Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
File: OXqyKGxnhx2rRXpygyl_yMaIpK8.mft (raw, json)
Hash identifier: gsgpGQnNXWHtTnSe0rVZwnGiyA0g859giSyPr+TCAOs=
Subject key identifier: 44:13:2C:4E:01:33:FB:77:32:FF:DC:6A:FC:42:0E:39:90:40:BD:4C
Authority key identifier: 39:7A:B2:28:6C:67:87:1D:AB:45:7A:72:83:29:7F:C8:C6:88:A4:AF
Certificate issuer: /CN=397ab2286c67871dab457a7283297fc8c688a4af
Certificate serial: 01936A7DD04E6C143A26A42F4E8D0E44B365
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
Manifest number: 1378
Signing time: Tue 26 Nov 2024 22:00:50 +0000
Manifest this update: Tue 26 Nov 2024 22:00:50 +0000
Manifest next update: Wed 27 Nov 2024 22:00:50 +0000
Files and hashes: 1: OXqyKGxnhx2rRXpygyl_yMaIpK8.crl (hash: V/VQIO9XAf+ZOxKEicZ8cNnzMCHZkJn+21HIdOPAwvw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:7d:d0:4e:6c:14:3a:26:a4:2f:4e:8d:0e:44:b3:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=397ab2286c67871dab457a7283297fc8c688a4af
Validity
Not Before: Nov 26 22:00:50 2024 GMT
Not After : Nov 27 22:00:50 2024 GMT
Subject: CN=44132c4e0133fb7732ffdc6afc420e399040bd4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:19:ba:c2:27:7b:03:3b:f5:7c:45:31:fc:dc:
18:95:97:4b:c2:29:75:bd:de:92:9d:f6:0f:75:38:
14:4c:73:11:d2:21:bb:20:f8:ab:df:8e:eb:f5:b1:
ad:88:87:00:fb:f5:e4:27:d2:c9:0f:55:d2:49:f8:
14:56:bf:cb:c6:d1:cb:c8:78:25:04:a4:ff:86:0e:
d5:06:e2:e6:94:47:cb:13:ee:9f:47:9f:40:3e:1e:
47:46:e5:d4:31:ea:9f:c9:f4:f4:15:ad:65:18:0c:
61:38:fa:56:bb:c9:b4:d0:32:cc:5f:7e:35:7e:e7:
a6:d3:e7:7a:0c:62:fd:1a:5c:25:3a:95:d0:de:50:
0a:e2:34:29:eb:21:51:44:10:dd:d0:ed:86:31:62:
b1:3f:4b:a7:67:d3:08:27:75:46:2c:2d:64:63:00:
e4:49:7a:9c:96:1a:2f:d0:02:30:c0:94:f4:71:46:
1f:97:63:83:50:47:c7:03:5f:79:3e:19:19:5f:29:
6a:15:c9:5d:75:b5:f4:20:f9:40:55:10:ec:25:78:
e4:fc:48:e3:db:0c:54:48:82:39:89:ad:40:6a:98:
15:a6:37:52:e3:a1:54:62:3d:a3:bd:04:17:00:97:
b6:51:7e:3a:b2:d6:37:94:78:df:ae:9d:8d:c6:6a:
84:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:13:2C:4E:01:33:FB:77:32:FF:DC:6A:FC:42:0E:39:90:40:BD:4C
X509v3 Authority Key Identifier:
keyid:39:7A:B2:28:6C:67:87:1D:AB:45:7A:72:83:29:7F:C8:C6:88:A4:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:e8:42:b4:ca:85:e7:be:03:0e:55:6a:cd:3a:8c:7d:0e:ed:
7c:b9:34:fd:03:fa:22:6b:05:38:d9:e7:96:f5:f1:ea:b2:01:
ed:af:3a:da:ff:42:63:7e:a9:90:2a:de:17:80:5a:37:8f:07:
f0:b5:62:03:b7:9a:98:fa:08:75:a6:ff:ae:75:39:b2:3b:a8:
a8:67:ce:61:0b:f1:5e:3a:3c:34:27:a9:71:c5:9f:3a:23:01:
9b:32:a0:f7:96:91:de:40:e2:46:7d:de:b2:0d:bf:ac:5d:ba:
e6:9a:61:80:94:ed:ee:58:c2:b6:3f:97:0e:a6:40:14:e4:ad:
cd:12:2e:ad:b3:38:1b:25:3e:dc:cc:1f:a3:e1:7a:05:ac:b3:
75:09:91:1d:c4:3c:28:29:61:e7:a0:5c:ad:2c:92:1c:58:09:
75:eb:25:57:a7:89:5f:5c:f1:54:2f:00:65:ce:4d:77:53:c2:
59:59:96:4a:eb:36:9a:5f:f3:34:d6:fb:5b:b8:39:bf:fc:a1:
3b:ee:e4:80:a9:80:5c:0b:8c:d4:4d:80:2a:bb:27:de:af:61:
64:1f:7b:f2:fa:9e:6c:10:7b:72:6a:06:19:ae:f8:27:f3:47:
25:0c:e7:2e:14:15:ce:15:c6:15:c0:ba:9f:40:86:e9:f3:db:
ae:2e:05:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:42:24 2024 by rpki-client on console-fra.rpki-client.org