Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
File: 2PuW6jr1HFMtfo_oyUN29R4epAI.mft (raw, json)
Hash identifier: l0ARV9sNyh/LOHSj9iQPlgmre5hw7UbxA7UsATN5WDs=
Subject key identifier: F4:DC:4C:20:70:F1:95:84:5A:50:3E:18:BF:55:59:0F:5D:87:1F:F5
Authority key identifier: D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
Certificate issuer: /CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Certificate serial: 01935877C386CAA28E4A456E534BDFD3CCA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
Manifest number: 1196
Signing time: Sat 23 Nov 2024 10:01:03 +0000
Manifest this update: Sat 23 Nov 2024 10:01:03 +0000
Manifest next update: Sun 24 Nov 2024 10:01:03 +0000
Files and hashes: 1: 2PuW6jr1HFMtfo_oyUN29R4epAI.crl (hash: azybysU6JiGEbjvBTJZFb/ccfmjfkXdGwS3pYw1orUg=)
2: jSM3Bi_XfOAcOVqyCoG5w56OYfs.roa (hash: n9qNXAGvoQSW9doRyE6GLBoKJxyDiHjtIT8U1UWF+y8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:77:c3:86:ca:a2:8e:4a:45:6e:53:4b:df:d3:cc:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Validity
Not Before: Nov 23 10:01:03 2024 GMT
Not After : Nov 24 10:01:03 2024 GMT
Subject: CN=f4dc4c2070f195845a503e18bf55590f5d871ff5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:59:5b:7f:d9:99:78:b3:b0:dd:94:83:a8:ad:
65:24:56:ac:9d:a4:61:d7:7b:d1:bd:32:bc:88:e3:
3e:01:06:3f:71:cb:f9:f8:e0:ec:1f:cd:f2:af:b8:
d0:58:95:43:52:64:37:3d:dd:25:be:61:6d:1a:ab:
66:44:75:ae:aa:09:41:cd:7f:c5:0e:b2:aa:fb:a6:
86:9f:99:07:bc:2f:e7:3e:ef:78:35:df:42:c6:9b:
ae:70:29:9c:a7:ef:d8:10:8c:7e:b7:a9:0e:e4:0c:
5d:83:ba:a3:b3:8f:34:59:ec:c6:8c:84:e7:a1:36:
c7:09:38:0e:03:2a:b9:8a:75:7a:23:10:85:fb:02:
84:1a:7b:23:46:45:de:9b:ba:d7:18:b1:a6:d8:ef:
9d:67:19:8e:38:51:10:33:6d:ae:90:47:29:7f:31:
e5:d2:5f:11:85:69:b6:9f:5b:cc:d9:bd:57:f2:ba:
ce:fc:13:6f:6c:43:91:4d:3a:4e:df:80:e5:a0:01:
bc:a2:8d:6e:b7:76:76:5b:73:5f:a9:d6:25:95:8d:
a5:a5:b1:ee:5b:bb:b5:60:1b:d1:a4:c7:a9:c1:e3:
a0:07:71:a7:c5:b2:f5:07:52:87:cc:eb:94:40:39:
72:e3:22:79:44:79:d7:2a:59:06:13:03:3b:28:ad:
45:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:DC:4C:20:70:F1:95:84:5A:50:3E:18:BF:55:59:0F:5D:87:1F:F5
X509v3 Authority Key Identifier:
keyid:D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:42:39:79:47:39:6c:6e:f0:62:9a:0b:c5:8b:23:83:54:3f:
4f:58:d5:72:6b:5b:64:a6:18:f2:3e:f9:40:12:f6:e7:b5:4a:
63:27:94:2f:40:72:3d:1b:2d:df:a2:b1:00:a9:54:3c:1c:12:
30:ad:70:05:97:d0:a6:7c:c3:5b:31:69:5b:35:0a:b1:a5:9c:
bf:a8:4d:c7:71:f7:f2:77:30:8c:99:c6:96:b3:1f:af:96:b6:
47:f4:8a:df:10:ea:5f:8a:78:ea:0f:85:9d:96:d7:d8:28:c2:
fe:c1:cf:13:6c:0a:1e:8e:9e:f7:c2:b6:31:1c:71:15:9f:34:
76:a6:b0:57:4e:7c:f4:91:ae:a8:fc:a4:fe:40:14:e9:c0:47:
71:52:27:df:fc:60:b9:91:b3:ff:76:fd:54:7f:47:7d:d7:c9:
c1:32:17:59:bd:6b:c2:e6:5f:ca:dd:76:25:3f:6c:ef:a4:73:
5b:b3:a1:84:76:ba:21:25:4a:ac:64:a1:6e:c2:90:e7:bf:0c:
12:cc:1b:6e:0c:d4:b6:12:2b:41:1a:5d:8a:99:e3:e0:46:ef:
ef:1e:8b:26:69:05:68:df:95:43:ce:2c:8b:57:0a:4f:bb:53:
a1:45:d1:21:a4:3f:53:b5:b9:72:72:80:b7:20:9c:09:ef:52:
6c:41:46:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:59:09 2024 by rpki-client on console-fra.rpki-client.org