Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft
File: 2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft (raw, json)
Hash identifier: 8/JvrYn96BK7YucL937N812SHy61td44p00X2ivUTZE=
Subject key identifier: C0:59:1E:AB:56:1A:F0:29:F0:5A:EB:6B:95:6B:A5:EE:52:1A:3C:E3
Authority key identifier: DA:E5:76:31:F6:0A:DB:13:F0:AE:36:86:71:CE:0F:87:42:F5:97:7F
Certificate issuer: /CN=dae57631f60adb13f0ae368671ce0f8742f5977f
Certificate serial: 019406B3DE0FD82D0F73BC432B11B206BB94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft
Manifest number: 13C7
Signing time: Fri 27 Dec 2024 06:00:38 +0000
Manifest this update: Fri 27 Dec 2024 06:00:38 +0000
Manifest next update: Sat 28 Dec 2024 06:00:38 +0000
Files and hashes: 1: 2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl (hash: MU3Nujkhn457EHhLHcLl67bYJhxsIVWLjGHi+fBskAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft
rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 00:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:06:b3:de:0f:d8:2d:0f:73:bc:43:2b:11:b2:06:bb:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dae57631f60adb13f0ae368671ce0f8742f5977f
Validity
Not Before: Dec 27 06:00:38 2024 GMT
Not After : Dec 28 06:00:38 2024 GMT
Subject: CN=c0591eab561af029f05aeb6b956ba5ee521a3ce3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ab:bd:5a:de:a0:15:0a:cb:cf:55:a6:70:23:
cf:f0:99:5e:11:ec:34:c8:85:29:8c:f7:27:3a:9d:
17:d5:ac:92:e4:31:2d:29:6d:05:bc:c8:0d:56:39:
1c:0d:e9:2e:87:d3:e1:f3:c8:e9:68:67:c8:7b:6b:
63:18:6e:10:2a:f4:1b:2b:59:3a:a0:7d:bf:cb:6a:
7c:d1:90:54:98:f2:16:5f:4b:2f:a7:2d:44:33:ba:
a5:83:41:3d:d3:22:44:fd:f0:93:9f:68:ba:2e:7f:
26:68:9e:2e:b3:22:f6:93:4f:2a:c3:58:ca:85:b4:
46:fa:23:ed:70:ea:82:8e:90:1c:02:98:d7:f2:c5:
7c:b9:4c:30:99:1c:64:5f:33:bf:f8:41:7d:81:5e:
f6:b0:38:44:ee:d8:5a:4d:d4:78:f8:bc:77:e0:9b:
11:32:63:75:12:d3:50:f3:ac:d8:49:d9:7c:03:f0:
9f:e6:5d:d1:d7:29:0a:6c:67:5f:0b:4d:26:87:b2:
63:f2:ed:fa:c4:aa:48:30:39:c5:e1:cf:35:c8:11:
c6:01:0f:0f:44:62:5e:74:be:e3:d5:3c:0e:25:8f:
b8:a5:95:e5:49:d7:db:e9:a7:20:58:0e:1d:bd:b8:
91:f7:39:59:f5:c8:ee:83:47:d7:65:83:25:48:56:
2e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:59:1E:AB:56:1A:F0:29:F0:5A:EB:6B:95:6B:A5:EE:52:1A:3C:E3
X509v3 Authority Key Identifier:
keyid:DA:E5:76:31:F6:0A:DB:13:F0:AE:36:86:71:CE:0F:87:42:F5:97:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:ff:e1:0d:22:3b:db:78:17:d0:a7:d2:ec:f6:81:c1:f4:ce:
08:4a:78:fd:6f:32:6f:f4:c6:5b:d0:7a:f3:53:0a:e3:bc:ef:
c0:73:9f:0a:4a:68:41:cc:fe:3d:2c:d1:c3:47:84:94:48:de:
4e:a5:0c:58:14:16:9d:45:e6:b5:64:f1:01:a9:8b:87:ba:3b:
1d:23:4d:d1:3a:20:6c:1e:7f:eb:7c:e9:52:cd:c4:81:60:cf:
f8:3c:a8:b7:09:d3:f6:27:5d:32:2e:80:83:2c:be:c1:cd:c6:
2b:74:38:97:8c:e2:bc:d7:a0:ae:91:16:d3:79:e6:cc:cb:8c:
4c:df:37:b4:1c:82:26:13:67:2b:b3:99:27:25:2b:c4:d0:e4:
b6:0c:1d:42:cc:7c:8d:ae:c2:07:fd:d4:06:69:b8:c4:e6:99:
69:00:5f:1b:91:b2:a5:de:e9:84:57:e1:4e:15:d7:55:b1:0b:
42:56:3b:ec:6b:3f:9d:6c:d2:6f:d0:a1:87:0d:2e:64:55:af:
b5:0e:53:40:32:b3:22:11:59:09:46:53:fe:45:c9:0d:a1:07:
98:ef:c0:64:45:65:b9:21:02:be:94:18:29:c5:ee:93:40:b7:
5e:5c:80:9d:2e:a3:b8:d9:d2:eb:e9:39:b6:be:f1:ea:b6:d7:
1e:8a:19:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 10:00:33 2024 by rpki-client on console-ams.rpki-client.org