Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft
File: f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft (raw, json)
Hash identifier: 9FkMwlryt0BuH3g6wnVqCg7mj9LvMWWRwlMppr/wsbw=
Subject key identifier: F7:0F:69:2C:8C:B7:97:DC:04:52:CD:E0:E5:B2:EF:40:A3:48:80:03
Authority key identifier: 7F:4A:E5:7E:E6:E0:A9:C5:10:1F:C1:4A:87:A5:33:41:50:BB:AB:46
Certificate issuer: /CN=7f4ae57ee6e0a9c5101fc14a87a5334150bbab46
Certificate serial: 0193579B5E9AA33EBF3AB2CAA01EF9D2709E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f0rlfubgqcUQH8FKh6UzQVC7q0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft
Manifest number: 02C0
Signing time: Sat 23 Nov 2024 06:00:20 +0000
Manifest this update: Sat 23 Nov 2024 06:00:20 +0000
Manifest next update: Sun 24 Nov 2024 06:00:20 +0000
Files and hashes: 1: f0rlfubgqcUQH8FKh6UzQVC7q0Y.crl (hash: rBDSloAPuqmWrXhjkkiSnECA42RPsJG00SG7n82yjUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/f0rlfubgqcUQH8FKh6UzQVC7q0Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:5e:9a:a3:3e:bf:3a:b2:ca:a0:1e:f9:d2:70:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f4ae57ee6e0a9c5101fc14a87a5334150bbab46
Validity
Not Before: Nov 23 06:00:20 2024 GMT
Not After : Nov 24 06:00:20 2024 GMT
Subject: CN=f70f692c8cb797dc0452cde0e5b2ef40a3488003
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6f:cc:4e:46:52:f0:fe:da:70:d1:b5:a7:26:
ff:27:6d:ce:42:2c:57:0d:3a:a4:01:6b:7f:9e:b0:
b0:c8:27:55:76:c2:26:50:4f:fb:7d:2e:36:bc:db:
a8:65:a8:5d:bf:5c:29:82:7f:3d:bb:ae:f5:da:8a:
0c:8e:55:1d:aa:c2:fd:70:e5:e7:13:b4:e7:f0:08:
16:9a:eb:91:ac:9a:39:a2:7c:81:9e:9b:da:bd:b8:
05:53:90:63:2f:bf:44:11:08:9f:f2:a0:3e:33:a3:
40:d5:9b:bb:d8:9b:b1:27:29:c3:ac:52:dd:af:f1:
0c:f9:4b:d2:7f:30:e1:2f:3a:26:4b:fa:6f:86:55:
d3:eb:9c:27:60:63:c2:c0:42:8c:5f:16:de:4d:74:
ce:b1:ff:20:d8:fb:d9:45:9a:f7:0c:0a:5b:a2:a3:
fd:72:95:db:21:16:78:58:fd:10:dc:4d:4a:3e:29:
1d:32:60:fc:4a:e6:f7:0f:95:b0:59:14:07:3d:a7:
51:7b:79:61:20:3c:c4:ce:8b:8e:dd:d0:b1:93:d3:
67:42:26:7a:6a:4e:ac:5d:d9:86:4c:cf:36:1b:51:
bf:f2:29:bc:91:e2:06:4f:49:bd:49:82:75:98:16:
8f:de:4a:af:e9:05:3e:79:5b:07:6b:57:ae:4c:55:
55:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:0F:69:2C:8C:B7:97:DC:04:52:CD:E0:E5:B2:EF:40:A3:48:80:03
X509v3 Authority Key Identifier:
keyid:7F:4A:E5:7E:E6:E0:A9:C5:10:1F:C1:4A:87:A5:33:41:50:BB:AB:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0rlfubgqcUQH8FKh6UzQVC7q0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:43:69:f2:f2:11:7e:44:35:e2:8c:76:58:e8:83:35:04:8f:
85:3b:ba:1f:40:8c:b7:f8:6d:82:03:19:83:4b:18:14:96:3f:
1b:bb:bc:6e:f9:0c:f6:73:2e:07:64:52:b6:14:53:23:5f:c5:
fe:90:12:83:8c:27:15:4d:72:3a:3b:60:06:60:6d:c8:27:aa:
c2:52:1a:54:fd:74:13:60:ef:bb:88:d8:c2:13:04:1c:cd:e6:
33:d1:38:8f:98:b8:1c:c7:18:8b:d2:65:e1:b9:e4:ae:b0:96:
1a:2c:de:18:7c:46:56:72:21:a3:ae:d3:6f:e7:9d:17:5c:c4:
e5:6c:80:f3:91:ea:33:ba:79:6c:f0:09:89:6f:1d:d2:72:87:
6e:48:6a:fc:2b:f9:4f:43:5b:4f:d8:2d:14:16:5e:09:cf:85:
bf:60:72:ff:94:c9:b3:2e:9c:74:08:d0:14:7f:ab:7b:a3:00:
de:18:da:6a:06:ac:02:df:ea:ab:b9:b8:53:14:1f:6d:fe:19:
f6:19:0e:20:50:41:17:dc:9a:47:f9:fb:2c:80:39:3b:8d:a0:
df:ef:50:09:33:80:95:f4:5c:4e:cb:e9:87:ed:8c:f1:63:e0:
8d:51:f7:d0:8d:d6:af:e6:3c:f6:5e:59:8f:93:6b:d0:ae:df:
e0:3a:d9:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:37:01 2024 by rpki-client on console-ams.rpki-client.org