Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft
File: TStBlpVqQxU0D4J9mSoPeikoTD4.mft (raw, json)
Hash identifier: x2wEMh5owSmsR8AM6qyxROO68CA0ugjU01W+7Ovx81A=
Subject key identifier: E4:3B:62:04:D3:CB:01:6A:6B:D3:24:41:B9:84:40:E9:92:90:0E:36
Authority key identifier: 4D:2B:41:96:95:6A:43:15:34:0F:82:7D:99:2A:0F:7A:29:28:4C:3E
Certificate issuer: /CN=4d2b4196956a4315340f827d992a0f7a29284c3e
Certificate serial: 01936B224588DE02FDB215D9F4C4371A7301
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft
Manifest number: 100B
Signing time: Wed 27 Nov 2024 01:00:28 +0000
Manifest this update: Wed 27 Nov 2024 01:00:28 +0000
Manifest next update: Thu 28 Nov 2024 01:00:28 +0000
Files and hashes: 1: TStBlpVqQxU0D4J9mSoPeikoTD4.crl (hash: WoAhzhP2M19MKIKpbaOk76PgVGCnOHyAh4BRzvC15m8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6b:22:45:88:de:02:fd:b2:15:d9:f4:c4:37:1a:73:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d2b4196956a4315340f827d992a0f7a29284c3e
Validity
Not Before: Nov 27 01:00:28 2024 GMT
Not After : Nov 28 01:00:28 2024 GMT
Subject: CN=e43b6204d3cb016a6bd32441b98440e992900e36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1f:8e:5a:ac:21:3d:54:b8:7b:aa:05:14:dd:
e8:cb:0c:82:f3:f8:c8:3e:c9:66:36:4b:e3:f1:21:
17:75:5e:ce:58:1a:7c:0d:95:47:7c:66:e3:c0:b1:
5e:35:52:4c:94:ae:19:e9:1b:4d:4e:71:31:85:a4:
20:b5:56:d4:c8:6d:06:89:6f:90:22:3a:60:ae:51:
28:8f:b4:4d:38:f0:3b:f0:e2:b9:2e:3f:1c:a0:fe:
04:6d:b8:29:31:17:73:85:a5:87:12:bb:46:d0:70:
95:c7:fb:35:e9:82:0c:a3:06:fa:6f:81:7a:6d:ee:
5b:e8:a7:62:47:d7:3f:d1:a7:67:2d:23:31:32:4d:
86:61:a2:13:e7:83:34:d7:12:b5:ca:20:4d:05:76:
b2:d6:df:fd:06:f9:6a:01:ee:b2:93:f2:ce:31:f3:
06:8f:3e:58:cb:c5:be:2e:1d:60:8e:15:64:2d:d3:
08:b8:d1:86:d1:1f:4b:71:8f:ea:db:32:a9:18:97:
d1:1e:1a:da:c2:7a:f9:a8:e0:ac:8f:05:cf:c7:5e:
39:34:12:f9:be:20:21:3f:e4:53:c0:36:48:69:50:
a8:c6:8c:51:93:b3:16:d9:07:56:f6:e4:bd:1f:80:
33:aa:36:35:aa:ee:40:49:67:3b:dd:b5:9e:b7:b4:
cd:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:3B:62:04:D3:CB:01:6A:6B:D3:24:41:B9:84:40:E9:92:90:0E:36
X509v3 Authority Key Identifier:
keyid:4D:2B:41:96:95:6A:43:15:34:0F:82:7D:99:2A:0F:7A:29:28:4C:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:40:13:cc:67:35:37:8c:1b:4d:5b:be:fb:a1:42:78:f8:d7:
bd:89:cf:6f:df:e9:e3:df:99:1d:05:5a:13:39:9d:74:42:4b:
55:78:f4:ab:89:5d:28:22:c1:6b:2f:8e:d9:4e:e8:57:c4:2c:
35:c2:7d:d9:1d:c1:88:30:54:5d:cf:36:67:6f:1c:c4:1c:1e:
2d:d0:3f:98:59:ea:b4:40:b0:44:41:1b:e9:87:e4:17:28:54:
11:45:16:eb:a0:7f:de:25:57:80:ac:f1:e4:20:20:5d:83:08:
5c:cb:83:cb:2e:5d:80:79:6d:8e:d8:05:b9:09:ff:fc:94:f5:
3d:29:29:cd:79:d5:bd:62:92:77:04:46:7a:56:6b:90:97:4a:
60:84:ed:ec:1e:b9:d4:42:52:a5:0c:93:49:15:4b:99:b1:1f:
dd:04:f5:e2:2a:17:1a:bf:36:c1:10:61:ec:4e:a2:61:da:f1:
5f:4c:de:0d:0d:66:a9:50:2a:7a:2a:07:f2:f1:6a:87:24:b9:
b2:b7:1a:8b:06:aa:4e:8a:10:c6:df:29:03:09:e7:e3:35:df:
2a:38:18:cb:c2:88:54:0b:fa:49:02:05:d0:b9:53:61:c9:a6:
b4:00:98:e9:98:b1:33:67:b9:4e:c6:14:1b:a6:70:d7:ae:81:
f5:3e:39:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:31:17 2024 by rpki-client on console-ams.rpki-client.org