Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3428e7-15f9-46b4-b979-519f983c72b5/1/OPTCXh3yYxfO-ePKcgBfH3vR2vY.mft
File: OPTCXh3yYxfO-ePKcgBfH3vR2vY.mft (raw, json)
Hash identifier: 6NKxEhXigHsO5vJ36InyIEzsuiCt9kEyZHp7Z2Q06LM=
Subject key identifier: DE:0C:2B:8C:EF:24:B5:92:55:D1:C3:C5:48:95:FE:8A:76:C6:9E:A8
Authority key identifier: 38:F4:C2:5E:1D:F2:63:17:CE:F9:E3:CA:72:00:5F:1F:7B:D1:DA:F6
Certificate issuer: /CN=38f4c25e1df26317cef9e3ca72005f1f7bd1daf6
Certificate serial: 01936AB4C258CB8615E557CA5793FAC64011
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OPTCXh3yYxfO-ePKcgBfH3vR2vY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3428e7-15f9-46b4-b979-519f983c72b5/1/OPTCXh3yYxfO-ePKcgBfH3vR2vY.mft
Manifest number: 1377
Signing time: Tue 26 Nov 2024 23:00:51 +0000
Manifest this update: Tue 26 Nov 2024 23:00:51 +0000
Manifest next update: Wed 27 Nov 2024 23:00:51 +0000
Files and hashes: 1: OPTCXh3yYxfO-ePKcgBfH3vR2vY.crl (hash: yI3JzttrG9TTnGS2MsJiJf2z8R6Owvh+4IB5QsjSniA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3428e7-15f9-46b4-b979-519f983c72b5/1/OPTCXh3yYxfO-ePKcgBfH3vR2vY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3428e7-15f9-46b4-b979-519f983c72b5/1/OPTCXh3yYxfO-ePKcgBfH3vR2vY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OPTCXh3yYxfO-ePKcgBfH3vR2vY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:b4:c2:58:cb:86:15:e5:57:ca:57:93:fa:c6:40:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38f4c25e1df26317cef9e3ca72005f1f7bd1daf6
Validity
Not Before: Nov 26 23:00:51 2024 GMT
Not After : Nov 27 23:00:51 2024 GMT
Subject: CN=de0c2b8cef24b59255d1c3c54895fe8a76c69ea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:62:38:d1:92:a6:37:f2:0c:93:8e:c0:6e:24:
02:e0:86:3c:43:32:d5:c9:f8:52:f9:74:4b:dc:46:
91:41:0b:d2:9d:64:97:11:5b:07:f4:76:71:e0:e5:
b4:32:0d:0a:64:a0:cb:c8:93:70:46:57:84:46:52:
09:89:20:cc:f9:02:49:7a:51:ed:79:6d:14:d8:6a:
b3:4a:22:1b:a6:a0:18:1c:3c:01:98:d0:dd:8f:cf:
3d:b9:09:65:59:13:a3:e9:4b:ef:44:39:3d:82:63:
1f:94:9a:c2:c8:8a:68:8c:a9:ad:02:db:05:b9:5b:
cb:e8:43:06:f2:40:c6:02:d8:54:60:e3:5d:5e:98:
36:bc:96:26:c0:b9:75:33:ea:0b:0c:44:4c:fa:70:
e9:c8:bd:c1:2e:fb:8a:da:f5:cc:6a:45:bf:08:4b:
b6:96:64:3a:1e:b1:c2:bd:cd:65:ec:2e:60:a3:01:
b2:44:eb:78:57:04:67:ad:5a:b8:3a:e2:99:4a:73:
c0:42:a5:07:66:2d:c3:52:ac:e7:5c:58:19:d1:0b:
cf:2f:66:15:6c:3e:b2:ba:be:83:a7:8d:74:21:77:
21:e0:88:79:dd:1f:da:8c:bc:f4:fd:79:50:67:9f:
44:78:9a:9f:df:a8:08:7b:f2:4c:88:61:17:97:31:
7d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:0C:2B:8C:EF:24:B5:92:55:D1:C3:C5:48:95:FE:8A:76:C6:9E:A8
X509v3 Authority Key Identifier:
keyid:38:F4:C2:5E:1D:F2:63:17:CE:F9:E3:CA:72:00:5F:1F:7B:D1:DA:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OPTCXh3yYxfO-ePKcgBfH3vR2vY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3428e7-15f9-46b4-b979-519f983c72b5/1/OPTCXh3yYxfO-ePKcgBfH3vR2vY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3428e7-15f9-46b4-b979-519f983c72b5/1/OPTCXh3yYxfO-ePKcgBfH3vR2vY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:b6:97:bd:04:6e:12:93:e9:44:1e:72:0b:c5:ed:2c:b7:66:
28:f0:e6:0b:f2:1d:20:af:b0:a7:79:4d:29:b4:a1:a6:95:d5:
37:e7:bb:b2:74:db:88:6f:7b:f5:bf:de:1a:c2:27:2b:38:e7:
58:5a:f8:c5:d7:6f:c1:29:64:fb:d3:f0:48:9d:c4:9f:a5:2f:
6c:42:a1:8a:f7:96:73:6b:e3:e9:e2:0b:b0:93:eb:0a:ce:03:
67:0b:87:f0:a0:eb:ce:67:80:e7:41:cd:ae:18:2d:20:5d:09:
0a:b1:81:bd:99:0a:91:f5:0f:37:92:c8:5f:a9:b9:13:53:76:
06:8e:d6:28:7c:30:8b:02:88:5f:19:0c:7b:ac:6d:d3:d4:be:
b1:1a:1b:02:54:15:6c:69:2e:a1:f8:3b:7c:f1:e2:72:64:85:
49:e4:19:8f:60:9f:6f:db:86:07:98:4f:7e:8d:83:7b:82:cc:
01:c9:0d:71:c1:5c:01:c4:5b:76:c8:f1:e6:68:e8:f8:cd:d0:
e2:97:20:15:fb:51:35:5d:5f:68:ac:ed:cf:0f:ef:8f:68:5f:
d4:5c:d7:0e:ca:28:e6:63:dc:34:64:55:91:b8:51:53:05:9c:
7c:43:7c:00:51:70:14:89:e8:13:c9:a3:f4:cf:ef:7a:c8:bc:
ea:18:46:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:56:01 2024 by rpki-client on console-fra.rpki-client.org