Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/a64099-345f-4f1c-a930-760cb3ea1415/1/RXHLqFoCMKnLR6vrWzue1NUxz54.mft
File: RXHLqFoCMKnLR6vrWzue1NUxz54.mft (raw, json)
Hash identifier: b6FBBjz8VUHSbE04euydPlII8gpmPwET8Jj8s3bxwyI=
Subject key identifier: BE:10:F5:E4:54:37:4F:4D:CF:44:1F:BC:BD:79:88:6F:46:B0:D5:47
Authority key identifier: 45:71:CB:A8:5A:02:30:A9:CB:47:AB:EB:5B:3B:9E:D4:D5:31:CF:9E
Certificate issuer: /CN=4571cba85a0230a9cb47abeb5b3b9ed4d531cf9e
Certificate serial: 0193688F1C2B016DE638873194E93D84B430
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RXHLqFoCMKnLR6vrWzue1NUxz54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/a64099-345f-4f1c-a930-760cb3ea1415/1/RXHLqFoCMKnLR6vrWzue1NUxz54.mft
Manifest number: 0124
Signing time: Tue 26 Nov 2024 13:00:29 +0000
Manifest this update: Tue 26 Nov 2024 13:00:29 +0000
Manifest next update: Wed 27 Nov 2024 13:00:29 +0000
Files and hashes: 1: RXHLqFoCMKnLR6vrWzue1NUxz54.crl (hash: 9WSbRF6GEblc+pn/s04rDw0RlcIpOwraaP+oLAC7OwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/a64099-345f-4f1c-a930-760cb3ea1415/1/RXHLqFoCMKnLR6vrWzue1NUxz54.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/a64099-345f-4f1c-a930-760cb3ea1415/1/RXHLqFoCMKnLR6vrWzue1NUxz54.mft
rsync://rpki.ripe.net/repository/DEFAULT/RXHLqFoCMKnLR6vrWzue1NUxz54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:8f:1c:2b:01:6d:e6:38:87:31:94:e9:3d:84:b4:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4571cba85a0230a9cb47abeb5b3b9ed4d531cf9e
Validity
Not Before: Nov 26 13:00:29 2024 GMT
Not After : Nov 27 13:00:29 2024 GMT
Subject: CN=be10f5e454374f4dcf441fbcbd79886f46b0d547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:9c:72:54:40:4c:00:9d:97:48:86:ae:9e:48:
ff:e2:3c:5a:9b:3a:c1:c3:43:ab:5e:78:c2:0a:63:
42:f9:3e:01:79:46:3e:c4:9b:e3:48:fd:06:d0:5c:
6a:3c:cb:2e:30:4b:27:db:12:dc:9a:7e:6b:d5:56:
a0:6f:c5:59:94:61:23:69:57:44:32:81:53:cd:76:
dc:24:73:1f:1b:83:f1:e6:c7:1b:ef:b7:04:da:31:
ae:86:5e:e2:d1:99:c7:43:c1:c9:a9:6a:19:99:d7:
26:7f:20:7b:25:37:12:83:38:6d:b7:8c:3d:95:9b:
8c:58:f6:72:ec:49:28:37:07:02:ac:40:9b:c8:64:
f9:37:d5:52:f1:86:c9:ec:ec:22:b6:6a:ae:1c:7c:
56:dd:39:cd:d7:56:6a:85:b6:0b:03:ff:a8:03:24:
77:f7:dc:05:f5:ed:3c:b6:e6:a1:ea:d0:68:fc:81:
38:b3:20:49:d7:6b:42:3c:98:11:65:3b:b9:69:7f:
1e:ce:48:14:3e:51:ee:5a:cc:d4:07:60:fd:d2:78:
d2:20:1f:bb:1c:d8:79:a3:c1:a9:df:8a:7b:7f:e8:
5a:f5:f4:34:76:66:e3:25:55:9c:d4:31:53:9b:24:
39:a3:d1:43:a1:72:54:d0:7c:88:16:f9:5b:e6:48:
05:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:10:F5:E4:54:37:4F:4D:CF:44:1F:BC:BD:79:88:6F:46:B0:D5:47
X509v3 Authority Key Identifier:
keyid:45:71:CB:A8:5A:02:30:A9:CB:47:AB:EB:5B:3B:9E:D4:D5:31:CF:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RXHLqFoCMKnLR6vrWzue1NUxz54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a64099-345f-4f1c-a930-760cb3ea1415/1/RXHLqFoCMKnLR6vrWzue1NUxz54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a64099-345f-4f1c-a930-760cb3ea1415/1/RXHLqFoCMKnLR6vrWzue1NUxz54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:60:fe:53:95:38:77:3e:32:30:61:01:08:ae:80:18:8f:f8:
71:ca:bf:7a:6e:5d:5d:28:eb:33:a1:7b:44:ec:70:ca:f0:fe:
ca:2f:ab:0d:32:76:a4:8f:35:25:c7:2f:b1:85:eb:79:62:56:
da:7b:4e:b0:b4:f4:e0:ec:4a:d0:e7:74:c3:5f:1b:b2:ad:55:
1c:1c:ef:66:91:47:0d:b3:5c:93:85:0d:0e:ce:dc:e1:87:43:
22:8e:3f:4c:b1:d3:ba:da:d8:2b:6d:d4:b2:05:c5:46:12:c1:
2a:75:89:78:81:73:ef:7a:70:de:51:ec:30:4b:26:d7:c0:41:
7c:47:b6:b9:a4:ad:37:ab:7a:43:f0:02:0d:67:cd:0f:42:5c:
46:2d:e4:63:00:4d:f9:af:b8:95:32:a8:7f:fb:54:91:9d:be:
a2:54:bd:5c:fc:d5:f7:4c:38:51:03:6a:44:e1:f1:f6:0f:39:
be:ca:4f:4b:34:1f:dc:5e:1f:67:44:bc:eb:8b:6b:24:21:c8:
48:32:a2:33:f6:4c:3e:7c:bb:17:77:44:87:10:60:81:42:75:
8c:74:0d:6c:6e:ef:83:61:fb:e8:e9:fe:37:6e:ed:38:21:3a:
d1:cf:3e:bd:ae:16:42:4f:9b:4e:25:da:ae:61:82:60:71:47:
a2:83:d7:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 20:13:31 2024 by rpki-client on console-ams.rpki-client.org