Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
File: CYZDIBoqokoLh3o638p6iSBH2_w.mft (raw, json)
Hash identifier: yoAFnKP0YsWFM6V/BHz6H8zmyMJtptuOA7ZMyf4745U=
Subject key identifier: BF:5F:42:36:4A:87:87:93:EE:3D:6C:E2:44:AC:A4:61:35:6D:A7:23
Authority key identifier: 09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
Certificate issuer: /CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Certificate serial: 019357D283D5DADAB80C811564E04475AC6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
Manifest number: 0F8B
Signing time: Sat 23 Nov 2024 07:00:34 +0000
Manifest this update: Sat 23 Nov 2024 07:00:34 +0000
Manifest next update: Sun 24 Nov 2024 07:00:34 +0000
Files and hashes: 1: CYZDIBoqokoLh3o638p6iSBH2_w.crl (hash: 1VZGZW6lapd9ykPNEb8qqzdMfZ3n1rIJli32Gc66zf0=)
2: qVObmdZDcq_Sg7XpmnLyC6qhHWo.roa (hash: GsG35NAp/Mja98gHiO07YChpzk54rWAQ65txG5aOxdk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:83:d5:da:da:b8:0c:81:15:64:e0:44:75:ac:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Validity
Not Before: Nov 23 07:00:34 2024 GMT
Not After : Nov 24 07:00:34 2024 GMT
Subject: CN=bf5f42364a878793ee3d6ce244aca461356da723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a1:6f:55:a0:fc:cd:98:13:47:81:2f:3f:2c:
c9:a1:2c:ee:1f:ed:2f:03:da:71:38:19:0c:92:af:
2f:65:e4:40:dd:bc:a7:03:28:f6:12:26:dd:39:fc:
da:e9:f1:c7:42:b6:07:47:14:cb:73:47:34:1b:a7:
4f:d3:2b:d2:f9:bc:5f:0d:6e:5b:72:e5:3e:f7:b2:
0c:c3:de:18:f7:ee:0d:b9:0b:45:9b:73:6b:0c:7b:
60:a7:a1:de:c2:c2:8b:0f:a0:0a:c5:d2:09:cf:8c:
95:d3:ce:73:a5:13:d2:72:8c:db:96:a8:a5:0f:96:
a1:92:37:c2:33:05:bc:89:a6:c9:e5:6a:6e:4e:15:
2d:0a:95:de:f7:5a:4d:d4:08:9e:9b:14:c8:c6:c8:
ce:b6:08:48:c2:ee:81:3b:8a:93:38:45:81:14:57:
45:36:7f:d4:c5:4b:ee:70:f9:7e:b1:9e:5b:1f:43:
7f:77:a7:14:25:13:b7:87:5b:58:ae:da:7c:6d:bb:
6d:2f:fc:f3:c3:c4:48:7c:86:58:9b:c1:48:3c:cd:
22:e8:69:82:9e:77:2f:b2:af:80:95:f4:bf:76:7a:
a4:84:a6:4c:0e:6d:ee:13:5d:e5:41:8b:df:17:c7:
cc:ec:44:58:78:7a:00:d1:b9:90:86:29:74:36:53:
b8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:5F:42:36:4A:87:87:93:EE:3D:6C:E2:44:AC:A4:61:35:6D:A7:23
X509v3 Authority Key Identifier:
keyid:09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:1e:08:83:ff:dc:5c:a0:d2:9f:e0:d9:a9:a4:26:d6:69:3f:
3f:3d:cd:64:18:88:a2:d7:39:85:15:02:ff:ae:a3:bb:ca:e6:
4c:be:82:1e:73:8f:5a:0d:6e:b5:a3:76:16:c5:cb:ee:b1:ff:
93:46:22:46:49:3a:ed:77:0a:20:a3:ee:63:b0:32:7d:98:49:
6d:af:93:9c:6d:b8:21:fb:11:2c:21:af:83:f0:0b:81:46:bb:
8c:64:d5:87:6f:36:5a:c0:19:c4:41:48:e3:40:f1:03:2b:67:
8f:e7:3b:73:03:93:5d:ec:a8:c7:c1:c0:7d:06:c3:29:88:47:
97:6d:3e:9d:54:01:93:e9:06:f3:ef:08:73:07:31:e2:68:ad:
e0:3f:d5:e5:4b:23:1b:6b:9c:a7:02:bf:08:5c:6e:78:13:9b:
cc:85:26:24:bc:ac:63:21:e3:15:b5:c8:55:29:70:94:e5:65:
0c:c2:4c:bc:c4:8a:57:35:0b:12:a2:b2:88:84:43:57:61:9f:
06:4e:b9:38:de:9a:05:c4:7c:34:f2:c0:93:bd:78:6c:2c:5d:
72:ce:07:d1:d1:8e:64:2f:6b:39:78:b5:46:b5:76:d2:dd:54:
50:16:f0:bc:cd:77:af:73:5c:7d:be:00:a2:41:3b:9e:04:0e:
f0:ba:57:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:35:07 2024 by rpki-client on console-ams.rpki-client.org