Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft
File: gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft (raw, json)
Hash identifier: Rkf1RKFw992nqJvaROn8NFR1lUovMalIrDKiBy0fqI0=
Subject key identifier: F6:16:B4:B1:8A:FC:B9:96:AE:4B:8D:1B:11:9E:B1:01:3D:A6:DC:1C
Authority key identifier: 81:9B:97:B2:0C:CB:4F:69:65:18:E4:7C:43:72:59:A8:91:3E:72:AE
Certificate issuer: /CN=819b97b20ccb4f696518e47c437259a8913e72ae
Certificate serial: 0193572DCB2BD957BACE7E9E62C45997AA27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft
Manifest number: 0DBF
Signing time: Sat 23 Nov 2024 04:00:39 +0000
Manifest this update: Sat 23 Nov 2024 04:00:39 +0000
Manifest next update: Sun 24 Nov 2024 04:00:39 +0000
Files and hashes: 1: gZuXsgzLT2llGOR8Q3JZqJE-cq4.crl (hash: Jm8G341339FhV+juGtuSwaaGgAqkpXzBhxNJKkkgVHU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft
rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:cb:2b:d9:57:ba:ce:7e:9e:62:c4:59:97:aa:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=819b97b20ccb4f696518e47c437259a8913e72ae
Validity
Not Before: Nov 23 04:00:39 2024 GMT
Not After : Nov 24 04:00:39 2024 GMT
Subject: CN=f616b4b18afcb996ae4b8d1b119eb1013da6dc1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:bd:9d:f5:6b:cf:eb:60:f4:1f:78:02:c2:fc:
09:68:f0:77:c5:0a:52:16:a6:f9:84:1d:e9:1e:b1:
c0:9e:ff:d9:c6:e4:6d:ad:90:d4:90:a0:dd:8f:b7:
81:55:eb:d5:8a:f6:c0:2d:75:a5:d0:14:49:c3:1a:
74:01:e7:40:bc:98:f9:a3:0f:d2:17:43:33:da:37:
24:74:32:cb:80:0f:2f:2d:a2:5d:0b:c7:cb:48:db:
7f:6f:a9:50:0e:c3:c7:f3:2f:e8:41:87:a4:87:37:
41:e8:47:4f:4a:0c:85:e7:11:e9:4d:ee:13:22:cc:
56:95:b2:46:47:5e:21:d3:95:c6:62:b9:e4:91:14:
1d:5b:ea:80:ac:21:8d:b5:f2:c7:38:6d:52:d8:d8:
b9:20:db:8d:4b:c0:d9:a0:b0:06:73:df:71:b6:2a:
ef:35:66:fa:ee:2f:91:42:b0:3a:6c:f2:f5:a1:d1:
60:ea:6d:72:76:01:85:f9:6f:74:bb:ad:78:ba:3c:
1b:c4:da:1b:20:cf:d7:93:0a:1d:3b:b5:c8:4b:f3:
6c:3c:14:e7:c4:2e:7d:e9:ea:9f:53:5f:df:38:3e:
d7:d1:6f:00:5f:4c:97:8a:eb:fa:4f:e5:1c:a3:3d:
84:da:3b:8c:43:52:ce:c5:03:4c:d3:a0:7b:c0:4d:
b6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:16:B4:B1:8A:FC:B9:96:AE:4B:8D:1B:11:9E:B1:01:3D:A6:DC:1C
X509v3 Authority Key Identifier:
keyid:81:9B:97:B2:0C:CB:4F:69:65:18:E4:7C:43:72:59:A8:91:3E:72:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:3a:f4:87:aa:23:93:4f:bf:eb:f3:9b:81:95:58:e2:3d:7a:
a8:98:9c:f7:cf:52:75:50:0e:a8:02:42:c5:b2:a2:ea:3e:48:
9a:10:c9:2d:bb:37:bf:2a:91:53:8a:ff:d8:9a:ba:1d:7b:b2:
7e:92:e2:0b:29:85:44:b0:60:f7:2e:b1:a8:40:a5:f7:14:97:
ea:b1:2d:21:37:5d:10:f9:d4:5d:56:59:62:13:b1:4b:26:49:
35:3d:43:9d:55:32:3c:94:3a:c6:d1:43:da:48:53:28:17:91:
e5:45:cd:78:70:43:17:05:92:d0:ef:c0:ee:a3:4e:b2:45:de:
ef:bb:fa:ef:81:ad:00:72:45:63:62:1f:f1:02:af:d9:64:e4:
f9:f8:6c:b7:32:64:2d:5a:c2:74:e1:97:ce:f1:40:f1:a0:ea:
82:d1:95:a5:b7:3f:ef:de:f7:3d:76:4d:46:ee:86:34:b7:46:
44:b4:16:3a:c6:06:c0:e2:ea:8b:fe:86:08:97:0a:d8:ab:b6:
8f:10:a8:38:40:fa:1e:23:b7:9d:25:ca:51:c8:9e:db:0a:15:
44:a3:5c:f3:20:ac:c8:72:1e:22:e5:8c:ba:1d:92:0b:ef:1a:
d8:38:52:73:c3:bd:fb:47:ac:5a:e5:4c:90:73:90:f7:ba:35:
e2:af:5c:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:54:52 2024 by rpki-client on console-fra.rpki-client.org