Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
File: iPdXItsls3I97Npdhw32m_DYZa4.mft (raw, json)
Hash identifier: 8XLRhoyNmSkx52HpgAfh3JYaIrvxB3LxirepZhvVLK0=
Subject key identifier: A0:D2:9D:4F:74:2B:BC:F6:51:C0:C1:7A:E4:AC:ED:85:FD:C6:28:A9
Authority key identifier: 88:F7:57:22:DB:25:B3:72:3D:EC:DA:5D:87:0D:F6:9B:F0:D8:65:AE
Certificate issuer: /CN=88f75722db25b3723decda5d870df69bf0d865ae
Certificate serial: 01935689E8D46639F85C4EB5E3C223D1F637
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
Manifest number: 0D69
Signing time: Sat 23 Nov 2024 01:01:38 +0000
Manifest this update: Sat 23 Nov 2024 01:01:38 +0000
Manifest next update: Sun 24 Nov 2024 01:01:38 +0000
Files and hashes: 1: iPdXItsls3I97Npdhw32m_DYZa4.crl (hash: EPmIhLHYqZbm0QCqmmBv0N0IE2jc9qD/ZrwOaJrEOIU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:e8:d4:66:39:f8:5c:4e:b5:e3:c2:23:d1:f6:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f75722db25b3723decda5d870df69bf0d865ae
Validity
Not Before: Nov 23 01:01:38 2024 GMT
Not After : Nov 24 01:01:38 2024 GMT
Subject: CN=a0d29d4f742bbcf651c0c17ae4aced85fdc628a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:14:be:d3:d6:07:94:01:bd:2f:aa:fc:dc:c7:
5a:d8:1b:44:df:0e:55:5e:fa:82:b6:95:fd:ad:a7:
4e:d9:9e:d6:9c:c1:fb:66:46:67:cb:a2:90:74:30:
30:04:b0:78:2f:f9:c3:b0:0a:06:17:cc:8a:65:6f:
00:13:06:b6:ac:b8:06:66:48:bc:19:8b:56:3a:45:
bc:b0:72:61:99:fd:0c:22:60:1a:72:4c:f8:0d:a0:
2a:02:34:5d:ee:30:78:1e:60:b7:d2:60:80:ef:34:
25:1e:63:20:0e:29:cb:d4:64:53:f9:72:e4:1a:9e:
c3:ea:40:79:0c:91:0e:54:46:ad:c1:b8:ff:02:58:
c1:c5:d4:9d:3b:76:df:bc:be:b6:c5:65:72:9d:19:
87:ed:5e:4a:11:44:dd:ba:01:83:6f:47:26:69:75:
50:4a:99:99:37:63:55:73:01:90:8c:22:df:81:53:
2c:a4:95:c0:ab:56:34:0f:e1:d1:a0:23:4a:9a:63:
fe:e6:47:05:ff:31:ed:53:d2:76:1b:06:d6:74:ee:
39:b4:f5:25:48:cb:cc:ab:9b:5e:34:2d:e9:89:f1:
d4:3a:10:fa:f6:2c:c1:a0:92:a6:ef:ac:fb:b3:42:
49:43:53:2a:0e:6c:0a:49:92:fa:62:1c:b4:e1:d2:
a8:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:D2:9D:4F:74:2B:BC:F6:51:C0:C1:7A:E4:AC:ED:85:FD:C6:28:A9
X509v3 Authority Key Identifier:
keyid:88:F7:57:22:DB:25:B3:72:3D:EC:DA:5D:87:0D:F6:9B:F0:D8:65:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:9e:39:fd:e4:71:62:0f:5b:4e:33:1c:22:10:47:af:79:bf:
b0:4d:80:bc:dc:f6:0d:0e:10:66:1a:df:36:c2:2a:46:e7:18:
0d:87:77:f5:ad:be:a8:08:41:9e:13:6d:83:dc:93:0b:96:e8:
09:78:c6:cb:5e:26:d1:b0:9b:17:2b:b2:6f:26:c3:63:66:8c:
72:67:19:d0:61:79:98:fc:93:b3:5e:43:df:61:04:18:99:1e:
1d:72:75:86:fe:7c:bd:fe:19:54:da:49:0a:25:9b:ca:0c:fb:
78:93:ab:a8:79:2f:31:54:30:54:f5:0d:48:fe:fc:3f:d9:7f:
e3:65:6b:56:f9:bf:9b:36:fb:f0:f6:17:4c:e7:8d:8c:fc:20:
4f:6a:7b:4a:80:2d:c0:48:fc:51:96:b6:05:31:9e:dd:23:6b:
29:f2:05:fb:a4:1f:25:df:7a:d9:64:e8:60:63:5c:ed:f6:42:
7d:49:76:b6:7f:39:65:33:c7:dc:b5:68:da:01:8a:e5:2d:7d:
3b:fc:6b:d1:3c:04:a9:8f:f5:8c:2f:ce:88:03:ce:70:c7:ab:
08:9b:cb:9d:38:5c:70:fa:0c:d7:6c:65:f6:00:56:21:bc:de:
56:d8:6a:56:48:89:89:98:31:ea:2a:e3:3f:39:84:f8:c1:e9:
f1:d2:e2:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:40:20 2024 by rpki-client on console-ams.rpki-client.org