Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.mft
File: pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.mft (raw, json)
Hash identifier: JaRyDbaO03u3leLzCzo+K9dh24q1Hzlx58uIlptlq6k=
Subject key identifier: 39:B4:23:4B:59:E4:F2:22:3B:B3:0D:CA:87:19:A7:6D:AA:2B:92:F8
Authority key identifier: A5:8D:49:83:C9:C6:3B:D8:A1:58:00:3C:58:5F:43:D9:94:C1:2D:C2
Certificate issuer: /CN=a58d4983c9c63bd8a158003c585f43d994c12dc2
Certificate serial: 019357D246142EC1C2B17034842CC167D3D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.mft
Manifest number: 07D0
Signing time: Sat 23 Nov 2024 07:00:18 +0000
Manifest this update: Sat 23 Nov 2024 07:00:18 +0000
Manifest next update: Sun 24 Nov 2024 07:00:18 +0000
Files and hashes: 1: pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.crl (hash: xIgYkLViKobuhxZviIpRhsyfXKcoX6DUu8s0hjERuv4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.mft
rsync://rpki.ripe.net/repository/DEFAULT/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:46:14:2e:c1:c2:b1:70:34:84:2c:c1:67:d3:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a58d4983c9c63bd8a158003c585f43d994c12dc2
Validity
Not Before: Nov 23 07:00:18 2024 GMT
Not After : Nov 24 07:00:18 2024 GMT
Subject: CN=39b4234b59e4f2223bb30dca8719a76daa2b92f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:65:6f:52:6f:9b:c4:d1:51:48:d2:b1:32:50:
d0:db:8c:42:09:87:4e:5f:53:ff:2c:08:75:96:96:
0c:9e:64:33:2e:c6:0b:47:30:ae:ab:c8:88:51:b7:
35:ea:69:b4:a1:6d:33:76:4a:1a:d1:c1:0b:59:83:
bf:e0:2a:04:b0:a0:db:6f:ea:3e:05:f3:b5:f0:c6:
3d:af:df:ad:2c:1c:50:62:23:82:1b:e6:de:3a:92:
bb:a0:56:77:1e:ba:71:33:2e:49:71:8c:72:7d:14:
71:b5:94:9b:78:35:0c:5d:38:23:2b:da:3a:d3:c0:
27:41:03:63:56:78:5a:60:d7:66:8e:31:32:76:fd:
ee:f2:b2:f3:ff:13:16:20:7c:d9:97:77:56:23:37:
56:ef:eb:9d:ad:eb:a0:78:5f:91:30:7d:de:d6:c1:
f6:e8:90:24:2c:6a:35:53:98:9d:ae:bb:dc:3b:92:
9f:a6:4c:2c:a6:87:03:8a:1a:b2:c5:55:ac:c4:23:
19:95:4d:3a:5c:14:2e:aa:a2:8b:61:37:02:5c:49:
b0:1b:93:83:e3:9b:a9:ac:53:f1:53:73:9a:7b:96:
e4:99:4b:02:f9:98:bf:6b:f3:1a:1c:b9:05:ee:ce:
3e:5f:cf:01:5a:90:8f:01:8f:20:3e:98:f6:a3:e8:
e3:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B4:23:4B:59:E4:F2:22:3B:B3:0D:CA:87:19:A7:6D:AA:2B:92:F8
X509v3 Authority Key Identifier:
keyid:A5:8D:49:83:C9:C6:3B:D8:A1:58:00:3C:58:5F:43:D9:94:C1:2D:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:81:2a:6e:54:63:b5:81:77:23:36:b5:29:31:8e:20:87:fd:
62:e7:dd:25:ee:08:98:e6:03:e1:5b:7e:82:42:7e:b5:8d:f5:
2c:cb:51:09:e0:31:c0:a0:6f:eb:8a:6f:58:c9:97:02:43:21:
a9:c9:73:b1:64:60:cb:f0:c2:e3:86:f9:4f:33:0e:5d:23:09:
de:24:9c:d6:75:58:87:f3:f4:ba:3e:47:d3:d4:8c:c9:82:75:
14:c8:f6:c5:9c:ef:64:78:24:cf:78:19:b2:60:4a:0b:0f:da:
1f:58:ac:96:ba:0c:5a:de:45:43:63:91:af:c5:8b:c6:21:95:
33:40:ab:89:92:24:d6:81:1b:52:57:0d:2b:19:24:ae:be:c8:
c8:c2:62:18:e0:b6:8f:80:12:81:6c:09:ef:78:a8:6c:1e:e7:
78:03:28:2c:44:7d:e3:d5:15:eb:d1:0a:47:80:cf:19:6e:3a:
ab:a5:2d:51:ec:3b:e9:a0:18:ed:a6:84:bb:20:16:ab:1d:1c:
1d:b2:8b:55:cf:30:f4:43:7a:d0:d8:10:01:0b:97:f1:2c:95:
90:f4:8a:18:75:1b:39:fc:56:42:97:cc:97:72:00:55:ae:04:
08:a4:23:0f:e8:1f:10:bc:20:2f:3d:a0:2b:e2:ed:27:6d:ae:
f7:b8:0f:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:01:15 2024 by rpki-client on console-fra.rpki-client.org