Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/a5ca0b-9425-4c1e-8ef6-a6fcad19aef2/1/U9L19sohYsiL85oPnekm9CPlMQQ.mft
File: U9L19sohYsiL85oPnekm9CPlMQQ.mft (raw, json)
Hash identifier: ZPRr6FlBUXs+ywla9ysnZ1MAvlOAWGeVDKzCBRv5GEE=
Subject key identifier: A9:F2:6E:D8:BE:11:3B:DF:4C:FA:CA:47:8B:83:76:D2:AF:CB:26:EC
Authority key identifier: 53:D2:F5:F6:CA:21:62:C8:8B:F3:9A:0F:9D:E9:26:F4:23:E5:31:04
Certificate issuer: /CN=53d2f5f6ca2162c88bf39a0f9de926f423e53104
Certificate serial: 019369DA83AFE1707544282DD46D2DD04683
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U9L19sohYsiL85oPnekm9CPlMQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/a5ca0b-9425-4c1e-8ef6-a6fcad19aef2/1/U9L19sohYsiL85oPnekm9CPlMQQ.mft
Manifest number: 0CE2
Signing time: Tue 26 Nov 2024 19:02:28 +0000
Manifest this update: Tue 26 Nov 2024 19:02:28 +0000
Manifest next update: Wed 27 Nov 2024 19:02:28 +0000
Files and hashes: 1: U9L19sohYsiL85oPnekm9CPlMQQ.crl (hash: lqLGpGOLNxD07HYe7as5v9vO9TfxXPfhs9v2ldgeSXw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/a5ca0b-9425-4c1e-8ef6-a6fcad19aef2/1/U9L19sohYsiL85oPnekm9CPlMQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/a5ca0b-9425-4c1e-8ef6-a6fcad19aef2/1/U9L19sohYsiL85oPnekm9CPlMQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/U9L19sohYsiL85oPnekm9CPlMQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:da:83:af:e1:70:75:44:28:2d:d4:6d:2d:d0:46:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53d2f5f6ca2162c88bf39a0f9de926f423e53104
Validity
Not Before: Nov 26 19:02:28 2024 GMT
Not After : Nov 27 19:02:28 2024 GMT
Subject: CN=a9f26ed8be113bdf4cfaca478b8376d2afcb26ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:43:f4:27:91:8e:20:a2:d9:25:a6:f5:fe:33:
fc:58:f1:b9:b3:ab:48:9f:2d:aa:9a:2c:a4:ad:06:
2f:bc:4a:e8:63:fd:48:6c:a0:22:49:a5:89:58:38:
61:b1:1d:35:99:62:1c:36:e0:21:75:b3:17:bf:cd:
4b:ab:b7:2f:cf:2d:b6:dc:07:5a:21:13:8a:d1:19:
9a:1d:47:93:51:02:47:a8:08:5f:dd:a5:7e:0b:2b:
a1:2b:1e:19:cd:78:4e:99:18:4f:16:01:d9:60:3e:
27:7b:5d:de:66:cf:1d:d3:be:d6:15:54:f8:57:84:
da:fc:a3:5b:0a:55:b7:2a:af:35:a1:c4:44:99:57:
d7:9c:42:f0:b8:4f:93:46:c0:38:f8:de:50:81:44:
b3:d9:26:3e:44:1d:35:c8:b6:ab:1a:c9:7a:39:9a:
7e:e8:d9:30:9e:09:c1:c4:f9:b3:1d:6a:83:a5:c7:
b6:d0:8c:77:0b:ce:a2:f1:28:d2:df:96:c3:e2:5b:
62:07:37:58:20:9d:ef:79:cf:98:2f:51:a8:af:a9:
38:52:65:51:e4:09:bf:33:d6:09:18:db:da:59:f8:
b1:e2:73:7c:b4:5f:f3:9d:9c:15:4c:11:f0:5b:9a:
17:81:68:e2:cf:19:8c:6c:9c:0a:ff:0b:66:12:7d:
cb:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:F2:6E:D8:BE:11:3B:DF:4C:FA:CA:47:8B:83:76:D2:AF:CB:26:EC
X509v3 Authority Key Identifier:
keyid:53:D2:F5:F6:CA:21:62:C8:8B:F3:9A:0F:9D:E9:26:F4:23:E5:31:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U9L19sohYsiL85oPnekm9CPlMQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/a5ca0b-9425-4c1e-8ef6-a6fcad19aef2/1/U9L19sohYsiL85oPnekm9CPlMQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/a5ca0b-9425-4c1e-8ef6-a6fcad19aef2/1/U9L19sohYsiL85oPnekm9CPlMQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:fd:d3:99:57:73:57:b3:5a:de:be:e2:27:15:e8:85:55:5c:
0c:3f:55:5e:3a:76:20:af:6d:6d:0b:4c:41:3f:61:e1:e3:c0:
a9:c8:16:61:ef:92:2f:41:d7:5e:e2:63:b5:c3:91:03:1a:af:
da:cb:36:e4:92:50:69:ea:cb:ba:52:7c:df:19:48:1a:40:f3:
3f:2c:ef:51:6f:02:3a:02:e9:ab:96:4c:6c:0a:61:a8:68:14:
4e:5a:40:fa:50:5f:6c:43:9b:c5:71:44:d6:ac:e8:b7:f3:eb:
b0:dd:9d:d7:f0:c8:b6:28:20:7e:dd:87:2b:27:9e:d4:38:da:
e6:f2:c0:27:81:6a:0f:7a:ca:d9:9d:4b:b7:6e:74:7a:4b:c8:
42:9b:66:59:d4:33:40:96:7d:5a:ce:28:cf:4f:ea:89:95:50:
66:31:19:a8:09:58:a1:0e:48:86:1a:e2:3f:6f:f3:d3:e3:63:
08:98:d1:3b:9f:5c:0b:8e:ee:7d:fa:0b:03:79:d0:16:4a:dd:
4b:f8:86:36:55:d5:51:4d:26:27:0f:f4:70:f7:db:7c:ab:5a:
6b:a4:52:dd:d1:61:b7:7e:dd:8d:f6:1d:eb:ce:1f:56:8e:f8:
e7:6b:f3:5c:65:4e:90:53:38:d2:ec:98:67:8a:0b:94:62:49:
5e:7f:e9:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 21:15:50 2024 by rpki-client on console-fra.rpki-client.org