Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
File: BMWTwzo9oilIzOIyis8F2YoB8aU.mft (raw, json)
Hash identifier: Q8dzITWBxGpvEBVT8o16fex68jSiKNp4GXKqZtdPM1U=
Subject key identifier: F1:F1:BB:9F:E7:25:6A:D4:69:26:86:AE:AA:8C:E4:95:9B:15:65:6E
Authority key identifier: 04:C5:93:C3:3A:3D:A2:29:48:CC:E2:32:8A:CF:05:D9:8A:01:F1:A5
Certificate issuer: /CN=04c593c33a3da22948cce2328acf05d98a01f1a5
Certificate serial: 019369DAFAC18521E20103C93A25327D4FAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
Manifest number: 04AC
Signing time: Tue 26 Nov 2024 19:02:58 +0000
Manifest this update: Tue 26 Nov 2024 19:02:58 +0000
Manifest next update: Wed 27 Nov 2024 19:02:58 +0000
Files and hashes: 1: BMWTwzo9oilIzOIyis8F2YoB8aU.crl (hash: RMJSo7MCzOqQoKK2QZx6dWYlqWBDtLgmoFMheONqVTU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:da:fa:c1:85:21:e2:01:03:c9:3a:25:32:7d:4f:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04c593c33a3da22948cce2328acf05d98a01f1a5
Validity
Not Before: Nov 26 19:02:58 2024 GMT
Not After : Nov 27 19:02:58 2024 GMT
Subject: CN=f1f1bb9fe7256ad4692686aeaa8ce4959b15656e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:7b:fa:59:54:36:b8:56:26:64:4b:7f:8c:0c:
cc:85:87:ab:b5:89:a7:d6:c8:05:b4:b1:ad:fb:c6:
41:67:dd:3f:37:b1:18:0d:b1:4b:1b:32:cd:81:18:
f6:70:e3:af:7d:14:35:84:83:2b:66:33:fd:b4:e9:
7a:5e:df:dd:c0:83:4b:06:e5:97:bd:cd:95:1d:82:
d9:c1:ed:3a:6d:f3:54:67:a4:0d:6f:44:c1:43:7c:
7e:a0:74:73:ad:78:f0:33:76:0a:7b:1b:e7:32:3f:
e4:ed:65:8e:b7:0d:22:44:bf:a3:10:92:ee:1b:f3:
c1:ba:b6:e2:cf:63:a6:52:ba:87:f7:d9:22:36:cb:
9f:cf:6b:4c:0c:76:14:52:05:b1:8d:ee:e1:a4:fd:
04:7c:90:ef:70:13:0c:43:d8:49:1b:63:40:86:5c:
f5:d6:31:f4:4c:f5:55:a4:a8:50:92:a4:6d:84:f2:
90:98:c2:b2:a7:bd:86:64:5a:52:ca:13:da:ab:41:
d4:c2:62:a2:8f:1b:42:c7:5e:a5:d5:58:d2:51:52:
d6:ad:b0:f1:7c:c6:b5:c8:9d:13:0d:a4:a7:bf:9c:
12:f5:b7:af:eb:f3:02:fa:e6:71:b9:6b:5b:0b:84:
9a:41:b9:62:ee:79:99:c2:9d:06:c7:fd:49:e1:a0:
36:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:F1:BB:9F:E7:25:6A:D4:69:26:86:AE:AA:8C:E4:95:9B:15:65:6E
X509v3 Authority Key Identifier:
keyid:04:C5:93:C3:3A:3D:A2:29:48:CC:E2:32:8A:CF:05:D9:8A:01:F1:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:fb:e5:39:24:3c:50:9e:36:ab:7a:a7:ed:ed:8e:e8:e3:69:
e3:86:55:9f:db:98:86:64:16:c6:69:2b:ee:31:96:77:22:da:
3b:0d:99:f7:90:37:54:17:e3:fb:c8:c9:92:d6:c5:fa:e6:6c:
60:6a:99:81:10:c0:f2:db:0c:58:88:3c:75:0a:fc:57:13:65:
96:f3:06:d1:61:6d:07:24:45:29:c8:32:01:ab:58:bf:16:a9:
3b:30:86:a7:51:e3:b1:d1:5e:06:2a:0e:cc:93:b7:f5:be:fa:
97:35:fd:e6:ad:8a:9b:12:f9:b4:8f:f2:fb:0e:97:91:af:60:
b0:1c:d7:88:f4:8a:5a:64:7b:82:81:3e:25:f0:34:32:68:de:
0c:eb:bf:7b:dc:7a:40:88:7f:f6:06:74:30:1e:43:67:55:b3:
4f:ba:30:8a:1e:02:00:c1:51:cb:d2:0b:3a:51:28:f0:9c:33:
7a:f0:b1:71:dd:00:2d:4d:b4:e8:1d:73:2f:b1:15:a7:4a:41:
43:2a:b3:b2:f4:39:d3:36:65:2b:cb:c6:d4:6f:b4:a4:6d:d1:
45:6f:a4:50:db:97:a0:ae:52:1a:a6:03:f7:30:e9:9b:45:49:
ef:a3:c1:2c:54:ee:10:41:c3:ae:5b:4d:ee:fd:5e:dd:90:8f:
e1:e4:f7:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:16:37 2024 by rpki-client on console-ams.rpki-client.org