Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
File: cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft (raw, json)
Hash identifier: XRcz8Y1Ypc21GQ+7dq81LWby4AGmmzkjQZKHZSlcYC0=
Subject key identifier: 16:8C:EF:53:D8:3E:B2:00:61:58:82:F7:91:05:5F:39:D0:8D:3A:B5
Authority key identifier: 70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
Certificate issuer: /CN=70cee62b79472dcae51ead4d8ea06923870f5197
Certificate serial: 019356F73690DC0B6F7E93CB2C60BE1AAC24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
Manifest number: 136D
Signing time: Sat 23 Nov 2024 03:01:02 +0000
Manifest this update: Sat 23 Nov 2024 03:01:02 +0000
Manifest next update: Sun 24 Nov 2024 03:01:02 +0000
Files and hashes: 1: cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl (hash: g4iAolkKvkyRkr2tQbNy9ImnC9Ktz5kkb5EH1EB16XQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:f7:36:90:dc:0b:6f:7e:93:cb:2c:60:be:1a:ac:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cee62b79472dcae51ead4d8ea06923870f5197
Validity
Not Before: Nov 23 03:01:02 2024 GMT
Not After : Nov 24 03:01:02 2024 GMT
Subject: CN=168cef53d83eb200615882f791055f39d08d3ab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e9:e7:a3:d5:43:d3:17:ef:44:f8:17:b5:5c:
95:32:a1:07:91:87:b4:e0:17:aa:f7:60:2a:71:27:
84:cd:54:c3:74:d0:06:5e:01:f5:56:10:55:32:d3:
33:08:c1:e4:93:c5:2e:a5:e8:2a:ac:1b:18:ab:2d:
61:1d:7f:9d:da:6c:3c:20:2c:83:f1:e5:43:0f:f7:
80:d9:bf:42:4d:af:c5:31:80:08:1d:d1:87:77:df:
5a:7c:79:13:44:cd:f9:d5:48:b4:ef:37:bd:a4:e6:
2a:7f:c0:ba:6e:1e:c3:a6:39:c2:31:81:fe:1a:e0:
80:63:90:75:d4:76:04:e6:c1:e8:4d:44:3c:0d:53:
2e:94:5e:0a:90:fe:84:a2:3a:9f:3f:4d:ae:c2:b8:
0a:ca:47:ad:36:ff:b5:07:71:ac:bc:c6:90:8a:a1:
a6:d6:4a:7a:19:ff:a3:87:1c:fe:70:95:f1:dd:24:
98:f7:f6:e9:30:ff:71:30:70:b3:11:25:b1:fe:12:
67:9f:66:8f:77:f6:18:57:6d:75:83:55:79:5b:48:
5f:2e:41:4c:8a:1f:ec:8a:0b:df:29:25:92:91:0f:
a8:de:2d:98:e1:0b:c0:d6:ff:8d:15:5f:ab:a4:4c:
ef:56:d6:68:9e:71:3c:68:f8:c5:27:6f:4e:e2:0e:
7f:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:8C:EF:53:D8:3E:B2:00:61:58:82:F7:91:05:5F:39:D0:8D:3A:B5
X509v3 Authority Key Identifier:
keyid:70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:55:19:b3:0f:e1:b8:c7:ca:6f:19:54:b0:d3:73:09:6a:78:
e6:a3:7e:b4:79:eb:25:0a:71:4b:dc:9c:42:fc:4a:84:08:96:
a3:55:21:b0:3d:9e:dd:75:3d:26:dd:c2:7c:aa:c4:8c:dc:5e:
a0:94:9f:9a:87:11:b0:c1:4a:c3:7f:7e:7f:46:fa:f5:ee:fc:
47:06:f8:05:5c:8c:34:a1:eb:aa:ff:e2:59:50:ea:fe:eb:86:
ed:4e:29:08:71:50:05:60:33:99:fd:d4:35:88:ff:89:a5:1f:
40:b3:f5:58:01:e2:e9:b0:ac:5e:2c:a3:fd:a2:01:fe:94:fb:
9c:b0:53:cc:eb:ec:07:c9:07:de:f4:d2:3d:20:8f:ed:c7:1c:
1e:8a:41:30:ca:98:25:6b:c5:81:c4:92:df:4f:86:1a:b0:e6:
57:1c:d8:5f:3a:4c:97:99:9f:ef:99:7b:f8:8c:17:31:d2:62:
4b:2e:4b:1e:3a:9e:29:e2:c1:7a:1b:0b:79:d9:51:d5:cf:40:
b6:5a:66:88:01:ae:97:a9:bc:59:03:c0:21:4e:16:55:ad:66:
48:17:7c:da:f6:e6:7a:36:75:05:09:cb:ab:af:49:a2:d8:97:
da:3c:be:f5:9b:e6:9d:ca:99:28:89:f4:7d:22:df:28:18:5d:
6b:48:57:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:16:12 2024 by rpki-client on console-fra.rpki-client.org