Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.mft
File: 3VShBsGZ81M-VritvPpLGsPmkJ8.mft (raw, json)
Hash identifier: IWO/djRCy+K07tkl9vdbXRtwQM/VvDWy8MZNIo9W3sA=
Subject key identifier: 79:37:BE:DD:DC:50:4E:43:B5:08:BB:A1:EB:1F:9C:5D:D3:63:3C:49
Authority key identifier: DD:54:A1:06:C1:99:F3:53:3E:56:B8:AD:BC:FA:4B:1A:C3:E6:90:9F
Certificate issuer: /CN=dd54a106c199f3533e56b8adbcfa4b1ac3e6909f
Certificate serial: 0193568A18E0EF34836D7BC770A0FC5F1956
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VShBsGZ81M-VritvPpLGsPmkJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.mft
Manifest number: 063D
Signing time: Sat 23 Nov 2024 01:01:51 +0000
Manifest this update: Sat 23 Nov 2024 01:01:51 +0000
Manifest next update: Sun 24 Nov 2024 01:01:51 +0000
Files and hashes: 1: 3VShBsGZ81M-VritvPpLGsPmkJ8.crl (hash: Aw9cqapcHm+DjuEeDfJU420GKnSWO68WPdTGk8xBwwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VShBsGZ81M-VritvPpLGsPmkJ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:18:e0:ef:34:83:6d:7b:c7:70:a0:fc:5f:19:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd54a106c199f3533e56b8adbcfa4b1ac3e6909f
Validity
Not Before: Nov 23 01:01:51 2024 GMT
Not After : Nov 24 01:01:51 2024 GMT
Subject: CN=7937bedddc504e43b508bba1eb1f9c5dd3633c49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:28:db:b7:00:7b:20:58:db:89:02:c8:a9:1e:
8b:ff:7f:35:bd:ad:a9:55:c3:4b:78:67:a3:09:52:
a5:7e:6d:ec:ae:fa:3d:7a:84:31:1f:7a:5d:3b:90:
45:ca:77:99:cf:17:97:58:5b:d9:8f:68:82:93:23:
f6:a9:1b:b1:60:2a:33:f6:a2:85:98:4f:f7:02:cf:
2f:5b:31:f7:e0:a5:20:23:e8:25:79:19:d7:b1:52:
ac:72:dd:1a:b8:b9:ad:7c:06:3a:06:d1:0e:77:ac:
a4:8b:63:b5:62:ce:47:d1:7f:96:3b:05:92:52:95:
28:4e:7e:d5:a7:9e:8a:5a:ca:cc:12:99:25:33:db:
d7:4b:89:86:16:07:4c:b8:44:a9:b1:d1:02:d8:fe:
17:2e:f0:27:17:3c:e3:4f:67:9a:ee:c3:f7:b0:21:
64:1a:12:2f:d7:db:c2:1e:5e:ad:b2:ea:5b:b9:75:
5f:1b:35:22:95:97:30:10:6b:10:d4:e7:a6:55:ca:
9a:59:fe:07:1a:29:6c:ab:6c:d6:d1:36:1c:e9:e2:
cb:bd:1a:ce:54:f6:85:7d:41:46:70:de:be:89:8f:
77:ed:ca:68:7c:59:fd:50:8b:e4:98:8f:bc:59:a1:
fb:7f:a2:81:19:73:aa:ff:c8:0f:a2:13:9e:8e:1d:
18:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:37:BE:DD:DC:50:4E:43:B5:08:BB:A1:EB:1F:9C:5D:D3:63:3C:49
X509v3 Authority Key Identifier:
keyid:DD:54:A1:06:C1:99:F3:53:3E:56:B8:AD:BC:FA:4B:1A:C3:E6:90:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VShBsGZ81M-VritvPpLGsPmkJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:5b:f0:e3:a4:d0:da:24:4c:6a:eb:10:ab:e9:46:ea:bd:c0:
6d:c2:37:36:03:3b:d1:13:f2:70:02:aa:63:84:26:0a:ce:ca:
44:8a:05:4d:79:8e:34:33:d8:d1:ba:aa:01:04:58:a0:7c:95:
33:5a:cc:1f:ad:b7:b9:f5:3c:96:e5:0e:9f:99:2a:b5:00:f2:
a6:2b:d2:6b:6c:ea:4d:d1:62:d0:d7:e4:e9:9f:27:7d:60:07:
e6:d2:9b:c5:4c:f0:ca:70:77:8f:bc:4b:16:12:ca:f8:76:18:
e7:f0:71:af:2b:14:c7:b7:4f:79:20:3a:f2:de:c9:9d:53:0b:
5e:66:b2:ac:38:fa:74:40:8d:ba:0e:e5:43:66:89:cd:7c:35:
29:d2:04:e6:f7:da:c2:02:31:1d:6d:84:01:1c:bb:82:a1:59:
4f:a4:1e:ee:27:d1:a1:82:ad:37:5e:6a:f3:30:c0:d4:9f:02:
4e:e1:0f:b9:ce:60:9c:dc:87:95:a2:1b:24:aa:68:33:58:ba:
b1:3b:6e:cf:2d:f5:eb:f7:5b:9f:dd:4e:bf:61:4b:51:b1:08:
b3:51:1e:24:43:be:41:53:75:e1:b4:aa:cb:bb:46:3e:06:f5:
be:72:33:d7:98:ae:6e:9f:12:b8:d2:4d:88:83:ed:8c:1d:65:
81:5c:3c:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:54:09 2024 by rpki-client on console-fra.rpki-client.org