Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/67b42a-cac3-4216-b518-d74a4d4f52b4/1/IKo_sAxQTBoJEqNJWo49uvPZako.mft
File: IKo_sAxQTBoJEqNJWo49uvPZako.mft (raw, json)
Hash identifier: vEmjuBri8vZNwCJ7KWmc+Dt1aS4ygV+/08wpw2ohSeo=
Subject key identifier: 88:99:B1:3B:9E:70:BE:02:6E:03:EB:5C:83:15:B4:57:AC:CE:29:5E
Authority key identifier: 20:AA:3F:B0:0C:50:4C:1A:09:12:A3:49:5A:8E:3D:BA:F3:D9:6A:4A
Certificate issuer: /CN=20aa3fb00c504c1a0912a3495a8e3dbaf3d96a4a
Certificate serial: 019356899EDA8E03CA1564D2C3C720A51D88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKo_sAxQTBoJEqNJWo49uvPZako.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/67b42a-cac3-4216-b518-d74a4d4f52b4/1/IKo_sAxQTBoJEqNJWo49uvPZako.mft
Manifest number: 0395
Signing time: Sat 23 Nov 2024 01:01:19 +0000
Manifest this update: Sat 23 Nov 2024 01:01:19 +0000
Manifest next update: Sun 24 Nov 2024 01:01:19 +0000
Files and hashes: 1: IKo_sAxQTBoJEqNJWo49uvPZako.crl (hash: rlvfec7IB2BNSNvPf4L+BIpO1RYAcX1X9Au5JkOuTUA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/67b42a-cac3-4216-b518-d74a4d4f52b4/1/IKo_sAxQTBoJEqNJWo49uvPZako.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/67b42a-cac3-4216-b518-d74a4d4f52b4/1/IKo_sAxQTBoJEqNJWo49uvPZako.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKo_sAxQTBoJEqNJWo49uvPZako.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:9e:da:8e:03:ca:15:64:d2:c3:c7:20:a5:1d:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20aa3fb00c504c1a0912a3495a8e3dbaf3d96a4a
Validity
Not Before: Nov 23 01:01:19 2024 GMT
Not After : Nov 24 01:01:19 2024 GMT
Subject: CN=8899b13b9e70be026e03eb5c8315b457acce295e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:b5:d3:61:f1:17:37:0f:56:5c:19:70:09:11:
85:21:7e:19:9e:c8:1f:e9:37:a1:2b:87:88:0e:49:
bb:11:1d:26:c1:d2:54:a0:76:82:64:b0:ff:6a:e1:
93:d7:86:d0:64:c4:e6:42:f7:d8:1c:bb:2e:ab:6f:
04:0e:9e:00:e8:15:d0:d8:88:7b:0f:09:e7:fd:19:
d2:b4:54:7a:d5:65:2f:48:57:b1:dd:7b:31:85:54:
35:5c:ca:4f:a4:8c:49:9b:d9:ba:0f:05:34:2a:e8:
04:2c:fd:82:f1:1a:07:42:fc:36:c6:c8:09:e7:f9:
ff:4c:ca:7e:af:15:51:86:a2:a9:83:79:11:80:00:
c7:5c:ef:b2:93:a3:93:29:4c:ec:61:b0:63:46:a9:
c0:fe:95:3d:68:05:c7:dd:2d:c7:f2:98:a9:58:45:
9f:9f:ff:15:3e:38:04:1a:29:3b:73:b1:11:3a:11:
f5:8e:df:15:95:ed:45:31:b1:e2:b3:7f:c2:ca:0e:
84:4f:3a:7f:26:87:fa:36:f7:ae:99:2e:99:88:4a:
51:66:3c:23:50:93:9d:53:a5:8a:ed:1b:29:66:07:
0c:c0:2e:14:f4:3d:aa:72:f0:d1:aa:aa:5f:44:52:
a4:10:bd:53:92:40:96:ff:a3:21:10:e4:1a:0a:8d:
12:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:99:B1:3B:9E:70:BE:02:6E:03:EB:5C:83:15:B4:57:AC:CE:29:5E
X509v3 Authority Key Identifier:
keyid:20:AA:3F:B0:0C:50:4C:1A:09:12:A3:49:5A:8E:3D:BA:F3:D9:6A:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKo_sAxQTBoJEqNJWo49uvPZako.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/67b42a-cac3-4216-b518-d74a4d4f52b4/1/IKo_sAxQTBoJEqNJWo49uvPZako.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/67b42a-cac3-4216-b518-d74a4d4f52b4/1/IKo_sAxQTBoJEqNJWo49uvPZako.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:0b:90:c2:3b:52:07:63:4c:74:ad:50:81:40:17:a7:c2:b5:
5e:ad:38:76:90:5f:ff:73:3a:49:0c:cb:b3:5a:12:3c:eb:da:
a9:a3:87:8d:1e:1c:b4:1d:ff:94:83:38:ad:82:0a:cd:0d:42:
4c:cb:69:78:3b:14:da:4c:5a:a3:14:fe:eb:68:82:80:ce:8e:
b0:eb:88:17:28:7b:7c:f3:55:2e:89:78:d9:7a:73:60:2a:bd:
4d:6c:05:42:da:7d:cf:12:fb:26:7f:ea:d4:cf:81:29:20:1a:
c3:b2:0a:4e:06:7d:20:0b:ae:8b:89:bb:1b:04:cf:81:bb:a6:
ec:16:59:c1:e0:48:ce:90:2b:1c:e2:4a:40:5d:ab:9b:b9:01:
79:4f:a8:32:4e:78:d2:fc:82:12:b6:27:8e:da:4a:4a:21:89:
67:c2:6e:98:d2:c4:84:42:5b:d5:52:e7:b1:35:68:26:c4:9c:
0e:ea:a6:37:d8:e3:ef:60:87:cf:37:b3:d8:a1:8f:d5:c5:dd:
58:83:a0:9f:6b:40:1a:5e:70:43:9f:56:d5:37:ef:9f:fc:cb:
26:53:ed:2c:a6:e7:8f:4d:b9:be:34:45:15:35:40:f2:3c:c2:
e0:dc:8b:1f:e3:cd:ed:f0:a9:a1:e9:30:4e:d4:dc:b2:8c:2e:
67:cc:9c:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:15:46 2024 by rpki-client on console-fra.rpki-client.org