Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
File: IaqfF_jMpH37krSQLSwrMgPb7aY.mft (raw, json)
Hash identifier: x40K/QF91zX/inTHnpat7U40PUmyzWPfRNcSLqjkwW4=
Subject key identifier: 9C:53:1B:B5:66:F3:36:B8:0B:19:23:6A:20:3F:B9:A8:11:CD:40:A8
Authority key identifier: 21:AA:9F:17:F8:CC:A4:7D:FB:92:B4:90:2D:2C:2B:32:03:DB:ED:A6
Certificate issuer: /CN=21aa9f17f8cca47dfb92b4902d2c2b3203dbeda6
Certificate serial: 0193568A3BE6D8E6736E7E2CE441A7A6C6FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
Manifest number: 040D
Signing time: Sat 23 Nov 2024 01:02:00 +0000
Manifest this update: Sat 23 Nov 2024 01:02:00 +0000
Manifest next update: Sun 24 Nov 2024 01:02:00 +0000
Files and hashes: 1: IaqfF_jMpH37krSQLSwrMgPb7aY.crl (hash: FUkjIjQ6ko9YmGNT5N+xcOgYMiqcTcPXcFNaShUvK8o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:3b:e6:d8:e6:73:6e:7e:2c:e4:41:a7:a6:c6:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21aa9f17f8cca47dfb92b4902d2c2b3203dbeda6
Validity
Not Before: Nov 23 01:02:00 2024 GMT
Not After : Nov 24 01:02:00 2024 GMT
Subject: CN=9c531bb566f336b80b19236a203fb9a811cd40a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:6f:bd:e5:03:3f:d0:72:01:08:43:dd:61:8b:
2b:98:56:a3:0f:bb:f2:c1:1a:52:4d:93:1f:a4:66:
2c:ff:6f:85:76:8b:6d:6f:fd:0a:55:71:2c:2a:a0:
59:e3:99:2f:bc:92:9e:9f:4e:01:8c:e1:e3:37:ca:
c8:21:82:8f:eb:b4:ba:bf:48:45:8a:ad:1e:fa:d5:
25:14:70:28:a4:a1:dc:f9:27:3d:b4:27:0d:e9:d5:
51:ba:5d:cd:f7:22:b9:a6:55:a0:6d:67:ad:fa:3e:
5f:3a:f4:c7:fa:bc:df:eb:27:04:47:c7:cb:2e:a5:
3e:6a:a0:6c:5d:7d:07:f8:5f:b5:24:56:52:60:b8:
8e:99:72:60:e6:ec:d8:cf:17:82:40:05:6c:9d:6c:
fa:45:e0:3e:6c:28:ae:90:7a:ef:0b:5f:05:48:de:
aa:98:44:6f:99:a5:ae:67:7a:da:67:e9:a9:c8:a7:
b5:6d:08:5e:17:44:fe:6a:ba:2b:a2:71:38:f7:71:
3c:52:4e:b8:1a:cf:a5:e8:84:8a:d8:c4:ea:ff:50:
bd:08:a7:a1:77:ea:c4:d7:d0:4b:a1:17:b7:6c:5f:
26:eb:08:2a:e4:a8:16:c2:0b:f9:37:4c:c2:da:2b:
f8:3b:00:59:be:cb:0b:ae:81:d2:67:05:b5:82:ff:
ea:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:53:1B:B5:66:F3:36:B8:0B:19:23:6A:20:3F:B9:A8:11:CD:40:A8
X509v3 Authority Key Identifier:
keyid:21:AA:9F:17:F8:CC:A4:7D:FB:92:B4:90:2D:2C:2B:32:03:DB:ED:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:80:2f:3c:e6:f7:33:c6:f9:67:21:a5:e2:94:f9:50:b6:fb:
e4:05:b4:05:47:32:42:c1:3e:99:9b:b9:96:01:e6:48:ad:c8:
4d:ae:3b:c1:71:4a:79:db:fa:98:44:87:78:8f:6a:0b:e7:41:
3c:48:d0:a2:d8:1d:e1:69:3a:36:a0:2a:15:b8:e8:c6:d7:8c:
4b:be:aa:7d:f4:44:8a:ff:e6:57:f0:7b:06:4d:18:23:a7:97:
5d:6b:8f:d1:e3:bb:52:af:20:56:a1:14:7a:c3:0e:c1:5c:b8:
98:09:a4:aa:2b:5e:ef:8d:ed:9b:2a:85:fc:a9:87:40:49:a5:
18:92:92:3b:75:8f:67:8c:a7:b9:af:b5:cb:c8:8b:89:64:24:
17:a3:75:fc:53:72:c8:3c:21:60:fd:82:36:e2:57:1e:9d:ff:
14:3c:1d:01:3e:93:96:18:36:08:90:37:3f:03:bb:28:b1:22:
71:82:b6:25:f3:f3:f6:27:95:70:f6:72:71:e1:62:52:66:00:
64:e5:b4:3c:ba:07:2c:25:b5:52:93:c7:36:17:d9:94:58:b4:
cc:33:7e:d4:62:78:ed:c5:a3:43:3c:b0:26:f0:6f:c4:ff:5d:
3a:50:95:e9:33:4e:d9:27:95:aa:90:1c:09:c4:fa:fb:18:d4:
a8:12:e7:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:54:19 2024 by rpki-client on console-fra.rpki-client.org