Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
File: giKx_lqaAWNQKFrAeI08yrPrORk.mft (raw, json)
Hash identifier: cWjMN/GlIB87Q+iRt8n0E/bLWAI5zAPnAFQrf/ydZoM=
Subject key identifier: A6:05:6E:0A:42:3D:59:6B:77:D0:22:F6:BC:FB:67:38:35:7B:A3:59
Authority key identifier: 82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
Certificate issuer: /CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Certificate serial: 0193647BDDA7D09BB21FBE102C1EBC362A36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
Manifest number: 04C0
Signing time: Mon 25 Nov 2024 18:00:59 +0000
Manifest this update: Mon 25 Nov 2024 18:00:59 +0000
Manifest next update: Tue 26 Nov 2024 18:00:59 +0000
Files and hashes: 1: giKx_lqaAWNQKFrAeI08yrPrORk.crl (hash: AZwana7D5vENHVFqqRoTlUi+gR0p/FNLuLqspbtKdg8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 18:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:64:7b:dd:a7:d0:9b:b2:1f:be:10:2c:1e:bc:36:2a:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Validity
Not Before: Nov 25 18:00:59 2024 GMT
Not After : Nov 26 18:00:59 2024 GMT
Subject: CN=a6056e0a423d596b77d022f6bcfb6738357ba359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f7:13:7c:b2:4e:e5:53:48:3d:c0:45:d3:f3:
04:0d:fe:9a:37:8f:2e:89:2b:e0:f5:58:da:2c:35:
49:6c:7c:40:7f:7c:e3:cc:5c:86:fb:0e:8f:18:4d:
a8:ee:ea:36:9d:b8:ff:cc:17:64:fb:17:34:ac:5e:
b5:b5:63:a7:bf:6c:6c:8d:ba:a5:1f:de:ee:f2:5e:
e7:ae:d7:c6:f3:24:42:d9:77:9c:28:2d:b4:73:76:
cc:ef:f1:5f:21:5b:d5:33:b7:69:e3:fc:2c:84:ba:
27:b7:ea:4c:a6:df:37:19:cf:6d:54:70:41:6f:21:
4a:2f:0a:07:30:3a:77:54:1d:b1:0a:31:82:16:e8:
b8:6b:38:c0:ee:20:4f:96:9b:7e:0d:f1:bd:21:f2:
df:2f:6b:71:da:41:ce:5b:5b:51:5c:82:36:c2:7d:
5e:0a:c4:90:fd:8c:7a:30:b4:84:57:58:55:9c:91:
fc:e7:c0:3d:3a:5f:94:77:a7:bc:bb:7e:62:dc:81:
9b:7b:5b:c6:7c:e3:7a:47:b1:42:63:65:b2:dd:40:
88:a8:41:f9:40:f9:00:5c:fe:b8:f4:5f:a6:44:f6:
52:02:ac:08:b8:49:db:19:ce:27:0f:4d:fe:45:08:
3e:16:46:0e:f2:d0:e4:1b:29:b9:a8:7a:fa:63:32:
ae:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:05:6E:0A:42:3D:59:6B:77:D0:22:F6:BC:FB:67:38:35:7B:A3:59
X509v3 Authority Key Identifier:
keyid:82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:f2:24:50:b8:61:6c:12:30:51:f5:b3:9e:25:67:17:ee:39:
b3:df:5b:7a:d0:83:ac:76:ba:bc:c0:a0:1b:10:8a:e2:d8:ed:
c1:98:ee:05:2d:b9:5b:d0:d2:08:d7:e4:6b:65:b9:08:b3:b8:
0a:b1:52:29:fe:26:c3:dc:a6:5a:4e:c4:50:52:79:22:d4:a0:
a4:1b:96:c0:d4:54:00:a6:4b:1a:48:f5:b0:a8:ab:b5:82:0c:
19:1a:d8:a6:d9:8f:d5:1c:a9:9b:a4:bd:42:16:f5:af:22:b6:
54:a8:dd:f7:ed:88:5d:62:92:0e:15:3c:1f:02:dc:41:d0:3b:
88:a8:ba:72:88:72:cb:10:d6:fc:41:0d:5f:00:66:f3:38:29:
c3:6b:31:18:ad:d5:e7:21:06:d3:78:79:09:34:fc:95:28:0e:
d4:8b:14:4e:19:07:3e:14:5e:42:d9:4a:39:ff:61:ae:36:13:
07:b3:f1:27:42:6d:61:fa:31:11:88:da:e0:ca:5e:f0:11:02:
c3:d3:3a:82:ee:83:d8:55:9a:cf:fa:17:38:1e:b3:e4:07:7a:
c1:5f:f8:0f:a7:e2:13:3d:34:28:2a:f7:b8:97:78:78:bd:74:
90:80:31:be:8e:57:da:28:20:8a:19:a6:22:fe:dd:3f:b7:f4:
f2:f4:fe:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 02:55:37 2024 by rpki-client on console-fra.rpki-client.org