Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
File: z9rC7BEEwkXZyrqOthY46drxADk.mft (raw, json)
Hash identifier: tms7Zg/WClV40L7ifZUgC0/52eITmTXUurKVH7tr4lQ=
Subject key identifier: C1:FF:5E:84:94:D8:FD:E5:0F:33:71:20:65:14:BA:03:78:92:26:DE
Authority key identifier: CF:DA:C2:EC:11:04:C2:45:D9:CA:BA:8E:B6:16:38:E9:DA:F1:00:39
Certificate issuer: /CN=cfdac2ec1104c245d9caba8eb61638e9daf10039
Certificate serial: 01936220D071B327B973E32F4D60C99C7459
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
Manifest number: 0EB4
Signing time: Mon 25 Nov 2024 07:02:17 +0000
Manifest this update: Mon 25 Nov 2024 07:02:17 +0000
Manifest next update: Tue 26 Nov 2024 07:02:17 +0000
Files and hashes: 1: z9rC7BEEwkXZyrqOthY46drxADk.crl (hash: +UPMV5KB4w2ipFdy6CVCc2reXhDB+8+PRT/k/AE1ZYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:62:20:d0:71:b3:27:b9:73:e3:2f:4d:60:c9:9c:74:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfdac2ec1104c245d9caba8eb61638e9daf10039
Validity
Not Before: Nov 25 07:02:17 2024 GMT
Not After : Nov 26 07:02:17 2024 GMT
Subject: CN=c1ff5e8494d8fde50f3371206514ba03789226de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f0:7c:e3:2b:c3:5c:05:9c:47:0a:06:10:ac:
99:33:34:cf:5d:ea:45:96:66:6e:d1:b3:c1:c6:ba:
b9:13:a4:5a:3e:05:ee:f1:fa:d3:b4:51:70:98:35:
53:06:02:f1:00:f3:2a:92:17:92:01:fb:96:47:ac:
77:79:26:20:f2:88:e9:1e:db:a5:8c:7a:48:fe:6a:
9d:8f:9f:65:09:ec:2b:a2:da:36:e2:34:83:22:ec:
c2:f5:29:8b:80:2a:bc:e8:fd:b9:80:ec:4f:6d:38:
52:ed:bc:09:5a:e9:74:a0:c1:1f:cc:73:12:0a:10:
fd:7c:2f:8b:0d:b8:f8:04:78:d5:ab:52:07:e4:e5:
db:5a:07:59:c1:44:2c:7f:f2:e4:ce:ea:22:b7:f4:
d0:d8:c1:15:67:fe:b5:f3:55:d3:f9:9b:8b:85:23:
d6:7d:ca:4c:56:23:d3:67:a9:35:91:25:f5:8f:f2:
ad:e5:9e:7b:2f:20:41:ff:16:58:f4:63:df:84:db:
01:52:e3:6d:2b:87:b6:97:04:ac:2c:ca:64:aa:7d:
93:9c:68:0d:09:13:d3:f5:67:8f:7f:51:22:cd:4e:
79:49:ce:e2:d4:40:21:bb:48:9f:83:d8:01:3f:80:
6e:28:5a:f0:65:a6:8a:60:f2:d6:b6:c2:68:e7:fc:
e6:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:FF:5E:84:94:D8:FD:E5:0F:33:71:20:65:14:BA:03:78:92:26:DE
X509v3 Authority Key Identifier:
keyid:CF:DA:C2:EC:11:04:C2:45:D9:CA:BA:8E:B6:16:38:E9:DA:F1:00:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:12:a3:a8:5b:3d:76:ee:e9:c7:18:8d:36:47:33:46:4b:6f:
c4:6f:98:d3:24:ca:10:eb:23:be:ea:75:40:ff:23:8e:c5:51:
b8:97:4d:cb:13:91:8c:c3:e0:74:13:ad:ce:37:50:88:fa:aa:
66:da:bc:c0:34:8d:de:91:82:6a:6e:45:c8:6d:16:e9:8e:63:
1b:9b:81:18:8b:0d:ed:fc:e6:03:1d:46:48:85:11:b8:04:ea:
7f:48:b1:fc:8d:96:51:15:2d:75:3d:f9:c8:b3:09:07:73:db:
3f:09:1a:45:98:1c:13:f5:ea:cd:b5:df:22:bd:80:54:dc:37:
5f:ba:89:dd:73:b0:bd:cf:9b:13:5a:f2:f7:32:28:52:c8:57:
c7:9e:cb:9d:a6:cc:b9:02:16:03:1e:72:52:0c:9a:6f:b1:91:
87:5c:63:cc:1d:1d:7d:7d:fc:96:d3:67:a4:8f:04:a9:d0:45:
04:44:e6:2b:87:23:a1:79:ab:b8:14:da:e9:28:8c:32:03:2e:
14:d8:3d:a1:b6:81:35:73:94:15:a0:e4:97:f2:2f:8b:91:ac:
51:77:a5:ee:45:cb:42:56:fc:57:9d:63:5c:b0:d4:11:a7:2f:
ca:ec:92:c0:74:be:61:2d:b1:73:e9:8f:fa:a0:41:7f:de:65:
34:b6:0a:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 09:32:00 2024 by rpki-client on console-fra.rpki-client.org