c:1b:11:7c:c0:a3:73:14:2c:99:
6d:11:52:ce:18:48:93:48:3b:1a:67:71:37:ce:9e:
a4:ef:60:db:6d:29:49:b6:13:2d:df:c2:0f:41:d2:
9c:06:6f:d6:d9:0b:63:34:f1:27:b1:6f:09:e2:76:
55:2a:ca:96:2f:c5:92:1d:10:f3:09:b5:34:0a:a0:
41:08:8e:5c:c2:e6:12:51:b8:29:36:e7:c6:e2:40:
75:57:36:19:9a:23:ba:36:f8:17:fb:91:80:66:dd:
54:17:b8:ea:69:12:26:57:51:ea:b2:de:2b:23:ad:
a8:2b:ae:b6:48:6a:85:2a:1c:e3:d7:70:5e:20:b4:
44:5c:98:13:dc:a0:aa:1f:44:ef:3a:e3:aa:75:82:
45:b8:b1:8f:62:53:9a:36:29:b4:27:4a:20:51:19:
97:7b:6b:15:af:49:0a:87:e2:68:49:06:ed:f0:06:
95:df:b3:f5:c3:83:55:f0:71:1e:c4:05:e2:2e:21:
e7:3f:e4:18:26:44:f3:a4:74:3f:e0:de:02:f2:88:
cf:56:28:fc:4b:55:7d:ae:3b:49:8c:38:56:8b:f5:
7e:c5:5c:d3:e0:50:14:83:61:9b:45:cd:72:a5:ea:
b0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:53:2E:9B:7F:B8:58:B4:84:54:74:CD:F7:1E:DE:E6:AC:43:4B:31
X509v3 Authority Key Identifier:
keyid:DB:46:0D:20:17:95:A6:A9:92:ED:4A:C1:8B:B7:C5:2C:10:8B:78:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:28:e7:d4:5e:fd:86:03:28:0b:4a:27:df:69:90:42:1d:19:
18:70:90:27:e4:a0:2b:32:d6:24:69:86:e3:00:ca:2f:9d:a0:
d5:43:b5:2c:a8:84:5c:8a:7a:a4:8f:be:eb:4d:63:16:47:a9:
13:0a:79:3a:58:81:b6:b4:0d:dc:66:50:cd:29:2a:db:f7:7a:
6c:74:d2:f9:6a:d8:5b:b5:5c:f9:77:93:31:2c:ee:8e:ca:c6:
1c:ec:1d:58:3e:32:44:42:e8:8c:f0:37:79:51:87:13:e5:cc:
e1:84:79:c8:20:b4:16:88:d4:80:b7:3b:4d:ec:2d:d2:b9:2d:
9e:a7:c5:0e:ec:4d:c4:14:bf:59:03:78:82:b4:d1:ea:33:cb:
3d:16:c1:43:ae:29:12:b6:bc:d0:c4:80:26:be:01:d1:8d:da:
79:81:3c:d4:87:f4:d5:42:36:02:98:76:f6:2c:9c:53:47:e2:
dd:d0:be:f1:82:bf:4f:3c:1b:61:d7:28:49:59:8c:e6:6b:61:
7a:19:9d:de:fb:47:66:55:c6:d0:92:27:96:26:bd:bd:b0:41:
d4:72:f9:4a:49:fd:a4:1b:d6:f6:06:e6:ca:a2:a3:fc:74:ba:
d2:d9:a3:e9:62:0a:66:4a:a2:18:48:3d:fc:5e:b6:5f:64:bb:
e3:c9:b7:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:34:18 2024 by rpki-client on console-ams.rpki-client.org