Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/ab7efb-2d60-4e69-9e06-01c996e0b7e7/1/jPJ69YYwRc-otYseJ3aSueHTje0.mft
File: jPJ69YYwRc-otYseJ3aSueHTje0.mft (raw, json)
Hash identifier: nuAYrtCwRtx3NLPR5W8S+7KuI3TJfnQcKCr3xPcK0fo=
Subject key identifier: C8:17:F4:02:05:CB:5F:B4:ED:AD:08:13:B2:B3:BF:62:12:78:CA:87
Authority key identifier: 8C:F2:7A:F5:86:30:45:CF:A8:B5:8B:1E:27:76:92:B9:E1:D3:8D:ED
Certificate issuer: /CN=8cf27af5863045cfa8b58b1e277692b9e1d38ded
Certificate serial: 01935689A24C50AF800AB708C77083992670
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jPJ69YYwRc-otYseJ3aSueHTje0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/ab7efb-2d60-4e69-9e06-01c996e0b7e7/1/jPJ69YYwRc-otYseJ3aSueHTje0.mft
Manifest number: 1370
Signing time: Sat 23 Nov 2024 01:01:20 +0000
Manifest this update: Sat 23 Nov 2024 01:01:20 +0000
Manifest next update: Sun 24 Nov 2024 01:01:20 +0000
Files and hashes: 1: jPJ69YYwRc-otYseJ3aSueHTje0.crl (hash: u1nkryJRLeeGs5b8aBtu4g0SL8x1dXQzwQzt27QARF4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/ab7efb-2d60-4e69-9e06-01c996e0b7e7/1/jPJ69YYwRc-otYseJ3aSueHTje0.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/ab7efb-2d60-4e69-9e06-01c996e0b7e7/1/jPJ69YYwRc-otYseJ3aSueHTje0.mft
rsync://rpki.ripe.net/repository/DEFAULT/jPJ69YYwRc-otYseJ3aSueHTje0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:a2:4c:50:af:80:0a:b7:08:c7:70:83:99:26:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8cf27af5863045cfa8b58b1e277692b9e1d38ded
Validity
Not Before: Nov 23 01:01:20 2024 GMT
Not After : Nov 24 01:01:20 2024 GMT
Subject: CN=c817f40205cb5fb4edad0813b2b3bf621278ca87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:84:85:65:5c:1f:b5:bb:92:50:8c:2f:96:f6:
35:eb:d6:0f:00:a7:73:ab:5c:3c:8e:21:75:d0:59:
3e:1d:60:b7:04:4e:0b:0e:8b:4e:31:af:42:76:dd:
5d:2f:da:dc:3b:21:f7:6f:61:91:dc:1b:03:89:34:
15:4b:71:f7:ad:4d:0d:3a:11:ef:50:e9:ef:07:fd:
72:c6:2d:49:0a:5e:9b:02:52:0d:0e:cf:c7:7e:73:
72:ad:77:51:56:b4:85:38:e4:54:c9:5e:16:0b:e4:
4b:f4:9b:88:23:e5:03:60:0f:25:4e:55:6f:1e:3f:
ed:57:e3:ab:69:bc:b5:3c:49:d0:8d:7b:62:65:dd:
a2:71:31:09:78:b8:f4:50:2d:6e:b2:75:51:2c:a0:
cd:97:a0:61:6d:b5:6d:ae:51:3f:c0:16:6a:18:c5:
dc:6a:71:ee:70:d5:a5:b4:16:94:8c:42:32:af:c0:
39:9a:70:5e:42:33:08:26:e3:60:cb:c2:80:cb:5e:
88:1d:ad:f1:8b:e2:89:5d:16:76:b9:34:95:4e:10:
10:60:16:0e:76:4f:d7:de:d2:3a:e8:54:8d:8b:31:
df:56:be:b5:ad:60:0c:b8:0e:0d:6e:57:55:fc:1d:
2b:8b:df:fa:1c:64:ca:1f:a8:5b:56:7f:25:e8:c8:
4b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:17:F4:02:05:CB:5F:B4:ED:AD:08:13:B2:B3:BF:62:12:78:CA:87
X509v3 Authority Key Identifier:
keyid:8C:F2:7A:F5:86:30:45:CF:A8:B5:8B:1E:27:76:92:B9:E1:D3:8D:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jPJ69YYwRc-otYseJ3aSueHTje0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/ab7efb-2d60-4e69-9e06-01c996e0b7e7/1/jPJ69YYwRc-otYseJ3aSueHTje0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/ab7efb-2d60-4e69-9e06-01c996e0b7e7/1/jPJ69YYwRc-otYseJ3aSueHTje0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:4a:f4:d5:4d:06:eb:61:2f:f4:35:e9:26:e7:79:4a:bb:e8:
f7:16:c1:d0:4a:97:ce:2f:f1:cd:fb:3f:c9:b6:92:a0:e3:36:
d1:55:57:51:b7:67:71:86:21:a3:99:b0:8a:0f:07:a2:5b:ac:
6a:ef:34:8b:66:77:3f:40:a0:9d:e9:1c:e1:8a:62:4e:b5:dc:
ae:84:5f:aa:d6:e2:1f:3e:92:57:15:3d:84:0f:91:ac:ee:d8:
c6:86:e5:9e:78:4d:29:25:87:2f:eb:87:5a:41:59:07:28:f1:
1e:8e:96:20:d4:72:81:8c:08:5d:8e:12:54:27:69:90:f6:f8:
28:58:cc:98:c4:bf:60:02:4e:9f:7f:a9:22:71:04:04:65:46:
cc:6e:1f:e5:29:3e:f3:64:a0:7d:47:e5:6c:e9:f5:bb:62:55:
88:ac:da:7b:2c:02:e4:c5:89:78:9c:b9:e5:00:bf:1a:c5:5c:
3c:fa:6d:24:4a:4c:11:46:3a:b8:d8:b2:1c:74:a0:d2:f8:1e:
ac:a9:52:ad:0e:e6:f6:3d:db:11:42:b4:71:cc:aa:6a:5f:2e:
b3:8a:9b:d0:a3:83:47:f5:be:b0:6b:eb:b5:36:7b:65:8b:69:
b7:1d:65:d1:df:64:26:2e:69:e8:3f:ad:f9:b1:15:0c:9b:51:
8e:49:46:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:44:54 2024 by rpki-client on console-ams.rpki-client.org