Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.mft
File: spK68_TAei7dR9iMKxW2Wir33q0.mft (raw, json)
Hash identifier: M3FbedZ0M+Xy63q244jObeaw7V5wpX4crVbs96xEt7c=
Subject key identifier: 81:5C:05:6B:86:4A:E9:A0:DD:51:71:7A:C2:BE:AC:B6:DD:3E:C5:C1
Authority key identifier: B2:92:BA:F3:F4:C0:7A:2E:DD:47:D8:8C:2B:15:B6:5A:2A:F7:DE:AD
Certificate issuer: /CN=b292baf3f4c07a2edd47d88c2b15b65a2af7dead
Certificate serial: 01935878A72CD06F092FFE79BFF455E34EB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/spK68_TAei7dR9iMKxW2Wir33q0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.mft
Manifest number: 0A0A
Signing time: Sat 23 Nov 2024 10:02:02 +0000
Manifest this update: Sat 23 Nov 2024 10:02:02 +0000
Manifest next update: Sun 24 Nov 2024 10:02:02 +0000
Files and hashes: 1: spK68_TAei7dR9iMKxW2Wir33q0.crl (hash: VHdTZBypVyKWnl8Qc44Jk8r38ZNwpua51fSJoh3mtMQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.mft
rsync://rpki.ripe.net/repository/DEFAULT/spK68_TAei7dR9iMKxW2Wir33q0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:78:a7:2c:d0:6f:09:2f:fe:79:bf:f4:55:e3:4e:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b292baf3f4c07a2edd47d88c2b15b65a2af7dead
Validity
Not Before: Nov 23 10:02:02 2024 GMT
Not After : Nov 24 10:02:02 2024 GMT
Subject: CN=815c056b864ae9a0dd51717ac2beacb6dd3ec5c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:39:37:3a:74:bf:cb:32:eb:8e:b6:83:5c:1b:
0f:da:ea:21:ea:71:10:aa:59:61:05:3d:bf:40:0f:
15:66:35:4e:44:eb:a0:eb:5c:69:6b:39:bb:a5:ba:
f9:a5:20:5d:48:56:33:f9:a4:72:36:92:57:23:98:
74:5c:2f:02:14:3c:13:be:0a:a3:44:46:d9:91:9f:
b1:22:62:4a:bb:5f:5e:18:0f:a3:5a:bb:ad:5b:39:
e5:89:9d:ee:01:68:2a:08:f8:c9:09:a0:ad:f1:ad:
c8:28:ea:e3:be:b2:03:12:bd:1d:18:43:b6:ca:4d:
e2:96:79:e1:c9:69:32:70:fc:d4:fb:00:07:d1:0d:
74:02:f9:4b:8c:de:fc:62:1b:8f:9b:b1:14:66:98:
7c:8e:5d:5d:01:04:a3:9e:96:33:09:a4:2c:94:37:
0c:ac:58:20:d1:6a:e8:38:4d:45:57:e2:cf:47:60:
57:45:ee:2c:a7:68:d4:09:ed:41:a5:fa:ab:54:3b:
de:17:29:37:4c:1b:12:65:b2:e2:36:28:d3:76:18:
1d:a5:26:bd:ff:2c:fd:06:2c:b2:ce:b4:db:3b:19:
af:4c:b9:69:13:08:be:22:d6:5e:d8:9a:30:36:f8:
63:c2:f1:17:d7:da:7b:e5:71:90:ef:8c:fc:5a:68:
e3:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:5C:05:6B:86:4A:E9:A0:DD:51:71:7A:C2:BE:AC:B6:DD:3E:C5:C1
X509v3 Authority Key Identifier:
keyid:B2:92:BA:F3:F4:C0:7A:2E:DD:47:D8:8C:2B:15:B6:5A:2A:F7:DE:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/spK68_TAei7dR9iMKxW2Wir33q0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:7f:ff:9b:83:ad:94:98:86:25:17:65:ca:55:6e:85:92:8f:
55:0e:04:59:78:96:a2:3d:6f:e6:39:81:8a:00:e2:e8:67:53:
27:24:48:78:22:16:05:bb:e3:db:a9:dd:75:45:b8:a5:b0:d5:
7b:29:8b:56:c3:5f:08:5b:d8:94:8a:8b:8e:d2:2f:e7:34:5f:
e0:9c:df:50:f8:6b:7a:3b:87:0d:17:d6:93:ae:7b:7d:78:be:
ec:f7:a2:18:40:cb:d8:c3:07:07:24:6f:f1:c6:cc:12:44:ce:
ce:61:36:ff:e7:7f:18:d4:55:3d:9b:12:9e:7a:0f:36:a8:2c:
25:79:33:84:44:57:b2:35:f8:81:a1:67:34:45:87:4f:ca:32:
e9:9d:95:f7:a8:60:2f:42:8a:b1:e4:54:04:cd:bd:a4:6f:09:
68:3e:f8:fc:02:41:6c:7c:5b:c8:bf:7a:0c:73:3b:58:e2:5f:
8e:14:9e:d9:3e:31:af:f8:93:f1:ac:bb:c8:42:55:94:7a:f8:
52:86:a0:d8:4f:e8:14:72:86:6f:16:1f:0c:ef:60:62:08:7b:
9e:d0:eb:79:8b:a3:dd:c5:92:6c:f0:d5:bc:7f:49:d0:e8:97:
67:bd:5a:fd:ec:75:21:49:c8:d5:8d:c4:80:bd:1c:ec:2c:85:
10:06:f9:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:59:20 2024 by rpki-client on console-fra.rpki-client.org