Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1d2f2d-a425-44ab-9b5d-8c3b40285566/1/SFF8v1-HKM7CSvPC6G7PuANT5g0.mft
File: SFF8v1-HKM7CSvPC6G7PuANT5g0.mft (raw, json)
Hash identifier: sxNVJXhEeIxPJTO/eY/QZ7GfOSGdvBqZtq4mnPchGAM=
Subject key identifier: 66:CE:31:F9:34:32:A2:97:82:00:A7:CD:79:01:A6:49:D3:A2:61:89
Authority key identifier: 48:51:7C:BF:5F:87:28:CE:C2:4A:F3:C2:E8:6E:CF:B8:03:53:E6:0D
Certificate issuer: /CN=48517cbf5f8728cec24af3c2e86ecfb80353e60d
Certificate serial: 01936A467E6165176E13DEA4F14E7C1076AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SFF8v1-HKM7CSvPC6G7PuANT5g0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1d2f2d-a425-44ab-9b5d-8c3b40285566/1/SFF8v1-HKM7CSvPC6G7PuANT5g0.mft
Manifest number: 0A5B
Signing time: Tue 26 Nov 2024 21:00:24 +0000
Manifest this update: Tue 26 Nov 2024 21:00:24 +0000
Manifest next update: Wed 27 Nov 2024 21:00:24 +0000
Files and hashes: 1: SFF8v1-HKM7CSvPC6G7PuANT5g0.crl (hash: ZB3zb2onJzCHNMGoS4oVc8y+NTNzfE4satZodvnABLg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/1d2f2d-a425-44ab-9b5d-8c3b40285566/1/SFF8v1-HKM7CSvPC6G7PuANT5g0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/1d2f2d-a425-44ab-9b5d-8c3b40285566/1/SFF8v1-HKM7CSvPC6G7PuANT5g0.mft
rsync://rpki.ripe.net/repository/DEFAULT/SFF8v1-HKM7CSvPC6G7PuANT5g0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:46:7e:61:65:17:6e:13:de:a4:f1:4e:7c:10:76:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48517cbf5f8728cec24af3c2e86ecfb80353e60d
Validity
Not Before: Nov 26 21:00:24 2024 GMT
Not After : Nov 27 21:00:24 2024 GMT
Subject: CN=66ce31f93432a2978200a7cd7901a649d3a26189
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c6:4b:a2:cf:4d:87:a1:42:72:9a:8b:5b:b6:
f5:25:d9:94:ac:df:71:61:22:ed:a8:85:69:1d:fd:
f5:07:de:25:bd:54:6b:52:9b:8e:3b:e0:71:15:47:
6a:26:a8:53:01:4b:15:f5:44:ba:e5:4c:28:ca:21:
1d:1f:da:17:6c:3a:2f:96:8a:be:82:ee:d4:47:36:
ab:91:ae:f1:cb:68:2d:b9:67:9b:a1:28:ea:22:4d:
b5:f9:40:21:4b:89:22:2d:e2:5f:3d:60:08:cb:88:
bd:43:b9:2a:d6:8c:5a:e9:94:dd:e7:0e:46:25:63:
23:11:45:c8:99:6a:95:3d:cc:e1:bc:22:42:54:66:
a7:49:9c:4a:89:8d:be:bc:28:33:f0:44:59:68:e1:
ce:a8:9a:1d:e3:b7:02:b6:24:e7:51:09:e7:3e:54:
19:27:5e:d3:11:40:fa:df:07:84:de:bb:fe:95:c3:
28:7e:0c:0b:6a:e4:ac:78:9e:4f:28:d8:cf:b6:af:
c7:8d:1d:6f:4b:ae:49:02:27:a7:39:f2:87:02:e4:
25:29:e7:26:d7:04:0f:e0:61:99:93:6d:39:de:ac:
5d:6b:ef:8d:a0:f8:42:bf:36:d7:0b:ae:83:03:a1:
12:7b:95:e7:37:71:b4:6d:26:3d:5d:3b:dc:a3:40:
62:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:CE:31:F9:34:32:A2:97:82:00:A7:CD:79:01:A6:49:D3:A2:61:89
X509v3 Authority Key Identifier:
keyid:48:51:7C:BF:5F:87:28:CE:C2:4A:F3:C2:E8:6E:CF:B8:03:53:E6:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SFF8v1-HKM7CSvPC6G7PuANT5g0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1d2f2d-a425-44ab-9b5d-8c3b40285566/1/SFF8v1-HKM7CSvPC6G7PuANT5g0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1d2f2d-a425-44ab-9b5d-8c3b40285566/1/SFF8v1-HKM7CSvPC6G7PuANT5g0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:f7:1e:e9:0a:2a:56:5a:af:b0:a5:ba:68:13:fc:3c:34:f7:
43:25:3a:ab:4a:7a:25:d8:9a:70:e7:38:83:ed:76:40:4b:7a:
14:bd:59:22:c0:b5:41:41:ca:80:27:3c:f7:97:0c:a0:60:fa:
d4:3d:9f:5a:fe:b7:84:15:6c:8a:92:1d:71:45:7f:5f:2b:45:
c1:0d:1a:77:f1:37:49:2d:92:a8:b5:70:77:3a:50:17:50:fa:
30:49:a2:a7:aa:7f:3f:62:64:90:d8:22:e1:00:ca:c3:8d:60:
73:80:cb:72:7f:d1:b5:ac:80:29:62:68:61:b7:35:bb:13:fa:
dd:75:fd:06:7f:9f:c1:1d:e0:81:ca:fe:ff:a8:16:f4:93:36:
3d:b1:19:84:79:d4:1e:bf:ce:29:d2:be:d6:7e:10:e7:0b:a2:
34:25:96:51:2a:2d:aa:2c:5e:20:5f:28:57:05:4f:e4:13:a9:
13:15:36:49:3f:06:31:39:01:0c:88:44:9d:c7:28:9e:de:8e:
ec:f6:03:98:00:83:11:c8:c1:f4:9d:2b:4f:e4:1f:23:86:b6:
62:77:e1:16:33:02:2a:51:35:a8:b9:63:85:82:9c:21:52:60:
3c:d2:67:a0:ec:83:0d:af:6c:ef:e4:c6:af:01:76:3e:b8:34:
bf:55:90:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:48:23 2024 by rpki-client on console-fra.rpki-client.org