Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
File: PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft (raw, json)
Hash identifier: irUM1oyMA4zDqgggXhtOIwsXHWe4vdECvzNp5q/SgqY=
Subject key identifier: A7:5E:F1:D2:B3:3B:AD:63:20:56:83:FD:2D:B8:82:A3:0C:C0:31:7B
Authority key identifier: 3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8
Certificate issuer: /CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8
Certificate serial: 019357D26DC855A02D585C712D0226B6E733
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
Manifest number: 136E
Signing time: Sat 23 Nov 2024 07:00:28 +0000
Manifest this update: Sat 23 Nov 2024 07:00:28 +0000
Manifest next update: Sun 24 Nov 2024 07:00:28 +0000
Files and hashes: 1: PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl (hash: TtFS9zTo3ra8Mdia2uZyUcxLkDl6WQMOCV9mLP9tpng=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:6d:c8:55:a0:2d:58:5c:71:2d:02:26:b6:e7:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8
Validity
Not Before: Nov 23 07:00:28 2024 GMT
Not After : Nov 24 07:00:28 2024 GMT
Subject: CN=a75ef1d2b33bad63205683fd2db882a30cc0317b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:43:33:dc:06:5f:c7:f2:d3:f4:48:ba:51:a6:
99:e5:ab:39:0d:e5:1c:a2:c0:df:24:08:93:02:88:
6e:c6:6b:f3:bb:30:fc:29:69:2f:f5:14:bb:e1:4a:
ba:f8:b6:3a:7f:14:c3:9b:47:bf:aa:b8:7a:f5:85:
c2:31:39:33:20:53:29:c4:d6:e4:1e:92:63:92:e2:
d9:68:45:1c:8c:9c:f9:7d:32:3c:09:fe:c8:1c:bd:
3f:d8:21:07:5e:ed:dc:66:b0:5e:02:9e:e9:68:41:
be:84:34:b7:c6:1d:da:3f:62:49:7d:cf:9b:ae:eb:
30:17:f4:4e:a7:e7:d5:55:1f:94:11:c8:03:be:95:
a7:5e:71:fc:55:85:03:34:67:94:9c:ce:02:d7:c8:
db:a1:34:85:95:09:2c:1d:24:e3:b5:f6:63:18:fe:
60:bf:64:d8:76:8f:77:5e:cf:89:65:72:05:15:15:
90:a0:12:7b:67:82:99:99:08:90:2b:47:eb:87:5f:
6d:17:26:b1:60:bf:f4:df:dd:2b:05:53:a9:5c:86:
6c:db:d3:c8:d5:8e:93:f1:a1:01:d2:20:2c:0f:e0:
c1:87:a2:06:69:82:6b:3a:27:92:42:d4:a7:10:0e:
3e:5a:a6:e8:2d:e0:35:84:a8:b1:85:34:1f:03:35:
83:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:5E:F1:D2:B3:3B:AD:63:20:56:83:FD:2D:B8:82:A3:0C:C0:31:7B
X509v3 Authority Key Identifier:
keyid:3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:fc:a7:61:fd:ba:95:2b:a3:e9:43:65:5b:b2:e4:ac:82:38:
14:71:d7:de:bc:1a:13:a8:9c:6b:52:ac:43:c3:52:35:13:e0:
17:fa:7b:bb:fc:8c:80:87:d1:ca:64:91:73:84:d3:9e:19:d7:
80:b1:a9:bc:2a:c9:cb:7f:58:df:0c:75:ff:e8:cb:2f:7c:80:
a1:54:b2:9f:c1:f7:bd:90:42:fe:80:9c:42:34:21:c9:0b:12:
8c:bb:87:2f:01:46:40:e3:6f:ad:47:fa:21:a8:94:51:e7:60:
4a:f3:e9:e2:e4:56:cc:92:20:87:03:ba:ce:d3:7b:0d:28:87:
5f:a4:43:df:dd:54:0a:de:30:75:6e:3b:d5:2f:ad:66:b0:45:
30:4a:0e:f8:ad:20:53:14:fa:68:8f:aa:69:af:40:5e:a5:62:
ed:b2:b4:3d:f4:ff:08:c4:60:8c:43:66:1c:cc:3b:50:2b:3d:
10:b4:66:79:8b:0d:23:f2:2a:89:1d:61:3a:78:d8:04:65:61:
7b:a2:c7:f0:88:e6:f9:83:e9:be:a8:0a:57:d2:40:d0:5e:40:
1c:b5:57:58:0b:e3:03:9c:5f:91:4d:2e:09:9f:64:97:06:a6:
9f:f4:75:da:ac:ea:e2:d8:e2:a2:25:a4:43:5e:cd:43:8a:8c:
83:6f:63:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:55:15 2024 by rpki-client on console-ams.rpki-client.org