Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft
File: TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft (raw, json)
Hash identifier: UmCqVKsCCTuiH2DLHexba3Qr0OCllhZLPrPWL5+0yIk=
Subject key identifier: CC:BE:12:23:8B:5B:D9:42:3F:24:90:67:06:76:FF:2D:19:27:9C:0A
Authority key identifier: 4F:01:33:3F:86:CA:97:07:1A:0F:96:12:6B:A3:8E:22:52:E7:0A:34
Certificate issuer: /CN=4f01333f86ca97071a0f96126ba38e2252e70a34
Certificate serial: 019356894C64B3E23DC5C8A0DBAD6554330B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft
Manifest number: 065F
Signing time: Sat 23 Nov 2024 01:00:58 +0000
Manifest this update: Sat 23 Nov 2024 01:00:58 +0000
Manifest next update: Sun 24 Nov 2024 01:00:58 +0000
Files and hashes: 1: TwEzP4bKlwcaD5YSa6OOIlLnCjQ.crl (hash: M9RXTTHwAXJ0zfANVWpIPNEwhgMN//QqI/H+6cZDlDM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:4c:64:b3:e2:3d:c5:c8:a0:db:ad:65:54:33:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f01333f86ca97071a0f96126ba38e2252e70a34
Validity
Not Before: Nov 23 01:00:58 2024 GMT
Not After : Nov 24 01:00:58 2024 GMT
Subject: CN=ccbe12238b5bd9423f2490670676ff2d19279c0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:5f:fc:9c:c1:a1:e2:6d:db:e3:a6:eb:25:2f:
01:e6:79:ab:1a:72:0d:51:ac:a7:31:29:4b:f2:02:
3c:89:2f:40:55:8b:27:50:15:30:fd:b0:bb:92:58:
40:30:27:76:33:27:9f:b8:79:b4:9d:a1:f5:e8:92:
f2:3d:99:a3:5e:8f:9f:b0:62:ca:1c:a6:f3:fb:02:
e1:3d:fc:c0:94:a5:30:fa:64:12:04:51:71:06:9b:
6e:82:bc:2c:8e:88:db:24:d4:07:e9:78:34:ea:fd:
65:b3:76:ac:f2:ab:e3:c4:0c:c9:03:ee:f7:40:12:
4c:3d:cc:a8:16:3e:9f:11:c7:ba:05:75:90:8b:ea:
3f:bf:9a:d7:9d:dc:57:b7:43:30:13:2c:85:3f:e9:
01:13:d8:28:5a:d6:91:22:4d:a6:25:85:60:b4:08:
b6:7d:d3:84:5f:88:d8:c2:8a:49:69:d2:12:cd:9d:
50:f5:15:d1:13:4d:7e:23:0c:06:91:97:48:c1:8d:
1e:8f:1c:47:46:d1:bb:e3:0d:2b:9a:38:85:a4:1e:
ac:2d:04:81:37:bb:30:c7:a5:76:6a:bf:e2:e2:10:
24:79:94:02:01:9f:b7:8a:47:e3:1d:fd:75:1b:f9:
61:3f:5c:72:85:61:c1:21:65:64:5b:46:23:b3:fc:
be:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:BE:12:23:8B:5B:D9:42:3F:24:90:67:06:76:FF:2D:19:27:9C:0A
X509v3 Authority Key Identifier:
keyid:4F:01:33:3F:86:CA:97:07:1A:0F:96:12:6B:A3:8E:22:52:E7:0A:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:3d:9e:c1:c2:f7:52:20:e1:cf:ab:19:52:c1:80:1e:ea:f9:
c0:00:23:ee:69:d5:dd:bc:dc:a8:33:55:df:0b:13:2e:c1:2c:
30:56:41:47:e5:29:09:08:d5:e4:47:de:09:e8:d6:09:93:5f:
28:79:a8:6a:14:15:24:f6:e1:11:ef:58:56:cf:a0:81:7f:26:
dd:d8:1b:5b:8d:d1:f8:30:24:c6:26:85:fc:ea:3e:f7:27:8c:
bd:26:90:f4:fc:90:c3:2f:fa:3a:77:86:03:de:d9:7f:ed:27:
ce:5f:1e:27:51:1b:99:86:a9:b1:49:eb:db:57:47:08:ef:1d:
37:d6:d3:9f:b0:c2:af:c3:e7:4b:db:11:5b:e9:37:42:65:19:
47:02:3c:4a:aa:b2:3d:2e:bd:cd:e3:21:15:86:ac:cc:26:7a:
c7:a4:ad:0d:dc:88:74:b0:be:4a:e4:ad:d2:5d:19:23:2e:00:
ec:80:58:2a:e5:c5:fd:78:be:5f:85:36:89:d1:b4:ef:b6:dc:
34:25:5d:55:3a:9c:6a:2d:0c:98:ba:11:1f:c7:a3:32:0e:54:
a9:e4:1f:4f:3e:b8:60:ea:f2:79:cd:7d:0a:34:93:43:8e:f1:
e0:16:76:31:d2:b7:89:04:6c:5a:03:fd:f4:ba:27:cc:f6:5d:
08:89:fc:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:45:23 2024 by rpki-client on console-ams.rpki-client.org