Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.mft
File: UnFDjiPOkl5mwlmYEiG1toOi8I8.mft (raw, json)
Hash identifier: BfcJcX7Z0PvCxThO1CUL560at9cctYAXTwFs6xIgylo=
Subject key identifier: 0A:30:92:C7:53:D0:DE:3B:6F:DB:4E:DB:B9:F8:38:FB:46:E6:06:BC
Authority key identifier: 52:71:43:8E:23:CE:92:5E:66:C2:59:98:12:21:B5:B6:83:A2:F0:8F
Certificate issuer: /CN=5271438e23ce925e66c259981221b5b683a2f08f
Certificate serial: 0193688F43D697A4F368148D1265B37A71A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UnFDjiPOkl5mwlmYEiG1toOi8I8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.mft
Manifest number: 08DE
Signing time: Tue 26 Nov 2024 13:00:39 +0000
Manifest this update: Tue 26 Nov 2024 13:00:39 +0000
Manifest next update: Wed 27 Nov 2024 13:00:39 +0000
Files and hashes: 1: UnFDjiPOkl5mwlmYEiG1toOi8I8.crl (hash: 1b7Bsp5PFEV9LudAt1nUHOO/oECbklQaZPoyD/RK27Q=)
2: cwvKU8W0KCySWa6zqN8ceB0AoXA.roa (hash: JKqcY9WoS9/dSu84LpVthW7Z1wfR+y2tdw+reAd0UbI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UnFDjiPOkl5mwlmYEiG1toOi8I8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 13:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:8f:43:d6:97:a4:f3:68:14:8d:12:65:b3:7a:71:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5271438e23ce925e66c259981221b5b683a2f08f
Validity
Not Before: Nov 26 13:00:39 2024 GMT
Not After : Nov 27 13:00:39 2024 GMT
Subject: CN=0a3092c753d0de3b6fdb4edbb9f838fb46e606bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:11:78:05:f1:91:a9:9e:46:e8:ad:52:c4:76:
e8:8a:10:24:c7:17:63:06:3d:a9:3f:85:de:ae:0c:
8a:19:39:b0:99:d2:73:72:9c:9c:c6:f6:83:07:54:
6c:db:b3:8e:65:b3:21:66:1b:0a:bd:da:bd:df:25:
57:2e:1d:1b:0e:e3:ef:f3:f1:1e:00:50:b9:d7:39:
45:26:d1:c9:51:af:72:2e:22:86:09:17:1a:70:63:
8d:eb:10:1b:27:ae:41:ff:7d:1d:a5:66:2c:87:fe:
5c:43:f3:43:fe:9f:db:90:16:88:6b:db:07:66:b4:
c2:d9:17:d1:1e:b1:65:01:c7:48:6a:90:b8:01:29:
d8:e2:4c:cc:1d:3e:c6:1b:12:6e:81:b5:3d:ba:79:
76:f9:c5:fb:25:bb:e0:52:68:de:06:77:30:e0:7c:
8f:86:33:45:cc:48:23:4d:91:75:0d:67:ee:25:88:
52:bf:fb:29:88:47:9f:03:65:0c:24:53:42:ac:c8:
bd:54:f3:98:09:c2:8b:de:be:1f:f3:88:f3:a5:e6:
4b:eb:eb:ef:10:6c:15:e5:6c:d4:86:81:03:09:65:
44:af:a7:71:93:1d:bf:12:34:e7:a2:13:de:fa:02:
9a:4a:60:33:91:5d:c7:65:e0:e8:bf:a4:19:38:39:
06:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:30:92:C7:53:D0:DE:3B:6F:DB:4E:DB:B9:F8:38:FB:46:E6:06:BC
X509v3 Authority Key Identifier:
keyid:52:71:43:8E:23:CE:92:5E:66:C2:59:98:12:21:B5:B6:83:A2:F0:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UnFDjiPOkl5mwlmYEiG1toOi8I8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:23:36:ba:8e:54:81:c7:32:a5:50:04:52:ca:88:0c:a1:14:
bc:b8:93:eb:f5:f0:f4:9b:12:f5:29:fd:0f:29:a2:ca:5d:c5:
34:26:12:39:79:f5:79:af:4a:c6:e4:ed:46:f6:d5:b3:7c:6c:
86:65:71:90:17:fb:4b:ed:02:48:4b:9b:3b:a7:00:97:8e:de:
dd:95:e1:4a:a7:37:69:37:42:84:fb:ac:45:06:9c:c6:dc:c0:
14:1e:db:aa:ee:f4:f8:1d:04:e0:9f:8f:7c:17:4d:d3:6d:d9:
cc:0c:1c:0e:85:0d:7c:08:67:80:17:bd:27:17:88:70:2d:e3:
cf:41:fe:a1:2d:ef:04:0d:21:e9:9e:cc:5c:e1:7f:4e:e6:95:
26:8f:5e:26:44:f2:67:cc:e0:63:6b:49:8e:28:e4:4c:8f:b7:
70:b4:1b:3e:38:19:cf:f7:d4:f8:2a:94:53:f5:d2:80:ba:d5:
36:14:2a:bf:c1:e3:7f:c0:13:86:6b:28:18:4a:14:35:b2:08:
4c:40:db:5b:9d:ad:78:84:f5:7e:02:75:80:bf:bb:7a:a9:66:
f2:88:f3:6d:17:b7:ec:4a:0e:b5:c1:91:cd:68:ae:b7:de:ab:
5f:3d:04:e9:54:17:2d:f9:0b:16:db:9f:18:48:cb:ae:b2:b5:
3c:9f:2f:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 22:12:30 2024 by rpki-client on console-ams.rpki-client.org