Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
File: u0OX5un46iWRVggDysuzI5Ytn64.mft (raw, json)
Hash identifier: nV4t2Bht/X/j+nyQxVR1LzFB3P0+wyrWuc9hidkjX2w=
Subject key identifier: 3F:E9:D3:24:E0:2D:5A:0B:DB:CB:27:60:CF:E5:EC:85:A0:3B:4B:0D
Authority key identifier: BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE
Certificate issuer: /CN=bb4397e6e9f8ea2591560803cacbb323962d9fae
Certificate serial: 019369D97EA6BEE11E110DB5F503FDB37ABC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
Manifest number: 0DBB
Signing time: Tue 26 Nov 2024 19:01:21 +0000
Manifest this update: Tue 26 Nov 2024 19:01:21 +0000
Manifest next update: Wed 27 Nov 2024 19:01:21 +0000
Files and hashes: 1: u0OX5un46iWRVggDysuzI5Ytn64.crl (hash: HXecmVYVON5/HuhdPUjnZm2A8APE+VaKeoVMjkwpR4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:d9:7e:a6:be:e1:1e:11:0d:b5:f5:03:fd:b3:7a:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb4397e6e9f8ea2591560803cacbb323962d9fae
Validity
Not Before: Nov 26 19:01:21 2024 GMT
Not After : Nov 27 19:01:21 2024 GMT
Subject: CN=3fe9d324e02d5a0bdbcb2760cfe5ec85a03b4b0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4d:52:36:8e:ac:a0:a0:1f:4a:7b:e3:86:a1:
9b:85:0b:25:8c:5f:ff:fb:63:4d:6f:f3:d1:4f:1d:
5b:e5:6b:58:4a:ff:d7:b8:27:e3:90:51:72:ab:aa:
78:23:72:bb:7c:55:a1:38:14:79:ab:d0:c9:80:09:
84:66:74:0f:40:a3:e5:8e:89:88:02:12:a4:0f:29:
f9:7b:49:8f:07:0b:b2:e2:62:63:49:fb:de:86:f8:
dc:73:d5:ee:9c:dc:ee:d4:56:0f:52:06:24:03:5b:
49:e2:29:e8:18:03:1e:17:c5:f2:81:07:cb:4e:95:
84:b7:f5:9e:87:5f:a9:e7:ae:e9:67:6f:a8:47:fe:
19:fa:04:bc:20:f6:75:02:d7:42:2f:fa:4e:69:77:
e7:76:ec:bd:84:7b:b6:d3:a3:c2:9e:36:02:96:23:
e8:da:7f:70:d7:e5:51:e4:c5:1b:46:3e:2b:ca:04:
3a:c5:db:46:f2:49:a8:e0:90:53:95:29:77:8a:5d:
30:bd:de:45:fa:2c:91:86:bb:81:0b:05:64:59:b1:
5b:6c:9e:d8:8b:43:3f:e8:10:7c:11:84:f7:3f:20:
77:fb:1d:55:41:6a:81:83:91:a3:ba:22:4b:7e:d4:
6c:8c:6c:d9:75:24:b8:de:05:15:fb:96:97:92:d3:
9a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:E9:D3:24:E0:2D:5A:0B:DB:CB:27:60:CF:E5:EC:85:A0:3B:4B:0D
X509v3 Authority Key Identifier:
keyid:BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:4b:de:70:64:16:c1:f3:d4:78:6d:f4:7c:d5:33:6f:81:eb:
ea:f8:9a:ee:87:ad:94:ea:c0:51:c5:b1:8d:77:4c:c4:40:4b:
b7:1c:fb:8f:3c:87:b0:b2:7b:5f:6e:03:4a:ca:2d:ba:10:15:
22:a5:81:cc:2e:96:df:8c:2a:c6:9d:05:14:11:71:30:f4:18:
e1:df:11:77:cf:be:9a:43:f5:88:24:cd:c6:0e:e2:07:f1:be:
8d:58:51:56:45:60:82:da:a4:1f:64:ed:86:df:8b:81:5c:42:
47:3c:e4:15:8a:97:0b:bd:c5:2f:be:ae:4f:44:e8:5d:cd:7e:
91:75:d8:8e:44:85:b3:66:59:0a:43:23:0e:b9:b3:93:ea:21:
c0:21:33:f7:4a:78:42:79:3c:d4:b0:43:72:da:69:68:09:53:
ef:bd:d8:2d:fa:b4:f0:50:b4:2c:7c:62:2a:a7:15:ce:62:7d:
d0:6d:5a:28:0b:c0:f2:bd:32:fb:26:07:28:a7:74:c1:1e:54:
06:94:99:0a:5f:c8:f6:a0:e3:0e:16:32:f5:83:5c:1f:27:77:
39:ad:bd:a5:23:0f:c2:13:54:bb:ad:a4:ea:63:e1:04:22:12:
5e:0b:28:69:c7:9d:8b:d4:70:e0:86:fd:37:c1:4e:a9:1d:56:
b1:de:67:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 22:12:31 2024 by rpki-client on console-ams.rpki-client.org