Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
File: 1PhqmjxCnBvCbsBqOuTkF8p0394.mft (raw, json)
Hash identifier: 5PO1nRX3LXV+h6xcjxZlyZ4KKjvzLStgeHBjNy8ccqs=
Subject key identifier: 61:AD:9F:BA:05:E5:AC:EA:AC:B8:2A:A0:CC:FF:92:96:A4:02:77:73
Authority key identifier: D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
Certificate issuer: /CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Certificate serial: 019364E9357162FAC44D513607CC49236D6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
Manifest number: 0600
Signing time: Mon 25 Nov 2024 20:00:25 +0000
Manifest this update: Mon 25 Nov 2024 20:00:25 +0000
Manifest next update: Tue 26 Nov 2024 20:00:25 +0000
Files and hashes: 1: 1PhqmjxCnBvCbsBqOuTkF8p0394.crl (hash: g5dYISmFUBlSf9uer5hEZj0oifIiQpFrVWoxpEHRShs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 20:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:64:e9:35:71:62:fa:c4:4d:51:36:07:cc:49:23:6d:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Validity
Not Before: Nov 25 20:00:25 2024 GMT
Not After : Nov 26 20:00:25 2024 GMT
Subject: CN=61ad9fba05e5aceaacb82aa0ccff9296a4027773
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:17:31:67:48:ba:aa:49:94:e2:2b:61:f4:72:
9a:2c:89:5e:ca:9d:e0:42:2a:3a:3e:f0:f5:74:8e:
77:2f:83:9e:1a:35:f9:c4:1e:06:96:03:fd:7c:95:
25:23:b4:44:27:03:6e:bb:16:b0:91:82:9b:1a:aa:
d8:bf:dd:a9:95:35:c0:1e:72:01:47:95:f7:da:ed:
9f:c8:f3:df:01:de:f7:d1:59:6f:e7:7d:2a:c3:ea:
5a:bd:2f:d2:ea:9b:d5:72:3a:b0:e3:56:1f:d9:35:
53:69:fc:6b:2c:0c:11:9b:6c:66:eb:95:e5:fb:58:
d4:9a:ad:41:82:6f:3b:a3:c9:6c:94:88:23:16:e4:
c5:ad:56:0f:72:b1:83:d9:43:0d:14:95:f8:0b:36:
10:fc:73:70:bd:cf:bc:2b:e0:85:ad:a9:3f:fd:ad:
b2:90:0c:12:46:a4:d4:1d:f3:63:1b:04:7c:2c:17:
cb:af:d4:40:39:fc:dc:3a:99:3d:d9:9d:8e:9d:18:
01:1a:8a:95:d0:a6:d5:4c:09:2b:ae:50:4d:e5:11:
b6:a0:ec:e6:67:0b:21:c5:0f:e5:19:d7:aa:31:2f:
81:88:a3:3b:98:ee:8d:16:ff:8c:f8:88:ad:75:ea:
2f:c8:a5:42:cc:13:2c:93:e7:bd:4e:3c:9c:92:36:
5b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:AD:9F:BA:05:E5:AC:EA:AC:B8:2A:A0:CC:FF:92:96:A4:02:77:73
X509v3 Authority Key Identifier:
keyid:D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:30:41:63:aa:1e:a3:bd:e0:49:7a:6f:f8:1f:87:83:1a:4d:
9d:65:90:a9:d7:0d:39:d3:f5:ce:2e:a6:e3:46:f3:91:a5:4c:
ab:f2:d5:cb:c5:cc:b6:5d:1f:7c:1e:f5:3a:a5:80:7c:11:07:
0b:15:1d:02:ae:38:83:2f:7c:a5:59:cc:8f:22:bd:68:fc:45:
ed:b5:b5:46:67:44:37:e3:6d:9c:bf:4c:ad:74:7c:55:2c:00:
81:5d:a1:fa:bb:1a:d6:98:8e:be:c9:14:0c:34:ac:29:c7:d0:
68:cc:b2:29:dc:31:a5:08:45:58:33:65:63:68:f8:99:40:12:
d4:99:ba:de:b3:75:8b:14:a9:e9:db:c5:e8:e4:e3:78:76:b2:
41:4d:90:e2:a4:b9:a7:23:00:8f:d6:92:88:ff:03:5b:d1:38:
93:02:42:10:a9:ed:41:14:e7:42:7c:a9:03:fd:99:6c:83:ed:
37:36:48:04:da:89:10:57:86:26:32:f7:ab:08:06:c3:01:9e:
ea:67:e3:6d:c7:02:1d:31:9c:74:ce:2a:80:8e:08:98:0c:84:
a7:85:54:75:9d:6b:32:ae:50:32:65:7e:3c:96:94:f3:25:8d:
12:12:6a:80:9e:a1:dc:09:cf:f2:bd:14:30:f9:eb:6d:8b:3e:
9f:7c:cc:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 03:08:48 2024 by rpki-client on console-ams.rpki-client.org