Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
File: mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft (raw, json)
Hash identifier: rSPVFBsZiDsYZVV2cBnhri+ipnsukT7CMGOaGxtQVUM=
Subject key identifier: 98:6F:1E:D3:DF:56:D6:41:DB:22:7A:C9:FA:FC:99:4D:29:8B:01:4F
Authority key identifier: 98:24:1A:AC:9E:DA:7B:EF:69:08:9F:64:7B:5D:8F:77:4F:F4:3A:26
Certificate issuer: /CN=98241aac9eda7bef69089f647b5d8f774ff43a26
Certificate serial: 01936933A00E495785FA97CCA251A37A2FFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
Manifest number: 0AAF
Signing time: Tue 26 Nov 2024 16:00:11 +0000
Manifest this update: Tue 26 Nov 2024 16:00:11 +0000
Manifest next update: Wed 27 Nov 2024 16:00:11 +0000
Files and hashes: 1: mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl (hash: 6emsReRw8rAj5lNfe2k8WhhKtkbzp++creey4KZJvt4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 16:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:33:a0:0e:49:57:85:fa:97:cc:a2:51:a3:7a:2f:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98241aac9eda7bef69089f647b5d8f774ff43a26
Validity
Not Before: Nov 26 16:00:11 2024 GMT
Not After : Nov 27 16:00:11 2024 GMT
Subject: CN=986f1ed3df56d641db227ac9fafc994d298b014f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fd:fd:f4:18:5b:03:d8:1d:3e:84:f9:a5:78:
cd:d5:0b:42:50:97:3b:9c:9a:e7:c0:36:f5:30:ff:
a9:2e:53:fc:c4:71:35:64:f6:71:27:f9:97:ee:18:
93:62:9b:f8:da:a6:af:24:80:27:25:88:88:57:67:
4a:1f:36:94:23:1f:08:55:49:83:60:74:de:46:65:
4f:fe:5d:0f:4d:d0:f6:4f:44:0f:eb:ed:0a:68:5a:
9c:e1:32:19:ae:14:57:94:bb:ea:eb:72:c6:01:55:
c3:67:87:92:10:b6:46:37:8f:1c:a7:8e:be:ab:7b:
e1:87:16:67:75:da:a9:d4:5a:e1:b4:73:7a:36:33:
01:bb:17:30:32:b6:b4:e2:64:7d:89:ee:c4:b9:a1:
11:98:d4:18:73:41:50:f5:42:2b:e7:2b:4d:e6:f8:
fd:6a:a5:31:52:82:35:4d:0b:63:92:6a:43:ce:bb:
cb:9a:ea:ff:ea:12:96:c4:89:3a:76:29:e3:33:eb:
94:dd:c4:85:d5:9a:c5:b9:f5:e5:27:e7:80:75:47:
83:37:a5:61:cb:49:41:a2:1a:d0:51:f1:f2:c8:10:
c0:4a:97:f4:e7:06:ff:31:ed:9e:9b:ff:42:06:d4:
f8:0e:96:67:ff:b3:f0:48:93:20:e1:d7:d9:69:62:
4a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:6F:1E:D3:DF:56:D6:41:DB:22:7A:C9:FA:FC:99:4D:29:8B:01:4F
X509v3 Authority Key Identifier:
keyid:98:24:1A:AC:9E:DA:7B:EF:69:08:9F:64:7B:5D:8F:77:4F:F4:3A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:43:0c:71:e9:6b:ff:02:3d:80:f5:c6:84:bf:0f:03:9e:31:
21:bb:b3:ea:ca:75:cb:11:a3:4f:4d:1a:1e:38:5a:84:3b:da:
c8:90:65:23:96:97:87:ed:9f:11:0d:61:bc:c5:8f:7e:05:96:
d2:76:e1:27:d8:01:70:e3:6f:59:57:bd:9b:cb:a0:fe:c9:b1:
fa:9c:38:60:08:9e:91:b5:8e:53:8e:4a:75:6a:ed:72:07:d7:
de:2a:f7:8d:d5:35:2e:6f:e9:39:6e:39:d2:7a:63:53:5e:d1:
0e:4d:82:ba:61:3d:b2:aa:74:3d:98:2a:04:61:89:98:17:cf:
91:84:90:b4:55:d0:dd:8d:c9:32:77:41:08:02:71:95:29:8e:
5f:bc:2c:ca:a0:a4:fa:3a:55:b1:f7:30:33:ae:c5:71:f8:af:
27:63:e7:dd:33:cd:59:84:02:f1:e4:c3:db:d0:53:d0:7e:25:
1a:f3:66:91:50:d1:56:bc:11:b5:0c:67:bb:4e:3c:e1:69:45:
3e:1f:dc:e9:58:7b:a0:64:c0:81:bf:46:53:4e:32:92:0b:2f:
ad:49:7e:ca:9c:31:22:74:00:61:e6:d5:17:f6:82:e2:9a:da:
9f:46:9f:51:70:2b:a3:51:df:02:31:07:8b:e6:51:d2:ec:07:
71:29:e1:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 21:28:33 2024 by rpki-client on console-fra.rpki-client.org