Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/6efb44-012b-415f-8220-c6220e185694/1/IQdBCPDRRZtitsetsn1pNLoL56U.mft
File: IQdBCPDRRZtitsetsn1pNLoL56U.mft (raw, json)
Hash identifier: 6u2j68yPLg+l9H2IussIh1rZ1jJvHyNbQXXXFkWACwU=
Subject key identifier: 5A:30:2C:E1:5F:B2:68:8B:3E:0A:A7:D7:BA:FC:1F:24:82:F8:73:A0
Authority key identifier: 21:07:41:08:F0:D1:45:9B:62:B6:C7:AD:B2:7D:69:34:BA:0B:E7:A5
Certificate issuer: /CN=21074108f0d1459b62b6c7adb27d6934ba0be7a5
Certificate serial: 0193688EFF3C72C0D8ACD2A1D0530E1D4715
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQdBCPDRRZtitsetsn1pNLoL56U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/6efb44-012b-415f-8220-c6220e185694/1/IQdBCPDRRZtitsetsn1pNLoL56U.mft
Manifest number: 1308
Signing time: Tue 26 Nov 2024 13:00:22 +0000
Manifest this update: Tue 26 Nov 2024 13:00:22 +0000
Manifest next update: Wed 27 Nov 2024 13:00:22 +0000
Files and hashes: 1: IQdBCPDRRZtitsetsn1pNLoL56U.crl (hash: mPQF5lDrDLzSMs5qRI9aBruoBeOjlV2kWCP8/JahJZc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/6efb44-012b-415f-8220-c6220e185694/1/IQdBCPDRRZtitsetsn1pNLoL56U.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/6efb44-012b-415f-8220-c6220e185694/1/IQdBCPDRRZtitsetsn1pNLoL56U.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQdBCPDRRZtitsetsn1pNLoL56U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 13:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:8e:ff:3c:72:c0:d8:ac:d2:a1:d0:53:0e:1d:47:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21074108f0d1459b62b6c7adb27d6934ba0be7a5
Validity
Not Before: Nov 26 13:00:22 2024 GMT
Not After : Nov 27 13:00:22 2024 GMT
Subject: CN=5a302ce15fb2688b3e0aa7d7bafc1f2482f873a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fc:8d:9a:a0:9a:e2:d3:85:42:53:4f:99:14:
e8:72:72:6a:40:14:4b:e6:41:66:01:6e:d6:f9:83:
be:a8:cb:4e:f9:e8:da:92:0f:de:05:c3:d9:f8:7f:
a9:d9:dc:a0:8a:6b:50:4e:e0:49:db:c6:cf:bf:8e:
f6:f5:11:68:4d:01:f0:6a:f3:e5:76:6c:7b:41:61:
a0:b2:10:63:fd:f0:09:37:f8:68:16:b5:ed:c4:03:
82:01:17:ff:12:8a:51:09:68:55:f2:8a:41:e8:ef:
5d:74:6f:e0:81:cd:16:33:38:9e:dc:49:45:44:47:
ff:30:15:92:0b:fd:ac:e2:ae:bf:66:af:b2:c7:df:
d9:61:43:41:c2:8b:61:86:1f:07:12:a5:5d:48:96:
23:4b:d0:e8:77:fd:be:88:9f:d9:35:96:fa:56:34:
69:e0:19:da:89:a7:ca:6b:9b:e5:4a:9b:6a:7a:44:
16:1f:69:30:2c:3a:dc:aa:30:1c:18:d6:3f:74:3c:
9c:c6:db:43:75:40:28:c1:9d:0a:24:0b:ac:df:27:
b7:28:58:78:20:98:89:12:97:d3:08:a1:30:c8:55:
e4:bf:46:ba:84:d4:92:c7:a2:f7:50:75:e2:f7:b2:
fd:d7:51:cb:9b:3e:f2:54:fc:d4:29:08:12:42:91:
12:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:30:2C:E1:5F:B2:68:8B:3E:0A:A7:D7:BA:FC:1F:24:82:F8:73:A0
X509v3 Authority Key Identifier:
keyid:21:07:41:08:F0:D1:45:9B:62:B6:C7:AD:B2:7D:69:34:BA:0B:E7:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQdBCPDRRZtitsetsn1pNLoL56U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6efb44-012b-415f-8220-c6220e185694/1/IQdBCPDRRZtitsetsn1pNLoL56U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6efb44-012b-415f-8220-c6220e185694/1/IQdBCPDRRZtitsetsn1pNLoL56U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:03:fe:91:3a:e7:8c:82:45:ed:a8:57:93:af:bf:79:59:6f:
41:45:dd:d2:50:6a:a4:93:42:aa:0b:7a:58:33:36:6c:d3:f4:
99:7e:fd:01:57:7c:81:f8:79:f1:28:5c:ac:db:28:2c:a7:61:
bb:f6:2c:39:9b:a5:1e:a1:06:b4:0b:a4:63:ad:53:9b:bc:32:
a4:97:34:bf:c5:bf:9e:4c:c3:d6:61:25:ff:34:db:84:b8:a9:
c4:32:c5:ff:a0:b7:fb:6f:58:2b:e2:97:04:3d:e8:fd:0c:e2:
ad:ff:0a:6a:9e:b5:ac:77:09:1f:fb:66:87:a7:9d:02:c7:a7:
22:5d:b8:6c:3c:2d:d1:47:35:6a:7c:b7:58:0f:60:c6:98:43:
78:dd:6e:4a:8d:40:2f:39:b0:c7:fd:d5:4d:34:4a:74:20:b4:
6c:ea:be:05:9f:26:4a:8a:2b:1e:97:6b:51:ac:11:fa:6a:fe:
10:5f:a2:8e:78:e0:e2:b9:0f:0c:79:0b:52:75:4c:b4:ed:0a:
91:af:d3:c2:6d:b9:67:8c:9a:e7:e2:5d:4f:0a:ce:7e:58:92:
5d:c0:48:c5:a1:0d:a5:7e:11:77:2c:cb:4e:30:ff:66:3f:e1:
60:fd:f5:a3:8c:9c:a8:e1:14:9d:a6:f2:c5:37:70:56:56:f3:
68:34:71:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 22:23:14 2024 by rpki-client on console-ams.rpki-client.org