Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/2acb71-3c3b-4a66-9700-cd2726114846/1/PNQrfxakRkXr2PObog8ZBxOxs7w.mft
File: PNQrfxakRkXr2PObog8ZBxOxs7w.mft (raw, json)
Hash identifier: EVKgSMXE/IqWUmV3OSl3qKx5DFYR9zFvsZv7YNJ03R0=
Subject key identifier: 69:67:EF:4B:C2:60:B7:FD:14:F4:BD:84:84:7B:60:1C:17:1C:A8:77
Authority key identifier: 3C:D4:2B:7F:16:A4:46:45:EB:D8:F3:9B:A2:0F:19:07:13:B1:B3:BC
Certificate issuer: /CN=3cd42b7f16a44645ebd8f39ba20f190713b1b3bc
Certificate serial: 019369D8E2051B332DE8E35134E24F16EA8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNQrfxakRkXr2PObog8ZBxOxs7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/2acb71-3c3b-4a66-9700-cd2726114846/1/PNQrfxakRkXr2PObog8ZBxOxs7w.mft
Manifest number: 1379
Signing time: Tue 26 Nov 2024 19:00:41 +0000
Manifest this update: Tue 26 Nov 2024 19:00:41 +0000
Manifest next update: Wed 27 Nov 2024 19:00:41 +0000
Files and hashes: 1: PNQrfxakRkXr2PObog8ZBxOxs7w.crl (hash: zs05BTM1t3pnCoxonxn+ih6OKGKEU4P/OTPjzT7q3J0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/2acb71-3c3b-4a66-9700-cd2726114846/1/PNQrfxakRkXr2PObog8ZBxOxs7w.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/2acb71-3c3b-4a66-9700-cd2726114846/1/PNQrfxakRkXr2PObog8ZBxOxs7w.mft
rsync://rpki.ripe.net/repository/DEFAULT/PNQrfxakRkXr2PObog8ZBxOxs7w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:d8:e2:05:1b:33:2d:e8:e3:51:34:e2:4f:16:ea:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cd42b7f16a44645ebd8f39ba20f190713b1b3bc
Validity
Not Before: Nov 26 19:00:41 2024 GMT
Not After : Nov 27 19:00:41 2024 GMT
Subject: CN=6967ef4bc260b7fd14f4bd84847b601c171ca877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:96:44:8f:20:d6:0c:a5:b8:8b:cb:ed:b3:3d:
c6:4c:e9:a9:2d:ff:f1:ce:01:f7:82:18:ec:ba:b0:
00:92:cb:eb:8e:76:d2:19:fc:f9:16:d4:fa:93:87:
f1:bf:5a:92:f3:a2:7d:14:2c:30:23:a6:2d:3f:6e:
94:c8:d7:97:d2:b5:53:52:6d:28:f6:c3:19:5f:3a:
c9:10:19:8e:47:77:ae:29:eb:cc:4c:51:54:ca:62:
f7:41:37:e9:0f:76:e6:b5:24:9b:69:a2:92:b0:00:
c1:2a:93:a2:24:28:7a:8f:da:de:b4:20:6b:7b:9c:
a6:63:61:0c:71:14:ff:08:f0:49:b8:bb:6f:74:82:
9c:f9:49:a8:c5:52:5d:43:e8:24:65:05:2d:64:86:
5f:8b:6b:db:76:3e:7b:1a:fc:53:40:89:d2:38:19:
01:30:c5:76:b2:8b:bc:bc:81:49:d3:eb:d8:8c:b3:
fb:f1:b0:8d:bf:f8:9a:53:8c:be:11:e9:ea:a9:b1:
4f:fa:d0:ea:e5:c7:5d:04:00:dc:96:d0:db:06:54:
4d:31:9f:be:7f:f2:97:83:3f:e2:6c:5a:8e:ac:02:
b5:53:f6:83:43:37:8f:c5:03:2e:3d:0b:2f:24:f7:
e8:22:2f:09:8d:7a:29:7c:cd:7e:20:66:39:77:f2:
f5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:67:EF:4B:C2:60:B7:FD:14:F4:BD:84:84:7B:60:1C:17:1C:A8:77
X509v3 Authority Key Identifier:
keyid:3C:D4:2B:7F:16:A4:46:45:EB:D8:F3:9B:A2:0F:19:07:13:B1:B3:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNQrfxakRkXr2PObog8ZBxOxs7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/2acb71-3c3b-4a66-9700-cd2726114846/1/PNQrfxakRkXr2PObog8ZBxOxs7w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/2acb71-3c3b-4a66-9700-cd2726114846/1/PNQrfxakRkXr2PObog8ZBxOxs7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:a5:56:27:3f:67:52:18:26:6b:3d:24:56:38:25:85:33:26:
ad:a2:ec:81:67:98:41:40:f5:1a:c8:b1:61:6b:e3:dc:cf:f7:
9e:50:ad:68:9b:0d:a1:5a:ba:5c:1c:1d:e7:c0:c8:ef:d4:a9:
7a:f7:1a:02:14:30:b2:a1:b8:2b:6d:85:d1:a9:10:10:06:34:
fc:cf:44:f8:da:e2:78:4e:44:da:ad:8b:21:e9:3b:38:6e:7e:
b3:76:ad:d2:02:6e:fa:ff:9e:d4:0b:6f:ed:1c:3b:2d:4e:c0:
f2:ae:d1:fa:97:b3:d8:41:80:c1:35:7d:77:10:25:22:67:99:
f7:56:0b:b7:52:0a:7e:20:6c:9b:02:db:2a:b7:7f:65:dc:2d:
d4:2a:6b:41:a4:e8:be:89:e4:15:4f:c8:09:2e:a7:56:15:b1:
bf:0e:02:72:c0:15:9c:00:46:ce:77:b7:21:ec:07:a9:23:f5:
53:ee:b5:d2:f0:b2:82:53:07:f1:e4:1f:52:42:5f:65:e3:d8:
0e:5a:34:70:91:ad:6f:c9:d5:08:8a:63:49:6b:8c:31:c3:81:
b3:7f:ea:75:d7:b0:2d:cf:43:29:45:3d:83:38:bd:97:8b:c2:
00:4d:77:b5:19:f4:21:69:26:49:d7:d8:86:5c:31:d8:10:c7:
05:fc:08:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:21:20 2024 by rpki-client on console-ams.rpki-client.org