Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
File: ny83TJpzj63o-FDKq11507kARYQ.mft (raw, json)
Hash identifier: 68GQq4yl6P2L4jrVUItYysxKxV6418dTflZPWlcbSbs=
Subject key identifier: 6A:3F:51:1F:31:36:93:DE:D0:BD:5C:91:21:56:8A:86:DD:5D:B8:6B
Authority key identifier: 9F:2F:37:4C:9A:73:8F:AD:E8:F8:50:CA:AB:5D:79:D3:B9:00:45:84
Certificate issuer: /CN=9f2f374c9a738fade8f850caab5d79d3b9004584
Certificate serial: 019369DA49DFBDDBC8CA0FF621DD75247D5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ny83TJpzj63o-FDKq11507kARYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
Manifest number: 1377
Signing time: Tue 26 Nov 2024 19:02:13 +0000
Manifest this update: Tue 26 Nov 2024 19:02:13 +0000
Manifest next update: Wed 27 Nov 2024 19:02:13 +0000
Files and hashes: 1: ny83TJpzj63o-FDKq11507kARYQ.crl (hash: 7TGiPCQVMFRJYSLmfPheFsUx1BTQwF/zGrfmroj/PiI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ny83TJpzj63o-FDKq11507kARYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:da:49:df:bd:db:c8:ca:0f:f6:21:dd:75:24:7d:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f2f374c9a738fade8f850caab5d79d3b9004584
Validity
Not Before: Nov 26 19:02:13 2024 GMT
Not After : Nov 27 19:02:13 2024 GMT
Subject: CN=6a3f511f313693ded0bd5c9121568a86dd5db86b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4e:6d:a6:6f:29:84:41:65:f0:4c:6d:fd:28:
bf:c5:4d:f2:a5:9b:41:7e:21:fb:02:03:50:15:7e:
e0:55:35:4a:cd:48:ce:3a:0b:43:99:3c:d5:88:e8:
c1:4b:de:17:cf:59:98:f1:d6:36:f7:09:9f:be:c9:
14:ce:63:35:b2:9f:79:2d:b2:27:68:a2:8a:40:f9:
bf:33:cc:88:c7:5c:d2:14:1a:4c:cc:39:89:c7:c4:
bd:07:bd:14:5c:d9:24:57:81:c3:5c:76:32:f9:53:
5f:8e:6f:d3:a7:55:09:8f:e2:d5:bb:cb:cf:84:47:
84:01:d2:d7:f3:e5:d7:99:4f:ee:a2:88:8e:4b:a9:
7e:7d:d4:ab:79:80:ab:24:91:a6:07:9e:e5:f0:f6:
5d:25:6b:a8:d4:7e:77:e1:40:f1:cd:81:f7:fd:a9:
38:90:1e:a0:92:65:d5:45:3d:d9:32:e6:05:28:94:
90:6e:87:7e:7a:9a:ca:05:7e:02:f7:0b:da:67:f7:
8e:5d:28:f3:5f:57:af:bf:14:18:27:7c:34:4d:83:
4c:8a:a7:bb:b6:f1:de:b8:4e:32:55:3a:b6:a7:15:
e2:b4:11:e0:67:30:88:74:51:6d:b1:11:7a:31:a8:
1f:9e:c3:42:db:fe:24:7b:dc:1d:3f:2e:d8:eb:da:
6b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:3F:51:1F:31:36:93:DE:D0:BD:5C:91:21:56:8A:86:DD:5D:B8:6B
X509v3 Authority Key Identifier:
keyid:9F:2F:37:4C:9A:73:8F:AD:E8:F8:50:CA:AB:5D:79:D3:B9:00:45:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ny83TJpzj63o-FDKq11507kARYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:2c:6d:88:9f:31:c5:7f:e3:1d:7a:57:af:fe:83:bc:e2:99:
e3:21:34:1b:45:f6:3a:fa:d4:79:d4:22:d9:f9:9d:b0:7d:0b:
72:eb:89:1b:89:74:21:94:7e:60:20:82:55:34:85:db:cc:df:
a6:85:20:d4:73:c3:9b:5c:ea:00:7f:42:f6:94:df:9c:b1:c4:
72:0f:c6:83:ef:9d:8d:24:00:a9:ec:7f:f7:75:d8:8c:63:f0:
36:26:99:b5:c6:f6:1c:dc:36:64:53:62:cd:83:47:2a:41:2b:
cf:67:cc:94:cb:34:14:ab:8e:2a:25:ab:7c:ca:06:f6:82:b3:
e6:27:b0:fa:24:cc:e8:38:45:7b:4d:97:4b:b4:25:8d:9c:7d:
78:04:f9:0d:d4:3a:a1:d1:93:f0:96:3b:c4:32:1d:ef:d0:f5:
78:d4:94:22:7b:10:12:02:87:10:45:13:73:07:7d:0b:12:0d:
c5:59:eb:6c:fa:c1:50:61:fc:c5:5c:e2:cb:3c:89:c1:72:e4:
9d:23:29:4c:ad:01:60:8c:c4:63:0e:4a:0d:f4:9c:3e:98:4c:
cc:5d:4d:fa:85:11:fd:c3:fb:04:ca:da:5b:6c:33:96:d2:06:
5e:34:8a:5a:49:fe:aa:6d:0a:a3:8d:1d:56:fd:a9:ab:93:a2:
c4:cf:75:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:43:46 2024 by rpki-client on console-fra.rpki-client.org