Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/b1a34f-93a3-41b0-b096-1977ac24d211/1/3DU3KrVODfO_UU1fCMpS5De9kaQ.mft
File: 3DU3KrVODfO_UU1fCMpS5De9kaQ.mft (raw, json)
Hash identifier: ZmXMDTbm153HNGx4K3KQK/QO1eV8pBNR35TbehoNKVY=
Subject key identifier: C9:BC:D9:03:D9:14:FF:B0:1D:07:CB:1F:A4:EC:9A:E2:E8:7D:E3:4E
Authority key identifier: DC:35:37:2A:B5:4E:0D:F3:BF:51:4D:5F:08:CA:52:E4:37:BD:91:A4
Certificate issuer: /CN=dc35372ab54e0df3bf514d5f08ca52e437bd91a4
Certificate serial: 019405D7D9D7631206B10BB966772D6ABF23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DU3KrVODfO_UU1fCMpS5De9kaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/b1a34f-93a3-41b0-b096-1977ac24d211/1/3DU3KrVODfO_UU1fCMpS5De9kaQ.mft
Manifest number: 031D
Signing time: Fri 27 Dec 2024 02:00:19 +0000
Manifest this update: Fri 27 Dec 2024 02:00:19 +0000
Manifest next update: Sat 28 Dec 2024 02:00:19 +0000
Files and hashes: 1: 3DU3KrVODfO_UU1fCMpS5De9kaQ.crl (hash: L9nbRjMDcLX1X6gppW3ifds9znm8GmGHJcDMfLhW1Gs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/b1a34f-93a3-41b0-b096-1977ac24d211/1/3DU3KrVODfO_UU1fCMpS5De9kaQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/b1a34f-93a3-41b0-b096-1977ac24d211/1/3DU3KrVODfO_UU1fCMpS5De9kaQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/3DU3KrVODfO_UU1fCMpS5De9kaQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 02:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:05:d7:d9:d7:63:12:06:b1:0b:b9:66:77:2d:6a:bf:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc35372ab54e0df3bf514d5f08ca52e437bd91a4
Validity
Not Before: Dec 27 02:00:19 2024 GMT
Not After : Dec 28 02:00:19 2024 GMT
Subject: CN=c9bcd903d914ffb01d07cb1fa4ec9ae2e87de34e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f3:18:94:91:6c:0d:93:f2:52:7a:06:6d:7f:
2d:6f:9f:d7:42:1c:4b:99:50:e8:89:ee:2f:27:b7:
ff:4d:48:5b:65:db:fd:6d:85:ac:8b:0b:a7:7b:40:
b3:03:48:2f:de:67:37:9d:a4:93:2f:30:44:bd:0b:
43:be:f4:5d:25:84:75:38:66:bc:b2:1c:7a:7c:da:
1d:7f:37:64:80:04:8a:5e:56:31:07:0a:e6:10:a3:
c8:ca:ea:41:4e:78:bb:bd:67:f8:16:88:a4:0b:5d:
48:85:aa:ce:a1:37:5b:a1:ae:b4:2e:d1:fb:f6:b1:
dd:27:e3:29:2c:d4:84:10:7a:76:19:c1:cb:b1:81:
91:1f:46:d4:29:30:c6:e0:67:ce:f2:83:a6:ec:30:
01:91:3c:75:5e:41:c0:1f:ac:41:79:70:05:93:aa:
80:ba:84:ce:87:70:e5:5a:f2:ad:fe:e2:ed:ab:6c:
c6:b3:18:de:89:4c:7d:d8:fe:9d:7e:c7:18:f2:db:
b2:f1:e6:73:e5:0e:22:1a:44:36:b2:0e:da:e8:0c:
e8:ea:5a:59:8a:98:89:a9:37:1a:1b:5c:76:b5:eb:
95:e5:12:68:32:fd:2e:a7:ee:2a:ef:e0:8a:92:a3:
99:ca:a9:1b:b8:61:67:84:0b:2c:03:2d:ca:49:ff:
e8:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:BC:D9:03:D9:14:FF:B0:1D:07:CB:1F:A4:EC:9A:E2:E8:7D:E3:4E
X509v3 Authority Key Identifier:
keyid:DC:35:37:2A:B5:4E:0D:F3:BF:51:4D:5F:08:CA:52:E4:37:BD:91:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DU3KrVODfO_UU1fCMpS5De9kaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/b1a34f-93a3-41b0-b096-1977ac24d211/1/3DU3KrVODfO_UU1fCMpS5De9kaQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/b1a34f-93a3-41b0-b096-1977ac24d211/1/3DU3KrVODfO_UU1fCMpS5De9kaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:2a:c3:76:f3:85:91:0d:be:b6:66:03:58:de:f8:39:c6:81:
22:85:88:7a:6b:38:18:77:f2:a9:2d:0f:f2:04:40:37:35:de:
85:73:6f:70:b2:69:90:90:d5:4b:6a:cf:30:ea:0a:c5:c9:52:
1a:89:c2:08:3b:61:df:a4:13:cf:00:15:17:f2:73:74:3f:ea:
86:92:6b:f0:62:13:49:3b:57:e6:26:ab:98:02:d5:93:44:23:
78:86:a2:79:80:94:c0:a6:84:4c:61:15:56:41:ee:b0:76:af:
30:52:ae:56:2c:eb:e5:ea:bd:53:e7:04:d8:b3:28:25:83:9a:
81:6b:12:7f:90:7b:34:22:bd:14:3c:63:c4:ec:a8:71:7a:04:
e6:4e:55:85:03:8c:35:a6:68:b8:e6:11:26:bf:e7:88:3a:5a:
91:f7:f8:38:c9:13:67:e8:73:8d:2c:39:40:57:9e:3d:d1:df:
51:e6:9f:76:05:1c:7e:15:38:11:f2:a7:41:e9:06:ae:0d:6f:
cb:0a:0c:16:7f:5b:9a:d0:b3:7c:1b:fd:4a:21:26:72:e4:67:
56:49:7b:36:d9:ec:c9:30:a2:94:46:e5:3a:71:9d:32:f5:53:
2c:d1:6f:04:48:96:33:70:b6:84:81:fb:54:30:b3:0b:45:66:
5e:d6:24:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 11:09:06 2024 by rpki-client on console-fra.rpki-client.org