Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.mft
File: iqrwV67ry_cGh34qqnSjljgL4hU.mft (raw, json)
Hash identifier: 6fPqBrkfOT4Y4brXUYTV+u5Z9hLW3cpYjBK0plOoadQ=
Subject key identifier: 31:18:11:AC:4D:DD:AC:3D:29:66:D4:BE:11:B5:70:77:09:FC:E8:52
Authority key identifier: 8A:AA:F0:57:AE:EB:CB:F7:06:87:7E:2A:AA:74:A3:96:38:0B:E2:15
Certificate issuer: /CN=8aaaf057aeebcbf706877e2aaa74a396380be215
Certificate serial: 0193572D94F34DA8B38C429730BC28FA5BF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iqrwV67ry_cGh34qqnSjljgL4hU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.mft
Manifest number: 0103
Signing time: Sat 23 Nov 2024 04:00:25 +0000
Manifest this update: Sat 23 Nov 2024 04:00:25 +0000
Manifest next update: Sun 24 Nov 2024 04:00:25 +0000
Files and hashes: 1: iqrwV67ry_cGh34qqnSjljgL4hU.crl (hash: nnWJg4pG5qkbRpLXF0bnNzWBUcSTJXTi0kyeuxsLWto=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iqrwV67ry_cGh34qqnSjljgL4hU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:94:f3:4d:a8:b3:8c:42:97:30:bc:28:fa:5b:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aaaf057aeebcbf706877e2aaa74a396380be215
Validity
Not Before: Nov 23 04:00:25 2024 GMT
Not After : Nov 24 04:00:25 2024 GMT
Subject: CN=311811ac4dddac3d2966d4be11b5707709fce852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:83:70:68:e4:ce:95:ca:42:bd:e2:c7:da:5e:
2c:c0:bf:35:1a:7e:41:f2:8a:af:28:2b:7a:8c:4b:
71:39:c8:c4:0e:0d:0d:6d:2d:5d:d4:98:e3:c3:77:
c8:37:38:97:a3:6f:73:5c:66:3a:8b:ea:19:9e:ae:
36:87:34:6c:7e:21:e5:d4:9b:b3:4c:58:71:0d:de:
9d:23:37:0b:2e:71:97:d6:ef:03:5c:74:a4:80:71:
20:0d:ab:63:c9:78:47:26:24:64:0a:45:70:2b:b1:
df:e3:b0:31:13:7f:13:4c:7c:d2:8f:50:35:6c:97:
2e:9d:6d:d3:b7:8a:85:bf:4a:9f:2a:da:14:bd:ec:
5e:6e:cd:48:a1:21:5f:4b:00:ce:cb:f9:eb:13:33:
f9:5d:18:11:38:61:4c:28:89:e7:e2:78:b3:90:12:
0a:8b:9b:f0:ba:2d:e3:cd:c7:c9:61:3f:8c:30:8d:
f6:19:ea:de:bd:62:d0:40:56:e6:16:88:85:c8:ec:
88:0b:ab:b9:3c:0c:95:7b:4b:d1:ce:24:43:2a:6b:
16:f1:c2:24:e4:8d:07:2e:68:dd:e6:ce:3f:11:ea:
1c:30:ea:d2:0d:47:d9:7a:77:9b:e5:49:9b:24:b6:
5e:3b:11:47:81:f0:0b:24:34:da:7f:3f:f8:50:3c:
6e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:18:11:AC:4D:DD:AC:3D:29:66:D4:BE:11:B5:70:77:09:FC:E8:52
X509v3 Authority Key Identifier:
keyid:8A:AA:F0:57:AE:EB:CB:F7:06:87:7E:2A:AA:74:A3:96:38:0B:E2:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqrwV67ry_cGh34qqnSjljgL4hU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:f8:67:9a:6a:76:dc:64:7a:24:14:a9:e1:58:db:8e:b1:c1:
d3:f2:72:99:14:d9:d1:d5:8a:93:40:66:71:b7:3d:73:00:5b:
42:65:de:bf:34:64:ac:67:b0:4e:4d:fe:4a:ad:6b:69:77:69:
aa:7a:87:51:1a:06:a8:aa:f3:a5:a4:8c:d7:a4:c2:ff:8f:7c:
9b:6f:9b:10:06:27:92:b0:07:80:50:8f:fa:01:e8:4e:14:31:
e2:56:22:9e:aa:a9:a6:32:40:0a:77:d5:07:b3:52:e8:b4:e3:
8e:39:a3:27:db:1e:93:14:53:61:67:d3:fd:35:b7:e7:15:3e:
c1:15:68:e5:2f:5e:08:17:9c:65:f6:be:63:d4:7b:9f:8b:30:
43:56:e5:3f:0d:c8:7d:f1:7c:8e:2b:ab:0c:36:07:93:cb:05:
3e:70:86:64:59:b6:e0:c3:ef:ce:4e:cf:9c:cb:8a:eb:88:19:
51:18:06:17:1f:70:21:30:1d:6c:5f:94:e0:70:89:9c:a0:26:
e2:78:56:ef:bb:5d:ac:e2:53:ac:f4:ce:76:75:a9:d1:d8:5a:
a6:e6:4b:52:51:d7:1c:c9:8c:8f:2c:88:51:13:c2:e4:6f:01:
72:62:88:1f:0a:a7:27:7d:61:30:2e:ef:3c:65:8c:11:d8:83:
bd:ab:96:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:40:07 2024 by rpki-client on console-ams.rpki-client.org