Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.mft
File: bxfKsp3wkGVUwRzpqynGDR56Z1w.mft (raw, json)
Hash identifier: XtJKJt3Xx7Pn2BuK5iAlgWCJ6gqB+MGcQfCUyQkjBmo=
Subject key identifier: 70:FF:4F:3F:0F:CA:E3:19:5B:73:5A:1A:98:D3:38:1D:D7:9E:28:75
Authority key identifier: 6F:17:CA:B2:9D:F0:90:65:54:C1:1C:E9:AB:29:C6:0D:1E:7A:67:5C
Certificate issuer: /CN=6f17cab29df0906554c11ce9ab29c60d1e7a675c
Certificate serial: 0193572DB9EAE1038375BC9CC00D333ADAE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxfKsp3wkGVUwRzpqynGDR56Z1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.mft
Manifest number: 0248
Signing time: Sat 23 Nov 2024 04:00:34 +0000
Manifest this update: Sat 23 Nov 2024 04:00:34 +0000
Manifest next update: Sun 24 Nov 2024 04:00:34 +0000
Files and hashes: 1: bxfKsp3wkGVUwRzpqynGDR56Z1w.crl (hash: Vfqf6Ck2bZOpMVBJJ/crRni7eQDeiEdTRtg6HG+if+U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/bxfKsp3wkGVUwRzpqynGDR56Z1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:b9:ea:e1:03:83:75:bc:9c:c0:0d:33:3a:da:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f17cab29df0906554c11ce9ab29c60d1e7a675c
Validity
Not Before: Nov 23 04:00:34 2024 GMT
Not After : Nov 24 04:00:34 2024 GMT
Subject: CN=70ff4f3f0fcae3195b735a1a98d3381dd79e2875
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:15:6a:fb:2e:4b:50:2c:4d:a4:dd:50:9d:eb:
bb:a4:54:fa:ea:f9:e2:71:89:d9:0f:01:c4:ad:e8:
51:f1:32:db:e9:69:4f:9b:d1:11:df:26:5b:ef:77:
d2:84:c3:ee:93:de:48:93:d7:6b:71:43:77:0a:4b:
dc:3c:71:38:7b:30:7a:73:4a:0a:f0:d5:d4:d6:dd:
49:f0:fe:b9:15:bf:d4:e9:2d:2e:fa:41:ff:b9:7d:
4f:f0:be:a8:c2:e9:53:1e:ce:fe:f3:2c:a1:5b:c7:
44:11:63:d5:6f:3d:76:3d:09:fe:92:c5:41:ab:14:
62:f4:f0:23:0c:1c:69:0d:f2:de:2b:4d:6c:02:8a:
06:a0:4a:85:aa:74:5b:a3:ec:a8:cd:b1:de:3b:24:
12:a2:21:bd:31:f3:5f:e3:d1:96:85:ff:28:66:02:
61:ce:9a:7b:a8:23:88:35:bb:a2:44:62:a6:72:7b:
21:cf:4e:0b:5c:a6:a6:93:82:70:14:01:01:29:bf:
15:ce:8d:ec:06:a7:5a:5c:52:1d:ca:4b:01:e7:b7:
8a:b5:6d:64:85:dd:0e:2d:8b:94:9d:28:42:c7:a0:
64:dd:b5:a3:8f:d9:44:41:bb:70:22:56:2e:db:8e:
0e:f8:46:46:fb:f2:25:d0:66:d1:7b:35:1a:ce:1d:
ae:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:FF:4F:3F:0F:CA:E3:19:5B:73:5A:1A:98:D3:38:1D:D7:9E:28:75
X509v3 Authority Key Identifier:
keyid:6F:17:CA:B2:9D:F0:90:65:54:C1:1C:E9:AB:29:C6:0D:1E:7A:67:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxfKsp3wkGVUwRzpqynGDR56Z1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:3b:ff:b3:74:d1:1c:7c:02:b0:22:60:7e:a7:88:14:e9:74:
b5:25:a4:b3:ea:c3:2b:83:5b:c2:6e:98:a5:2d:03:4b:7e:e2:
2f:17:a3:84:e2:7d:23:01:ed:fb:58:31:a8:a0:eb:bb:28:41:
ef:de:21:6b:f5:f5:39:96:4c:5b:bc:a2:e6:dc:f1:8b:d9:7d:
3c:35:50:81:d5:55:6e:99:85:e8:62:4c:46:b2:01:a8:bc:68:
8b:33:97:f3:43:ee:1c:57:b6:65:23:b0:3b:18:82:43:3d:91:
10:fc:de:c8:de:9b:31:75:e2:fd:f6:c2:58:12:23:7c:95:2f:
aa:66:bb:b0:dc:b7:cc:cf:98:93:03:3b:c9:d8:4c:89:f2:65:
5f:12:07:0a:30:3c:8f:5c:7e:c7:50:60:33:bc:56:e3:23:c8:
7b:6b:d9:88:0c:21:3f:16:3c:45:89:69:2e:a6:f7:04:60:bc:
0e:a8:52:b8:a4:71:5e:fd:9a:d5:df:4d:29:63:01:ec:eb:40:
8a:fd:d2:b8:c8:af:78:bf:8a:8a:12:de:22:ee:9d:6e:8d:c8:
f8:d9:b0:8c:70:31:e5:0a:1d:85:9a:17:dc:88:b9:35:c9:f7:
74:f2:99:db:be:6b:87:c4:dc:66:78:a2:fc:e7:4b:be:f0:74:
7f:c5:b6:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:40:16 2024 by rpki-client on console-ams.rpki-client.org