Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft
File: Lr_2z7gya0RylaEbEHhoIS5mX90.mft (raw, json)
Hash identifier: cgkQwfGFpAGpS5tP12Mn29sebWpwDh9m4G361n57EV8=
Subject key identifier: 30:B3:1A:32:DF:AC:DB:4B:18:26:3E:C4:D0:52:78:A0:4E:79:EF:EC
Authority key identifier: 2E:BF:F6:CF:B8:32:6B:44:72:95:A1:1B:10:78:68:21:2E:66:5F:DD
Certificate issuer: /CN=2ebff6cfb8326b447295a11b107868212e665fdd
Certificate serial: 0193549D05BF1929338E9EC73494E194E834
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lr_2z7gya0RylaEbEHhoIS5mX90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft
Manifest number: 044F
Signing time: Fri 22 Nov 2024 16:03:16 +0000
Manifest this update: Fri 22 Nov 2024 16:03:16 +0000
Manifest next update: Sat 23 Nov 2024 16:03:16 +0000
Files and hashes: 1: Lr_2z7gya0RylaEbEHhoIS5mX90.crl (hash: ikEU8FyBO8+GZ68GARhIDc36XZKY4PXcRfUt6RRKkKA=)
2: gHM6xuAr69APYekQj0DwqbGY8yo.roa (hash: VTMKW5xoxQwrL4XabkecmVnlryJsQoaHdO9PCCL8XCg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lr_2z7gya0RylaEbEHhoIS5mX90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9d:05:bf:19:29:33:8e:9e:c7:34:94:e1:94:e8:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ebff6cfb8326b447295a11b107868212e665fdd
Validity
Not Before: Nov 22 16:03:16 2024 GMT
Not After : Nov 23 16:03:16 2024 GMT
Subject: CN=30b31a32dfacdb4b18263ec4d05278a04e79efec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:9f:99:6a:57:7f:44:c6:0a:8a:14:90:a8:73:
4f:cd:01:9b:6b:88:c6:13:8e:03:c4:a0:07:60:98:
0d:6f:44:c6:52:72:43:15:5d:91:47:06:c0:11:2f:
12:7c:0b:a8:d1:d0:2e:79:24:5c:3c:89:c6:7b:8a:
b9:c4:12:c4:d5:5b:1f:6b:51:45:83:6d:f9:e1:4b:
14:bc:ed:67:00:12:1b:49:31:c9:84:0e:a1:e4:46:
06:1d:0c:1a:f5:2b:76:05:19:cc:e4:57:6c:78:95:
65:2f:cf:73:8e:9e:b9:e4:ab:e4:f7:00:80:a9:1c:
62:74:2c:a6:c6:2d:3e:63:3a:de:dd:1e:dd:e7:16:
17:24:71:f6:83:59:aa:92:31:65:36:dc:76:70:67:
ef:2a:ee:60:0a:92:fb:e4:9c:b5:83:16:52:cc:36:
09:3a:85:99:9d:d0:26:0d:ea:f5:db:b5:4d:ab:88:
2a:c2:29:e9:46:99:48:71:42:c5:e4:d3:9e:af:5e:
e1:23:96:fa:20:1e:13:b9:a8:c4:c1:d1:0e:c0:fe:
d9:37:fe:98:d2:f0:e8:43:04:8a:34:53:42:ce:2a:
79:4a:ef:3a:bc:86:44:34:a0:ed:51:94:65:88:ce:
a7:bf:f7:0f:93:70:43:16:22:1d:a9:ff:21:2f:b4:
59:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:B3:1A:32:DF:AC:DB:4B:18:26:3E:C4:D0:52:78:A0:4E:79:EF:EC
X509v3 Authority Key Identifier:
keyid:2E:BF:F6:CF:B8:32:6B:44:72:95:A1:1B:10:78:68:21:2E:66:5F:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lr_2z7gya0RylaEbEHhoIS5mX90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:7f:7d:0b:8e:20:63:ac:d7:4b:72:aa:49:b9:02:ce:e6:6b:
a4:9a:1f:fd:bd:4a:d3:b1:89:8b:60:dc:0e:32:bf:ed:db:c6:
57:01:12:18:31:74:3c:5d:c8:43:70:be:7d:60:59:d2:6a:49:
5f:d9:a8:8e:04:2d:f9:a4:b5:58:d4:6e:01:4f:31:6e:51:01:
5e:92:e2:c6:d2:f4:e0:d5:f1:c9:09:3d:9a:c3:d4:89:51:96:
8a:2b:68:1a:2b:49:14:67:e2:c1:3c:1a:94:22:17:eb:ab:f7:
a7:50:c6:6b:68:d5:56:26:f8:c0:a5:4f:64:17:70:ac:a3:14:
e6:ce:dc:4b:f2:3a:69:8c:d8:63:41:57:c7:71:2c:54:45:8f:
b9:f6:fc:48:44:a1:fa:03:6a:66:a7:a6:a7:9e:d0:40:bc:be:
f2:0e:4e:70:d8:dc:3b:2c:20:c6:65:ad:49:7a:2e:a4:f4:1d:
9a:0d:8d:19:ec:68:80:43:63:7b:a7:1a:19:62:0e:ab:49:09:
be:44:d3:d1:ad:60:83:9a:72:b1:6b:aa:83:4d:bb:07:f7:ff:
45:72:77:7c:a9:ad:8f:b9:38:fa:0a:06:89:12:33:1b:4d:e6:
e6:05:3d:a4:eb:08:63:b0:0e:cd:65:44:8f:14:49:de:10:e5:
d8:7b:55:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:24:45 2024 by rpki-client on console-fra.rpki-client.org