Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
File: shna0BUe3wUqLxyX34hKWoeotfU.mft (raw, json)
Hash identifier: snDOR8xANdXa4igFAXibDXvYffKjyeuLApJmSGulYlI=
Subject key identifier: CE:23:5B:05:8C:4E:4A:F1:04:97:46:74:AD:51:3C:9A:CD:C7:68:D0
Authority key identifier: B2:19:DA:D0:15:1E:DF:05:2A:2F:1C:97:DF:88:4A:5A:87:A8:B5:F5
Certificate issuer: /CN=b219dad0151edf052a2f1c97df884a5a87a8b5f5
Certificate serial: 0193568A341FB4ABAA3A8E194EB5D745FA97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
Manifest number: 0513
Signing time: Sat 23 Nov 2024 01:01:58 +0000
Manifest this update: Sat 23 Nov 2024 01:01:58 +0000
Manifest next update: Sun 24 Nov 2024 01:01:58 +0000
Files and hashes: 1: shna0BUe3wUqLxyX34hKWoeotfU.crl (hash: b4AcCzHsxbbv7ceb1CRlc1Qzisako2/K8xN6mKvOo0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:34:1f:b4:ab:aa:3a:8e:19:4e:b5:d7:45:fa:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b219dad0151edf052a2f1c97df884a5a87a8b5f5
Validity
Not Before: Nov 23 01:01:58 2024 GMT
Not After : Nov 24 01:01:58 2024 GMT
Subject: CN=ce235b058c4e4af104974674ad513c9acdc768d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:44:11:77:ac:65:42:b1:e2:44:55:5c:1b:02:
cd:58:0e:14:5f:88:c2:00:c9:14:bd:c9:73:6f:57:
ba:b1:46:7a:0f:30:5f:09:30:8e:f4:ce:98:46:1e:
18:87:71:6f:7d:52:ae:9c:bc:2c:91:5c:2b:2b:be:
2d:55:cd:71:dc:5e:2a:95:9e:f2:e8:85:dd:da:fc:
da:cb:0b:da:31:d4:eb:84:06:c7:f9:93:97:57:ff:
f4:99:90:0a:20:a2:5b:7a:52:58:c9:cf:83:7f:65:
ed:0d:b1:dc:6f:6b:a2:59:a1:cc:9d:a3:3a:e1:67:
c1:34:03:07:f6:bd:1d:28:65:dd:85:98:40:32:2a:
11:dc:fb:28:89:5c:64:db:4f:09:73:33:a7:2f:c7:
e8:e4:bc:8e:b6:b7:e5:9b:4d:04:17:70:4f:73:25:
53:ab:36:cd:10:94:d9:31:06:b1:f9:c7:b4:91:2e:
01:90:4a:43:c7:f4:8c:44:c0:20:50:89:cb:90:84:
4d:bd:bf:82:43:88:47:7f:f7:09:c5:59:9d:ae:f8:
d4:99:32:f2:d4:9a:8d:b0:21:73:b1:6c:ce:7e:88:
8a:80:d9:21:d3:09:b0:e7:fa:75:12:ae:a0:81:7a:
a7:e8:00:57:c4:eb:77:94:5d:9b:c6:b9:e2:96:0e:
28:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:23:5B:05:8C:4E:4A:F1:04:97:46:74:AD:51:3C:9A:CD:C7:68:D0
X509v3 Authority Key Identifier:
keyid:B2:19:DA:D0:15:1E:DF:05:2A:2F:1C:97:DF:88:4A:5A:87:A8:B5:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:4d:75:96:2a:ac:30:63:ce:a0:4f:d0:5b:e9:1a:e4:23:40:
2c:3c:55:3e:7f:6a:54:c5:11:60:b4:ac:65:b6:89:5d:8f:bd:
4a:ea:3c:d8:3f:52:60:b9:da:01:2d:83:3f:da:b7:28:dd:5d:
25:5a:a2:65:15:ed:14:71:51:f5:13:40:40:64:d7:a0:e0:67:
2d:7f:42:50:93:1e:23:7c:29:7a:1a:7a:37:3b:e5:15:bd:0d:
6c:bf:22:bc:f4:ee:bb:af:41:98:78:27:d3:1c:01:96:52:32:
5d:5a:8e:ed:5b:ac:32:89:5f:0d:06:f4:a3:71:0e:5b:9c:7f:
3e:ad:89:fa:f9:23:e8:d1:07:02:54:12:05:42:c8:5b:55:4d:
b4:7e:36:66:af:d4:0a:62:34:4a:6a:d5:af:94:53:48:32:fa:
c1:19:95:e0:cf:cc:15:ab:0a:2e:7f:93:82:3a:10:47:5e:5d:
91:0f:d9:a7:1e:fc:f5:fc:52:80:f0:b6:3c:ad:96:0d:db:12:
66:e3:ca:3a:e2:0c:40:30:76:8d:14:e4:d8:c3:f4:5f:72:1e:
e0:40:90:9a:d0:51:ee:3d:a4:d3:63:c0:a7:ad:2b:a9:03:08:
6d:be:b0:bb:b6:22:cf:ee:9f:fe:92:99:95:02:1f:93:21:82:
98:68:3b:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:02:28 2024 by rpki-client on console-fra.rpki-client.org