Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.mft
File: BEMrQbKmzMlHFxP39wfXac1Mfb8.mft (raw, json)
Hash identifier: v0sFKCxQX8kKAT+KrX1ykVEI114DKdvwl0UAeVq2sSs=
Subject key identifier: DA:11:3F:EB:82:61:E2:B6:D2:24:3B:C9:34:2D:21:67:93:A8:0C:39
Authority key identifier: 04:43:2B:41:B2:A6:CC:C9:47:17:13:F7:F7:07:D7:69:CD:4C:7D:BF
Certificate issuer: /CN=04432b41b2a6ccc9471713f7f707d769cd4c7dbf
Certificate serial: 019405D7E51DE158D31C910615AB538F32B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BEMrQbKmzMlHFxP39wfXac1Mfb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.mft
Manifest number: 30
Signing time: Fri 27 Dec 2024 02:00:22 +0000
Manifest this update: Fri 27 Dec 2024 02:00:22 +0000
Manifest next update: Sat 28 Dec 2024 02:00:22 +0000
Files and hashes: 1: BEMrQbKmzMlHFxP39wfXac1Mfb8.crl (hash: 5LEFoD3utcXUO3SknGZemYzAT1kz6F6H5ziBid81btI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BEMrQbKmzMlHFxP39wfXac1Mfb8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 02:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:05:d7:e5:1d:e1:58:d3:1c:91:06:15:ab:53:8f:32:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04432b41b2a6ccc9471713f7f707d769cd4c7dbf
Validity
Not Before: Dec 27 02:00:22 2024 GMT
Not After : Dec 28 02:00:22 2024 GMT
Subject: CN=da113feb8261e2b6d2243bc9342d216793a80c39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:92:91:28:35:07:4c:fd:ae:af:c0:a7:e1:c3:
a7:9d:75:14:dd:6d:95:ec:02:e7:7e:2a:97:4d:e9:
35:6d:5e:5a:40:11:aa:8a:ee:d4:33:f2:98:ed:09:
6a:14:e6:3d:cd:45:59:ef:14:da:94:5c:1e:1e:3d:
53:fe:92:79:cc:10:d4:e3:6f:8f:67:cc:22:41:57:
df:5d:9b:bd:39:bd:2a:e7:40:d7:46:92:95:a5:1e:
ae:34:24:83:66:10:40:8f:56:68:87:ed:bd:63:c7:
e0:c7:55:1d:70:3f:8b:89:f8:3e:99:ac:86:d0:5c:
9c:96:fb:65:84:73:9d:81:e4:d8:d7:94:91:51:46:
5e:39:75:da:da:a1:30:c8:13:bd:bd:8b:d5:3e:8f:
73:a7:e4:97:bd:07:d0:d4:df:cb:99:27:61:b9:62:
0c:35:1b:b7:ec:6c:91:53:e4:0c:f8:39:b4:12:95:
83:7e:39:29:b4:f6:8e:29:b1:9c:9f:a0:73:9b:ea:
21:9e:ac:73:98:44:ba:a2:fc:5f:2b:11:ad:84:f4:
e9:11:17:14:a6:62:7b:6a:4a:e7:b3:c0:c4:8c:82:
15:ea:62:8f:0c:94:a1:fa:fc:da:f5:7d:7b:e4:a4:
e8:ff:b1:86:86:0f:d3:ef:81:df:1d:da:d1:8d:66:
4b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:11:3F:EB:82:61:E2:B6:D2:24:3B:C9:34:2D:21:67:93:A8:0C:39
X509v3 Authority Key Identifier:
keyid:04:43:2B:41:B2:A6:CC:C9:47:17:13:F7:F7:07:D7:69:CD:4C:7D:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BEMrQbKmzMlHFxP39wfXac1Mfb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:ae:d6:ab:95:3b:3e:a7:5a:6b:cf:48:d8:3f:28:a7:c5:4a:
5c:8b:c9:95:b3:b2:3c:22:68:3e:f5:9f:17:aa:4e:82:33:5d:
c0:78:18:53:73:6b:a9:a1:d7:06:eb:44:b0:02:b5:95:1e:0a:
8f:95:3f:8e:5d:d5:44:9f:6d:a7:40:e6:ef:65:db:3b:32:1a:
cc:a6:5e:cb:1a:38:24:59:80:77:c7:b6:55:7d:9b:30:6c:92:
0a:31:1d:7d:a6:74:b8:e8:51:4b:f6:25:b4:25:cd:d3:91:77:
8a:f5:db:cd:96:99:8f:b5:c9:af:69:a8:62:c8:30:50:4a:71:
2d:04:32:36:e0:7f:b9:8a:47:12:93:4e:b1:a3:32:e7:ec:85:
79:05:94:a5:6c:7c:25:b9:d6:67:0f:b3:06:47:65:3e:87:b0:
a6:2e:0e:91:2f:ab:cd:fd:85:b6:3c:18:88:ea:cd:73:7d:a6:
2d:e1:fd:e9:e4:cd:e7:34:06:4a:cd:f3:bb:a7:5d:57:8c:60:
33:da:86:d2:f7:12:47:40:1d:5b:28:22:7b:83:68:53:ac:aa:
fa:23:44:08:9f:a2:0c:63:b0:92:be:1d:6a:44:1d:c9:95:65:
7d:b1:bf:9c:e6:3a:bb:a1:d3:0d:2f:46:09:46:f9:4d:74:89:
b1:d4:b4:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 10:54:40 2024 by rpki-client on console-fra.rpki-client.org