Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.mft
File: CpfAyBiGg3PEAUcVBTra9hrx2h0.mft (raw, json)
Hash identifier: i31iVdfATLqxXFEtevxr0D8AJgTKZMzQLBoE6nlKu+s=
Subject key identifier: DF:73:40:36:1A:E7:C5:72:FD:54:8B:F4:64:D9:DD:7E:33:2E:93:D4
Authority key identifier: 0A:97:C0:C8:18:86:83:73:C4:01:47:15:05:3A:DA:F6:1A:F1:DA:1D
Certificate issuer: /CN=0a97c0c818868373c4014715053adaf61af1da1d
Certificate serial: 019351D0C780F4CD4FA539B75C28495780DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.mft
Manifest number: 136E
Signing time: Fri 22 Nov 2024 03:00:57 +0000
Manifest this update: Fri 22 Nov 2024 03:00:57 +0000
Manifest next update: Sat 23 Nov 2024 03:00:57 +0000
Files and hashes: 1: CpfAyBiGg3PEAUcVBTra9hrx2h0.crl (hash: wvt8K4xqEoHU/KEuqE3JcsqOATLceY15rrxKayoSXl0=)
2: Hkh_qGKppZoXWfA5hvoelEJmXmg.roa (hash: wBt51B9KN5u8/Ub60El17ljTF9Uvdh07C9BukufdT2E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:51:d0:c7:80:f4:cd:4f:a5:39:b7:5c:28:49:57:80:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a97c0c818868373c4014715053adaf61af1da1d
Validity
Not Before: Nov 22 03:00:57 2024 GMT
Not After : Nov 23 03:00:57 2024 GMT
Subject: CN=df7340361ae7c572fd548bf464d9dd7e332e93d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:80:f3:da:5f:88:d6:23:de:b1:79:20:7f:34:
ce:3b:ef:09:53:1b:d9:52:05:c8:e0:e1:a4:23:8e:
34:62:cc:75:36:dc:12:ac:18:87:87:61:f3:f9:28:
80:e8:9c:91:e0:b9:1b:e0:d4:99:3a:3f:c6:a9:b4:
ef:b6:f2:98:7c:aa:22:7a:27:fc:b1:e2:54:24:d0:
e3:a6:90:1c:e3:49:d5:e2:d3:fc:d6:a9:89:af:ec:
c5:c4:17:82:46:36:e2:28:09:e7:eb:36:71:43:d1:
67:5c:47:2f:dd:56:fe:44:f6:92:5d:4c:24:b2:d0:
cc:21:05:c8:be:8d:d4:e0:be:44:9f:22:05:bd:1b:
f1:45:7e:f8:a8:e0:78:fd:c9:fa:49:c4:7b:1d:60:
d2:ea:50:4f:30:4b:a6:f5:9e:85:5c:3c:1c:79:ec:
67:50:3b:fc:c3:30:54:4f:03:6a:27:4b:3f:21:d5:
72:55:82:1e:17:27:1e:1f:4d:8b:04:50:0d:20:55:
e6:fe:d2:18:f5:f1:65:b7:d3:d7:28:dd:90:87:6e:
db:36:48:ba:c2:cc:59:1b:7c:e0:fd:a5:1d:51:bd:
c4:bd:3b:8c:1e:b6:b7:86:1f:1f:66:aa:7b:34:b4:
92:d3:ed:22:eb:e3:6c:a0:ba:1d:45:d5:7f:9e:35:
2e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:73:40:36:1A:E7:C5:72:FD:54:8B:F4:64:D9:DD:7E:33:2E:93:D4
X509v3 Authority Key Identifier:
keyid:0A:97:C0:C8:18:86:83:73:C4:01:47:15:05:3A:DA:F6:1A:F1:DA:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:d6:50:84:39:8a:49:29:22:3c:da:fc:cb:d9:34:90:ee:e2:
57:98:c8:9c:9b:02:51:6c:1e:ef:e6:1e:70:a6:11:45:b0:8d:
c2:0c:f6:35:97:82:3a:d4:e2:57:fb:a3:35:5f:f2:d7:e2:1b:
e4:3d:49:f2:eb:2b:0c:ef:00:a0:cc:9b:57:6f:86:5e:c0:70:
37:4a:2a:e2:40:9d:20:df:ae:7f:24:86:e7:0b:79:cb:33:2b:
ad:a3:35:e1:a2:8d:52:42:ac:4e:8c:f8:93:8d:2c:a4:c7:3a:
ce:33:e5:26:61:83:ff:dd:68:f2:26:58:5a:de:45:1a:5e:16:
ed:61:df:97:5d:06:82:bf:ed:89:08:77:c8:17:d7:fa:6e:9b:
b2:d3:e6:0b:b4:7f:b7:b7:3c:9e:e2:75:1f:0c:79:1a:80:f6:
f2:cd:a6:9c:ad:bd:39:df:f9:2f:da:2e:14:28:e9:1f:82:54:
0d:6b:57:bb:14:81:b9:22:99:fe:5b:b7:8a:ba:6d:17:9f:16:
21:7c:9f:16:d4:4e:32:b6:66:1a:cb:54:70:81:81:4f:be:cd:
df:a0:5f:8e:27:40:e9:53:d8:fb:b0:e7:80:76:19:4f:50:85:
19:57:9c:df:85:86:f3:9b:2d:1f:bf:e0:0e:93:fe:f7:d4:4b:
4f:f7:d1:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:43:14 2024 by rpki-client on console-fra.rpki-client.org