Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
File: DUHQpubfLhjCVnMjaNbnaCiTExA.mft (raw, json)
Hash identifier: V0NHUDs4ZbxJvTHPT5HxUhyoB6UTUaLpSeXJfB9XoqY=
Subject key identifier: B4:2B:5B:73:C3:B6:DD:9E:6A:37:70:C1:69:9A:FA:F8:A0:9B:FA:A3
Authority key identifier: 0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10
Certificate issuer: /CN=0d41d0a6e6df2e18c256732368d6e76828931310
Certificate serial: 019357D2521E46BBB4D087948B3D578C8E43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
Manifest number: 0CB8
Signing time: Sat 23 Nov 2024 07:00:21 +0000
Manifest this update: Sat 23 Nov 2024 07:00:21 +0000
Manifest next update: Sun 24 Nov 2024 07:00:21 +0000
Files and hashes: 1: DUHQpubfLhjCVnMjaNbnaCiTExA.crl (hash: 8hapUFmdyV1ZmMLPK8BIfUHlBiCIVx5XA02EzKNXfYU=)
2: L4NKfF-tf-nx__AzWv0yIZvYnhY.roa (hash: zA3ihhgrtvtHqG4sO/IPWPJHST//Xxv1Nig8QBl+scA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:52:1e:46:bb:b4:d0:87:94:8b:3d:57:8c:8e:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d41d0a6e6df2e18c256732368d6e76828931310
Validity
Not Before: Nov 23 07:00:21 2024 GMT
Not After : Nov 24 07:00:21 2024 GMT
Subject: CN=b42b5b73c3b6dd9e6a3770c1699afaf8a09bfaa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2c:81:50:b0:c1:3c:c3:4f:16:01:3c:90:73:
49:d4:c2:77:1e:d7:34:9c:8e:91:30:9a:6f:c0:b0:
66:dc:ef:b1:da:f7:45:47:9c:f9:70:cd:90:c9:cd:
60:03:9b:cb:35:31:5c:52:b4:8d:f1:7f:d0:9d:16:
f2:cc:0f:ef:9f:cc:3f:42:ab:57:04:7c:45:c5:58:
8d:90:90:e7:9b:25:a1:1f:73:9a:ba:c6:d8:6c:fe:
ef:1d:63:a1:2e:b8:0c:f7:b6:5a:6f:71:1d:41:be:
a0:3e:63:2e:f3:4b:9f:02:68:ed:68:77:b0:18:a7:
70:48:4a:e8:22:fa:9a:2c:a9:ba:b6:97:60:88:85:
fb:d0:3b:d5:95:5e:fb:fd:09:59:57:81:b7:a1:97:
0a:76:25:56:ec:17:f5:28:bd:61:8d:bc:9f:96:44:
97:ea:20:a0:d4:2c:02:b6:13:3d:4d:06:96:a5:4f:
a2:84:00:1c:8c:30:a6:d0:15:2c:ab:cf:98:e6:03:
ee:ce:93:76:fe:ce:f3:66:0d:99:39:48:27:dd:aa:
5e:f7:a0:bf:aa:98:2b:7a:7b:e1:40:6c:4d:b3:2c:
e8:aa:72:3f:4d:bd:03:d2:e7:80:6d:47:bb:49:36:
7d:1c:2c:42:f6:df:cb:a9:d5:25:b7:1a:e8:a5:79:
d4:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:2B:5B:73:C3:B6:DD:9E:6A:37:70:C1:69:9A:FA:F8:A0:9B:FA:A3
X509v3 Authority Key Identifier:
keyid:0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:d4:03:60:65:32:eb:6d:94:82:da:01:52:7d:80:84:58:d4:
95:f4:06:7e:7b:94:58:63:26:97:42:51:a9:5e:df:d2:e5:38:
fa:0e:74:af:5e:93:be:a4:2c:d1:6e:79:2d:71:eb:68:3f:5c:
3f:83:ab:cb:a9:59:a1:73:cf:eb:2c:ec:85:6c:08:4f:f7:2a:
a6:e3:cf:a9:d4:7c:57:74:07:0e:4f:07:67:aa:e5:fc:e7:2d:
14:80:b8:09:4b:df:17:3a:94:78:c8:da:17:66:73:d9:99:77:
1c:04:9e:cc:ec:ab:83:ba:b0:b3:b2:df:f3:9a:5d:41:4e:b0:
d8:4a:3b:03:fa:84:15:dd:81:ac:32:3d:b5:8f:28:9c:e9:10:
ba:45:8a:a3:f1:bc:02:38:9c:3c:04:70:3b:89:2b:31:2d:4f:
be:82:35:36:d7:35:59:b8:04:f3:20:f9:78:e9:d9:6b:ab:ae:
a7:69:5e:b6:05:4e:a8:ce:e6:22:d9:a8:87:44:14:44:8c:05:
ea:d1:16:81:da:db:2d:a1:3a:82:ba:ad:8d:68:0e:09:6e:25:
be:70:31:83:94:34:5c:02:03:1e:d2:d9:f2:91:5b:f5:f7:63:
e6:5d:fb:f7:8f:c9:ef:73:84:d6:9d:72:9f:67:1c:55:08:95:
19:bb:f4:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:45:26 2024 by rpki-client on console-ams.rpki-client.org