Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
File: uhzvb56e3EXjzSjvQCUZeVLUYOk.mft (raw, json)
Hash identifier: GP2czwDhIE/Sl3lWjjBH+eHOmjs+tevnjWEayEw67iw=
Subject key identifier: 03:75:2C:49:D6:54:92:FF:94:AF:C9:AC:AC:48:F0:E4:6D:84:70:27
Authority key identifier: BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9
Certificate issuer: /CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9
Certificate serial: 019358E50200D670C54F1FD151C5727A0B87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
Manifest number: 09A3
Signing time: Sat 23 Nov 2024 12:00:23 +0000
Manifest this update: Sat 23 Nov 2024 12:00:23 +0000
Manifest next update: Sun 24 Nov 2024 12:00:23 +0000
Files and hashes: 1: uhzvb56e3EXjzSjvQCUZeVLUYOk.crl (hash: GFygV+LF3z9RfeD0gNes4NEY5XJQKBKqLXoZhmuCk6g=)
2: zot3pMK4qLwTibZpPdM7f0BVf_4.roa (hash: Z/kVGU+a9of159MB9zLLU/ZgUsubcgdZfgxQTud0ScE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:e5:02:00:d6:70:c5:4f:1f:d1:51:c5:72:7a:0b:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9
Validity
Not Before: Nov 23 12:00:23 2024 GMT
Not After : Nov 24 12:00:23 2024 GMT
Subject: CN=03752c49d65492ff94afc9acac48f0e46d847027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:8f:ae:1c:98:c1:75:ad:b9:40:e2:4b:78:0a:
0b:79:ac:e9:f8:d2:10:69:58:cb:a8:17:7d:61:5e:
87:59:e0:80:37:ca:be:8f:82:db:10:dc:a3:d5:14:
10:dc:21:0e:00:81:8e:81:75:f1:b3:39:ab:1f:50:
89:49:a5:5b:78:63:e6:64:be:65:53:0a:9c:33:de:
be:5b:a1:6a:92:7a:0c:65:25:76:1e:33:dd:f1:09:
01:a3:a3:ee:0b:93:69:ef:d1:d9:b8:35:8f:20:80:
95:99:47:b7:bb:43:df:f1:6c:9a:74:11:63:bc:dd:
58:c3:ad:d2:6e:98:36:d2:c3:b0:03:ee:fb:b7:f3:
6a:7f:ee:81:83:48:a7:a7:a9:d6:98:c5:4f:59:cb:
31:0d:45:62:17:5a:58:b2:4a:bf:50:82:46:db:38:
f8:1e:c7:41:17:0c:83:22:41:49:d2:f0:d9:e3:07:
8f:25:80:a4:9e:68:19:13:84:2e:c9:19:4c:eb:a8:
63:2b:a8:59:0e:3a:3d:32:6c:cc:6c:2f:c4:74:70:
22:07:3a:98:8a:77:46:a1:a6:f0:ba:bf:b0:e7:c2:
bc:a7:5b:c8:ec:ae:ad:5a:02:a1:39:f7:fd:ed:e8:
10:cb:dd:49:12:bf:be:8b:67:a1:51:5c:63:b8:64:
b8:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:75:2C:49:D6:54:92:FF:94:AF:C9:AC:AC:48:F0:E4:6D:84:70:27
X509v3 Authority Key Identifier:
keyid:BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:4f:6e:2b:09:a5:f6:e1:a8:f0:11:79:a0:98:f2:42:a8:50:
77:88:d2:a6:1e:7d:12:9b:bd:c7:23:cd:80:50:02:d8:64:23:
68:f4:bc:78:bb:c4:01:6e:6b:79:7c:26:aa:c5:21:c0:f4:de:
cb:fd:9b:1f:19:e6:47:07:71:b2:74:fd:ce:ca:30:36:96:ab:
89:90:17:f3:d2:e0:f6:7d:dc:14:b6:37:ea:5f:33:83:e9:e3:
07:e7:b7:ae:d8:bf:5e:bc:e1:ca:01:b8:83:b5:bb:03:d6:fa:
7d:31:85:04:a7:29:19:09:57:d6:94:b5:c1:c8:4f:93:77:e5:
a1:6d:ba:73:00:ac:1f:06:44:a2:30:78:09:cd:b6:88:98:94:
e8:2b:19:ac:03:f8:0c:4b:38:de:a1:d6:94:fa:e6:7a:77:e7:
57:4b:c4:bc:59:6a:90:9c:7e:e5:40:bc:69:35:fd:0d:38:66:
c5:3f:6b:91:6c:b2:af:1a:b0:90:8e:9c:24:f3:1b:b0:24:05:
24:77:b3:35:b2:c7:8c:9f:a0:ac:05:0c:28:23:35:d8:71:32:
d9:14:c5:01:ee:91:19:50:94:ef:6c:48:01:2b:fc:30:73:d2:
86:14:2d:73:c7:ea:61:33:36:a2:40:1f:55:75:29:6d:69:2e:
07:f3:0f:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 13:16:41 2024 by rpki-client on console-fra.rpki-client.org