Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
File: yjzk270E4HrOGTf4ChWvc5m4Aw4.mft (raw, json)
Hash identifier: YbWH00Ji5WtoswKDrvtBEvzDd+0xnE80WblvyoSuPVU=
Subject key identifier: C7:78:39:6E:53:4F:CB:8A:88:09:17:26:F1:A2:41:CF:A4:0B:13:23
Authority key identifier: CA:3C:E4:DB:BD:04:E0:7A:CE:19:37:F8:0A:15:AF:73:99:B8:03:0E
Certificate issuer: /CN=ca3ce4dbbd04e07ace1937f80a15af7399b8030e
Certificate serial: 01936143CDD866D6505B1BA652B83286F42F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
Manifest number: 030D
Signing time: Mon 25 Nov 2024 03:00:53 +0000
Manifest this update: Mon 25 Nov 2024 03:00:53 +0000
Manifest next update: Tue 26 Nov 2024 03:00:53 +0000
Files and hashes: 1: yjzk270E4HrOGTf4ChWvc5m4Aw4.crl (hash: +UClArCvVCYt7VpWFilEPoBYc8anHvG3w2xi7pQiOg0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:61:43:cd:d8:66:d6:50:5b:1b:a6:52:b8:32:86:f4:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3ce4dbbd04e07ace1937f80a15af7399b8030e
Validity
Not Before: Nov 25 03:00:53 2024 GMT
Not After : Nov 26 03:00:53 2024 GMT
Subject: CN=c778396e534fcb8a88091726f1a241cfa40b1323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:79:0f:f6:e3:b1:35:1c:18:e8:25:89:6f:7c:
2f:c3:02:ea:db:ac:92:e1:92:ec:a8:ee:35:ee:a9:
c2:89:c1:e8:ed:ca:98:68:1f:77:44:36:a3:d9:23:
aa:f2:a6:6c:41:f6:d8:bd:a7:7b:c8:b9:5e:5b:17:
63:5c:57:df:d5:4c:bd:9a:ec:d9:fd:cf:31:db:a0:
20:11:4d:8e:bb:3f:8d:76:82:45:b7:a2:78:2f:01:
53:ed:bf:ad:f2:22:65:6a:e9:66:ef:0d:27:2e:d1:
bd:3b:74:1a:45:2f:bd:a9:d1:20:ab:b1:ba:47:83:
61:f4:af:e7:00:9c:f3:82:11:07:60:0e:c3:0a:4a:
64:14:58:f9:5d:ba:09:79:c9:b5:5a:d2:83:a9:0b:
d1:06:55:c2:a0:8a:f6:d8:d5:b6:57:f2:14:5d:01:
a4:bc:68:0e:ba:6f:90:48:2b:18:39:2f:13:96:55:
a2:05:46:db:0e:8c:a1:04:d9:c3:b5:69:07:90:f9:
aa:9d:9d:d6:1a:a7:b2:25:07:f1:5e:e8:de:8a:1e:
8b:d8:5d:5a:dd:5f:b0:ec:84:f4:7b:e6:04:a8:67:
dc:ec:3b:80:c3:9d:7e:c9:7e:09:d2:bc:97:39:5c:
d2:c4:74:cf:58:24:23:04:0e:fd:2f:a1:b8:e2:f1:
2f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:78:39:6E:53:4F:CB:8A:88:09:17:26:F1:A2:41:CF:A4:0B:13:23
X509v3 Authority Key Identifier:
keyid:CA:3C:E4:DB:BD:04:E0:7A:CE:19:37:F8:0A:15:AF:73:99:B8:03:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:2c:ef:77:5b:4c:5e:01:f3:c0:8e:dd:59:8b:56:7f:8b:14:
ab:75:46:84:2a:52:14:05:9b:a3:d5:da:11:e3:3c:d0:5e:f7:
ad:30:42:64:79:de:7e:4a:90:0e:30:12:41:df:dd:e4:d2:2e:
c6:7d:f4:42:e7:c3:75:25:23:82:da:68:1c:b2:f3:a1:17:e8:
12:c2:d0:bf:0b:c1:c5:c2:13:2e:bf:a1:df:f7:41:de:0e:14:
f7:88:e5:4f:c7:b5:22:89:4b:04:0f:c8:78:c5:e8:bf:19:f4:
8f:cd:19:24:77:00:f8:ce:4f:ca:a3:a6:7a:46:fc:22:a0:4f:
4a:0b:4d:fb:59:c0:32:c0:e4:4a:05:58:90:2f:ab:d1:c6:06:
e8:df:56:3a:57:89:e2:4e:66:60:23:25:e3:ab:6d:20:d1:77:
a8:01:3d:bc:84:0a:b2:08:65:0e:72:4d:84:6c:d8:9d:f1:eb:
52:87:1b:61:23:ea:4d:24:42:fd:d1:5c:0f:8e:f1:fb:cf:25:
41:95:d4:7f:56:67:6d:96:20:b2:4d:b6:d7:c2:53:1e:97:f9:
25:db:e3:e3:f1:6d:05:f1:f6:4c:c0:d3:f9:4a:2c:b1:f7:ec:
ad:de:83:e4:e2:32:71:df:2c:f0:fb:b7:04:69:cb:c0:d3:8f:
e1:be:e0:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 09:31:59 2024 by rpki-client on console-fra.rpki-client.org