Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft
File: CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft (raw, json)
Hash identifier: IMe8zSzRfnPKIiojVD3Tj5Pn+wmV04E17JjNAw1XrHs=
Subject key identifier: 97:34:D4:87:B9:45:72:15:0A:00:3A:79:A1:53:B0:D3:89:77:B8:1C
Authority key identifier: 09:35:09:E7:EC:68:FE:2D:94:34:07:D5:DD:12:6A:0F:59:6F:2A:B5
Certificate issuer: /CN=093509e7ec68fe2d943407d5dd126a0f596f2ab5
Certificate serial: 01935508BCFFB43D6FCA3027E3547A5F2947
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft
Manifest number: 0EA0
Signing time: Fri 22 Nov 2024 18:00:56 +0000
Manifest this update: Fri 22 Nov 2024 18:00:56 +0000
Manifest next update: Sat 23 Nov 2024 18:00:56 +0000
Files and hashes: 1: CTUJ5-xo_i2UNAfV3RJqD1lvKrU.crl (hash: waKSpDqtjICAudRgcQ2FGdt/yBJAwtP7nQHdfa42iRo=)
2: km9tLek0zvYwuUXNwBpmIAxeIME.roa (hash: 8ok4LK4wYi/aUVmvyUxG+WG0c2pSSdCz7xY6Qozo1vc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:08:bc:ff:b4:3d:6f:ca:30:27:e3:54:7a:5f:29:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093509e7ec68fe2d943407d5dd126a0f596f2ab5
Validity
Not Before: Nov 22 18:00:56 2024 GMT
Not After : Nov 23 18:00:56 2024 GMT
Subject: CN=9734d487b94572150a003a79a153b0d38977b81c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ac:fd:31:f5:21:d9:68:4a:36:9d:73:a8:29:
a4:01:31:e0:c9:bf:28:24:ca:47:12:25:34:f7:b9:
ca:20:0c:64:8c:7d:38:8b:14:72:4c:8a:fe:ad:68:
bc:ec:81:97:e6:f9:99:73:67:98:c9:8e:25:83:93:
ed:27:f2:d1:a8:66:9b:14:08:b6:07:c2:60:67:a9:
fb:2e:25:47:36:28:ec:1e:d7:58:0c:b2:c3:93:b0:
08:4d:6c:e9:e1:0a:4d:3c:bb:ee:d8:f2:cf:b4:ac:
d6:f0:e1:03:01:96:36:d0:73:b0:e4:74:78:8a:97:
f1:c2:8f:1a:c2:09:c1:bc:07:b9:6c:eb:6b:a0:0f:
9d:3e:df:a6:82:bd:e1:51:94:ee:3f:b3:c9:9e:2b:
5f:75:68:f6:5d:61:d2:0b:5c:aa:97:16:be:d1:c7:
50:99:1b:53:74:8f:64:cb:29:4d:e4:b4:09:d3:94:
23:2b:ff:b1:fd:c2:82:4b:c4:d7:aa:ef:a4:66:ce:
11:11:f5:d4:df:41:a6:45:c2:ca:96:2f:08:ba:19:
8d:74:45:ec:42:a8:fe:53:78:40:3c:84:89:37:7c:
69:b1:87:41:84:b9:26:1b:50:90:7f:a2:2e:b3:74:
71:00:41:29:c9:66:c3:f7:a0:e1:4f:bd:64:b1:70:
4d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:34:D4:87:B9:45:72:15:0A:00:3A:79:A1:53:B0:D3:89:77:B8:1C
X509v3 Authority Key Identifier:
keyid:09:35:09:E7:EC:68:FE:2D:94:34:07:D5:DD:12:6A:0F:59:6F:2A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:6b:9f:e9:fc:48:c2:4c:59:83:56:7d:0d:b1:3f:19:b4:0f:
db:f9:9d:d8:1d:a4:09:d8:c7:7d:8f:ce:70:a7:e2:20:41:04:
01:97:71:c0:ec:16:1f:0e:7b:00:ae:94:c4:70:8d:ac:3b:52:
21:83:b3:6f:46:31:79:bb:a6:8a:90:d6:fb:0a:cc:eb:ea:06:
b4:7b:e7:6c:22:26:40:36:29:37:f2:73:f9:38:47:c7:57:38:
e0:dc:91:69:f1:d4:76:6d:44:3a:d3:fa:9b:1e:70:24:de:81:
25:83:db:b1:c3:fe:a6:f9:d3:95:fb:8f:43:ad:ce:9f:8c:00:
15:6a:07:33:32:1f:b9:48:55:bd:d6:63:bf:35:36:03:02:dd:
45:ed:f7:7a:d5:3e:b8:32:cd:78:05:45:ae:cc:21:61:57:7a:
15:b7:a4:9e:10:84:8d:07:e6:89:82:73:b7:b3:f4:59:29:fd:
74:93:f1:11:34:6b:dd:ac:e0:95:d4:32:56:10:3b:52:6d:9a:
67:30:0c:60:4f:0f:53:3d:79:5c:5d:43:a8:60:b3:8c:32:a0:
fc:11:fe:2b:9c:92:c1:3f:bd:ee:06:a8:c1:5c:bf:24:9a:ee:
86:18:0e:62:f5:72:30:26:33:6c:2f:b2:75:8e:f5:43:3d:7f:
94:aa:6b:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 19:53:53 2024 by rpki-client on console-fra.rpki-client.org