Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft
File: bLdrU2M4PWjlVeUnClkx2DQOGA0.mft (raw, json)
Hash identifier: Tunn7fxJF3eseBYKRSlQHgCfBbQTg8RQrYZx77Axuhg=
Subject key identifier: 9A:C2:33:F3:7D:28:73:85:68:35:FC:C5:FB:2A:F2:D0:BB:A0:78:5A
Authority key identifier: 6C:B7:6B:53:63:38:3D:68:E5:55:E5:27:0A:59:31:D8:34:0E:18:0D
Certificate issuer: /CN=6cb76b5363383d68e555e5270a5931d8340e180d
Certificate serial: 01935688BD02BE01D642F74DE76EE552B9D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bLdrU2M4PWjlVeUnClkx2DQOGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft
Manifest number: 0AFE
Signing time: Sat 23 Nov 2024 01:00:21 +0000
Manifest this update: Sat 23 Nov 2024 01:00:21 +0000
Manifest next update: Sun 24 Nov 2024 01:00:21 +0000
Files and hashes: 1: bLdrU2M4PWjlVeUnClkx2DQOGA0.crl (hash: WS0x+aEiGt06hcPqBuFSOCHXZwqhvJKeUrdDQpQ7kBM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bLdrU2M4PWjlVeUnClkx2DQOGA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:88:bd:02:be:01:d6:42:f7:4d:e7:6e:e5:52:b9:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cb76b5363383d68e555e5270a5931d8340e180d
Validity
Not Before: Nov 23 01:00:21 2024 GMT
Not After : Nov 24 01:00:21 2024 GMT
Subject: CN=9ac233f37d2873856835fcc5fb2af2d0bba0785a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:b6:c6:bc:9f:1e:43:17:fe:f6:b5:ce:f9:cb:
e6:d1:1b:27:9a:cb:34:89:c0:a0:69:ee:48:8e:ca:
5d:ba:cc:ff:ee:b6:0b:fa:74:0c:94:53:18:b5:cb:
2f:67:bd:97:ff:ff:82:99:b4:dc:7d:03:52:24:1e:
e7:41:66:f8:4d:5e:8b:bc:3f:a7:11:50:ad:24:dd:
00:e2:ee:40:a4:0b:bb:7b:10:fb:74:5c:b7:fb:48:
a5:85:a8:44:d8:71:7a:50:77:84:f8:09:02:d1:21:
e3:3d:5d:c1:63:46:35:e9:10:6f:66:52:e1:ff:b4:
2f:24:c3:39:ca:ba:67:03:12:42:dc:6a:47:0e:e7:
9a:d3:3c:32:4f:4a:2c:d0:a5:07:be:cf:c8:4d:05:
2c:fc:83:49:99:45:4a:b3:41:95:b5:df:7d:05:fe:
d4:f1:fc:c5:ec:0b:20:08:0f:04:80:dc:ee:c0:6f:
74:47:ec:e4:f7:d1:25:46:ca:de:eb:a9:f1:90:f8:
cb:c1:2b:d6:d8:a2:f9:52:1f:19:82:58:95:00:6f:
73:fb:41:b1:6d:40:20:31:6b:5d:b5:29:7f:0c:d6:
0b:d8:0d:29:7b:84:26:59:b0:82:3e:60:db:c0:1c:
df:fc:43:a7:7b:ed:c8:87:15:bc:19:a1:71:43:44:
fd:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:C2:33:F3:7D:28:73:85:68:35:FC:C5:FB:2A:F2:D0:BB:A0:78:5A
X509v3 Authority Key Identifier:
keyid:6C:B7:6B:53:63:38:3D:68:E5:55:E5:27:0A:59:31:D8:34:0E:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bLdrU2M4PWjlVeUnClkx2DQOGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:e4:d6:ac:a5:a9:73:6b:7c:22:7d:3d:b7:e3:35:01:46:f8:
c0:23:83:ac:1c:58:5b:77:3a:bc:56:25:2e:da:d9:7f:6a:ba:
19:c0:1c:0c:e1:0a:5e:0a:53:7d:e1:94:21:a8:ea:eb:64:16:
1c:ad:53:3e:dc:ba:25:3d:12:ec:cb:93:a3:5a:68:7b:1e:95:
1c:ab:a7:31:7b:ed:a2:a0:19:8f:c3:75:de:2c:ba:9a:66:99:
96:57:d9:30:89:27:c2:2a:2e:4e:c5:6a:c1:2e:12:60:0f:f7:
92:cc:22:21:f4:b0:4d:15:ef:88:fd:11:cc:63:c9:00:0b:4c:
98:d5:ae:21:e1:8f:b8:ad:fa:58:95:7a:3a:58:d7:75:a8:0d:
e7:b8:83:9b:39:03:93:01:d3:bb:64:27:0a:8e:7e:43:73:1f:
8f:ce:33:15:f2:7b:de:4c:93:27:60:90:a4:a4:46:d0:a8:9d:
32:58:1b:a5:1f:10:3b:a2:14:23:69:3a:ce:71:b4:3b:9f:79:
a5:1f:ac:80:58:3e:7a:e3:15:06:b7:f0:e2:2c:12:5b:89:1e:
3d:3a:04:e7:86:0f:40:b9:99:51:0a:b1:ad:ac:d1:d5:4f:7b:
24:a1:13:69:3d:f1:af:6e:35:0f:5e:d1:41:25:4d:4d:9e:b2:
47:dd:e7:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:41:21 2024 by rpki-client on console-ams.rpki-client.org