Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
File: soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft (raw, json)
Hash identifier: QCYWyktfKd3h+hf2+Qge9z4sQRy3/HWVguQ3fqugAKY=
Subject key identifier: 60:AD:C3:14:CD:2F:C0:9F:0C:34:52:FD:61:1C:27:6B:1E:B8:23:5A
Authority key identifier: B2:84:CD:F0:50:74:43:E1:6E:50:9D:57:A2:29:E9:14:F7:35:66:A4
Certificate issuer: /CN=b284cdf0507443e16e509d57a229e914f73566a4
Certificate serial: 01936B22AFA071DED308B2B57F50C346B880
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
Manifest number: 1222
Signing time: Wed 27 Nov 2024 01:00:55 +0000
Manifest this update: Wed 27 Nov 2024 01:00:55 +0000
Manifest next update: Thu 28 Nov 2024 01:00:55 +0000
Files and hashes: 1: soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl (hash: qYY+xYB6rLr9YPh0Ao/MXV8Yz0+N7Jfm4snX2c5DJa8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6b:22:af:a0:71:de:d3:08:b2:b5:7f:50:c3:46:b8:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b284cdf0507443e16e509d57a229e914f73566a4
Validity
Not Before: Nov 27 01:00:55 2024 GMT
Not After : Nov 28 01:00:55 2024 GMT
Subject: CN=60adc314cd2fc09f0c3452fd611c276b1eb8235a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c5:2a:25:6a:fa:4c:1c:84:3e:7f:f6:03:c5:
2c:52:2b:ee:0b:09:5f:ec:70:27:10:6d:68:99:d2:
e6:c5:c5:63:b2:5c:fc:58:5e:0e:20:81:7f:cd:e0:
da:3b:d6:2a:2a:bc:33:64:11:5b:8a:66:e9:ed:d4:
af:ac:41:e0:61:96:88:50:ad:0c:da:cb:ed:38:c2:
90:19:90:ab:56:26:65:06:a8:25:fa:39:b0:b4:3b:
40:07:7a:75:37:7c:88:82:e6:2b:21:03:be:7f:d0:
3c:5d:a5:ee:fc:50:d6:86:f9:b1:2f:4a:56:7c:ae:
12:8b:e2:db:36:20:53:c8:b0:c0:f5:15:47:2c:6a:
80:aa:36:3a:3e:c7:65:99:9c:16:ce:85:d3:fd:cf:
cf:e9:a3:0f:6c:c5:0a:0c:1d:5c:72:ab:7f:59:e2:
64:ef:9d:8b:70:3d:0c:6d:ad:44:35:14:cf:90:48:
ae:30:e6:e1:5b:37:44:55:5c:3a:4a:66:5f:03:12:
81:aa:f2:e6:fb:95:46:b7:ac:fa:1e:23:d6:4e:43:
0f:1b:ce:41:9c:57:60:c4:39:e5:4a:fa:e4:e1:c0:
5d:1d:b3:53:49:fd:02:a6:ee:e0:6f:a4:85:68:44:
d2:38:19:c2:34:a8:93:b8:71:a4:50:5b:7a:9b:01:
61:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:AD:C3:14:CD:2F:C0:9F:0C:34:52:FD:61:1C:27:6B:1E:B8:23:5A
X509v3 Authority Key Identifier:
keyid:B2:84:CD:F0:50:74:43:E1:6E:50:9D:57:A2:29:E9:14:F7:35:66:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:41:88:98:f9:d3:06:5d:a0:2a:d6:ab:6f:a3:18:3c:4e:63:
d2:fb:a6:3d:af:b8:1f:98:c9:34:b4:be:05:20:d3:23:77:57:
e3:d7:ec:79:21:a9:59:9f:6d:ea:77:f0:d9:35:65:04:18:f0:
10:54:57:79:ab:48:17:3b:93:22:59:dd:85:a8:83:7b:b3:11:
8d:f0:b0:09:8b:e4:f9:b1:58:3e:aa:27:63:ea:52:84:46:c0:
19:ba:1a:86:3e:8e:40:e8:c6:42:41:81:77:65:4d:a4:cc:df:
8e:41:46:59:9e:48:6e:c9:7d:6e:68:72:54:ff:d9:de:16:6b:
96:87:d5:29:f9:6e:04:64:61:af:49:f6:74:5e:61:07:61:82:
1a:d2:02:d1:fe:12:64:bb:7b:2d:4d:04:1d:22:17:1b:21:31:
e6:4b:d2:ad:6c:98:e6:4c:86:82:14:95:18:ca:e0:69:8f:c0:
97:4a:a6:80:80:57:db:aa:a2:55:05:13:d2:44:57:9d:0f:e0:
b2:2f:50:14:a5:c3:10:c8:44:28:78:39:e9:bf:9f:8c:cb:bb:
e6:e0:5d:6c:81:ad:cd:e9:a3:33:1b:81:3e:cf:0f:96:f4:6a:
7d:83:27:c8:75:1a:98:e4:e3:52:91:3b:2d:07:d4:68:e3:09:
3b:05:ae:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:31:09 2024 by rpki-client on console-ams.rpki-client.org