Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.mft
File: 3k_14NZGWzwsc6LG4Q5WovpzFic.mft (raw, json)
Hash identifier: GcLo6xN/cX9P/xJGqcLfRhwdhGnx0oRVeRMcp80nUcE=
Subject key identifier: FA:D5:3A:6D:44:95:06:D2:08:D4:45:E0:BD:3D:80:DB:1D:CD:20:52
Authority key identifier: DE:4F:F5:E0:D6:46:5B:3C:2C:73:A2:C6:E1:0E:56:A2:FA:73:16:27
Certificate issuer: /CN=de4ff5e0d6465b3c2c73a2c6e10e56a2fa731627
Certificate serial: 019357D2DF4E40F7637E6333B7F3542FD215
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3k_14NZGWzwsc6LG4Q5WovpzFic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.mft
Manifest number: 0B0A
Signing time: Sat 23 Nov 2024 07:00:57 +0000
Manifest this update: Sat 23 Nov 2024 07:00:57 +0000
Manifest next update: Sun 24 Nov 2024 07:00:57 +0000
Files and hashes: 1: 3k_14NZGWzwsc6LG4Q5WovpzFic.crl (hash: 2fHL25pAt9nTlTuu7WlidesWUagU/8wyVZkeqktL0XA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.mft
rsync://rpki.ripe.net/repository/DEFAULT/3k_14NZGWzwsc6LG4Q5WovpzFic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:df:4e:40:f7:63:7e:63:33:b7:f3:54:2f:d2:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de4ff5e0d6465b3c2c73a2c6e10e56a2fa731627
Validity
Not Before: Nov 23 07:00:57 2024 GMT
Not After : Nov 24 07:00:57 2024 GMT
Subject: CN=fad53a6d449506d208d445e0bd3d80db1dcd2052
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:06:e9:8b:7b:62:e9:59:c6:79:53:59:c7:77:
2e:4d:57:cf:cb:5c:2c:a4:80:c8:a1:a0:9a:72:a6:
2b:da:95:4c:33:de:ca:de:0b:99:b4:ca:f1:56:73:
04:59:db:58:67:7a:2a:8f:e3:6a:b8:54:fa:33:7e:
cf:05:3c:d3:d6:79:6e:0f:50:61:59:95:3d:29:54:
e6:10:6b:f4:42:25:17:dc:57:e6:a2:26:75:40:f3:
3b:d8:f0:76:dd:59:20:0e:a7:2f:51:92:b4:fa:5e:
60:b7:08:df:eb:27:82:b2:05:09:78:ba:9b:df:52:
bd:d6:e7:c0:38:b1:26:6a:fc:4a:cb:e8:d5:fe:0e:
f4:19:a4:72:fe:f0:49:f7:4b:11:f2:44:bd:12:89:
e2:6f:a3:dc:02:41:d8:d6:96:26:13:1f:ec:84:58:
54:f1:b3:e9:96:41:f3:f3:6c:f5:28:83:d1:22:8d:
c6:0a:13:2d:bc:50:4f:b8:9d:a1:63:c3:b0:e2:b8:
0a:21:f4:c6:4b:b9:c2:c3:2d:41:b4:11:72:e6:68:
b2:99:0f:02:4c:bb:ad:8c:ec:8f:56:10:05:01:b1:
99:cb:66:8a:fe:ae:ae:68:0f:03:6d:1a:35:a5:5b:
7e:01:de:73:40:ba:2c:3d:9c:f2:d6:3f:39:23:d3:
6e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:D5:3A:6D:44:95:06:D2:08:D4:45:E0:BD:3D:80:DB:1D:CD:20:52
X509v3 Authority Key Identifier:
keyid:DE:4F:F5:E0:D6:46:5B:3C:2C:73:A2:C6:E1:0E:56:A2:FA:73:16:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3k_14NZGWzwsc6LG4Q5WovpzFic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:37:8f:0c:50:58:e5:cd:f6:d0:98:1b:d9:fc:bc:c0:8c:de:
ca:81:b6:74:69:52:5a:5b:98:fb:24:c4:4e:8a:5f:2a:fa:8b:
ff:0c:f4:67:b7:42:22:eb:1a:8f:cf:53:00:0c:66:7d:0c:c0:
c8:cc:9d:b5:0e:04:4e:75:30:c0:1f:c3:86:38:d1:fd:62:22:
b7:cf:5d:48:c5:d1:a6:a2:52:af:77:7a:d0:d2:d0:97:75:f1:
6f:07:33:21:e1:b8:7e:42:f3:b1:dc:ba:f4:88:47:ab:6b:03:
77:6e:9b:c2:7c:2f:3f:c9:78:11:2d:8a:89:3c:de:a4:dd:be:
cf:f8:8d:1e:1c:a5:ad:a6:b3:80:8d:f2:e9:f9:b9:55:30:70:
bf:3a:6d:ad:fa:74:47:97:04:b4:ee:be:6e:bd:60:f2:07:8b:
71:ea:9d:48:0c:06:34:08:6c:c4:6e:51:f3:ad:86:0a:1e:1a:
1a:56:cf:8c:f7:3b:c3:13:a9:8c:74:4b:f5:7c:6c:09:17:0e:
9c:eb:d3:4d:6b:1d:82:4c:fb:1f:e7:4b:f5:29:33:27:bb:65:
16:d8:e3:5c:9b:ba:0d:31:c2:ec:01:f3:79:93:39:37:22:5e:
53:e6:12:8b:92:fb:53:b3:e3:22:85:f5:8d:95:70:a5:ea:66:
c6:9c:51:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:04:29 2024 by rpki-client on console-fra.rpki-client.org