Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/02240f-e080-4be9-93c4-396fcda6490c/1/lW4xbJg4BMJQHsxavqU6KoO1cyQ.mft
File: lW4xbJg4BMJQHsxavqU6KoO1cyQ.mft (raw, json)
Hash identifier: FP25nywae+KP2bbRWi+9Wt9uIXDbdvNQOeW/8U/zxZ0=
Subject key identifier: 09:6C:7F:80:B1:02:97:E8:11:80:4C:51:B3:95:1D:58:85:AF:7F:6E
Authority key identifier: 95:6E:31:6C:98:38:04:C2:50:1E:CC:5A:BE:A5:3A:2A:83:B5:73:24
Certificate issuer: /CN=956e316c983804c2501ecc5abea53a2a83b57324
Certificate serial: 0193568A09302432E8ABCA73DFF85C8860B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lW4xbJg4BMJQHsxavqU6KoO1cyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/02240f-e080-4be9-93c4-396fcda6490c/1/lW4xbJg4BMJQHsxavqU6KoO1cyQ.mft
Manifest number: 1341
Signing time: Sat 23 Nov 2024 01:01:47 +0000
Manifest this update: Sat 23 Nov 2024 01:01:47 +0000
Manifest next update: Sun 24 Nov 2024 01:01:47 +0000
Files and hashes: 1: lW4xbJg4BMJQHsxavqU6KoO1cyQ.crl (hash: M34PSace5lCtPzio4S8gRL8kBrZ3lp/T8Aol9hfFvMk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/02240f-e080-4be9-93c4-396fcda6490c/1/lW4xbJg4BMJQHsxavqU6KoO1cyQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/02240f-e080-4be9-93c4-396fcda6490c/1/lW4xbJg4BMJQHsxavqU6KoO1cyQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/lW4xbJg4BMJQHsxavqU6KoO1cyQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:09:30:24:32:e8:ab:ca:73:df:f8:5c:88:60:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=956e316c983804c2501ecc5abea53a2a83b57324
Validity
Not Before: Nov 23 01:01:47 2024 GMT
Not After : Nov 24 01:01:47 2024 GMT
Subject: CN=096c7f80b10297e811804c51b3951d5885af7f6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ce:c1:b1:92:5e:95:19:82:b8:68:d3:2c:3d:
b6:77:00:6a:1e:00:5a:32:60:c1:b4:92:ac:29:13:
3f:19:90:6a:9f:25:8e:ff:d1:ef:10:a8:49:4d:53:
a3:e2:bc:da:97:db:34:d1:a5:97:be:16:32:b2:da:
b1:a9:da:b5:c2:17:0b:ee:f0:3d:b9:60:5f:c1:ca:
55:fb:e0:e6:e3:b6:4b:e4:85:64:91:61:ba:3e:92:
cf:95:b6:63:e7:74:68:65:aa:29:dd:1f:9e:8e:4b:
ce:3b:7f:27:36:52:de:25:78:aa:17:31:64:46:e1:
b8:00:eb:e7:96:1e:f5:6a:b6:0f:2c:10:6e:0c:1e:
64:eb:6c:81:c7:c2:d7:4a:f2:74:98:65:5a:c7:dc:
85:d4:3a:0a:ea:ac:89:3b:e4:53:34:b2:b0:d6:db:
16:e5:77:73:c0:d3:d3:43:48:4a:d2:0d:a4:94:a9:
49:af:55:4f:c6:2e:8f:37:3c:d9:80:85:ae:68:13:
20:57:10:52:b3:9f:95:fd:3a:98:8f:35:af:3c:1e:
b9:47:9d:55:11:cf:0d:3f:03:a0:aa:ae:b2:27:17:
7e:b1:de:f2:b8:03:89:30:bd:e5:70:3f:1a:66:33:
b5:47:67:8e:6a:1d:fb:e3:1c:36:85:50:72:ac:8c:
83:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:6C:7F:80:B1:02:97:E8:11:80:4C:51:B3:95:1D:58:85:AF:7F:6E
X509v3 Authority Key Identifier:
keyid:95:6E:31:6C:98:38:04:C2:50:1E:CC:5A:BE:A5:3A:2A:83:B5:73:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lW4xbJg4BMJQHsxavqU6KoO1cyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/02240f-e080-4be9-93c4-396fcda6490c/1/lW4xbJg4BMJQHsxavqU6KoO1cyQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/02240f-e080-4be9-93c4-396fcda6490c/1/lW4xbJg4BMJQHsxavqU6KoO1cyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:38:b6:17:ac:3d:5a:78:0c:1c:8f:b6:2e:e5:1c:e0:72:fb:
11:9a:06:c3:b2:47:5a:6b:21:08:a7:c9:84:27:98:ef:7f:27:
8f:aa:c7:5c:d6:64:87:63:94:45:57:b2:68:d4:6f:bd:6a:5b:
d0:e3:2b:19:66:33:04:66:f5:bb:8e:b6:b4:a6:5e:2b:af:79:
db:22:6c:82:2f:3d:73:10:8b:1e:52:75:b8:ae:1f:5d:26:14:
1f:f9:0f:11:8d:1b:1e:a3:76:cc:3a:95:e0:30:de:33:2e:69:
ad:e9:6f:d2:1f:4a:9e:d5:92:ca:04:a5:b0:1c:0e:5c:56:7c:
92:e3:cc:b4:74:0f:02:79:a4:c4:7a:25:e6:59:38:dc:05:4b:
02:bc:cb:ae:98:fe:69:ea:98:99:a4:f9:21:f8:29:ea:da:61:
10:ed:93:0f:61:ee:25:6c:5a:8d:09:58:73:34:b0:23:06:b7:
b6:e0:2a:99:7a:df:31:b6:1e:15:a7:e4:16:60:4f:97:02:e7:
15:d0:80:53:e0:e0:1b:60:19:bb:8d:a1:ba:3c:2d:ae:75:b3:
bb:40:07:ce:35:1e:1a:ff:08:6f:ca:20:e1:5f:6d:ff:de:f2:
b4:0c:c9:ad:e2:2e:ea:f7:1e:93:6c:af:ef:50:63:50:1c:db:
b6:0c:62:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:36:02 2024 by rpki-client on console-ams.rpki-client.org