Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
File: 2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft (raw, json)
Hash identifier: iXvIEjzgYqeaJ7KjCwLbRhoyieFVEwpLm4guxD7Z/r0=
Subject key identifier: 5B:4A:DC:78:45:53:E6:EF:97:A1:6D:23:10:5C:69:C4:56:35:85:8A
Authority key identifier: D8:11:DD:22:F7:EA:F2:72:BC:4B:F3:EB:B1:52:D3:64:BB:4D:97:53
Certificate issuer: /CN=d811dd22f7eaf272bc4bf3ebb152d364bb4d9753
Certificate serial: 019407222406FE259C9F2FD618B566224A02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
Manifest number: 01D6
Signing time: Fri 27 Dec 2024 08:01:05 +0000
Manifest this update: Fri 27 Dec 2024 08:01:05 +0000
Manifest next update: Sat 28 Dec 2024 08:01:05 +0000
Files and hashes: 1: 2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl (hash: rC2jYVlPEcazzFXHSMUyBbNZCWn61HcnidzpSevgYxw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 08:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:07:22:24:06:fe:25:9c:9f:2f:d6:18:b5:66:22:4a:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d811dd22f7eaf272bc4bf3ebb152d364bb4d9753
Validity
Not Before: Dec 27 08:01:05 2024 GMT
Not After : Dec 28 08:01:05 2024 GMT
Subject: CN=5b4adc784553e6ef97a16d23105c69c45635858a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e8:43:e5:33:16:42:c4:54:09:1a:52:d8:b7:
1f:ab:98:70:a6:df:5c:61:f3:7d:d1:65:23:26:d3:
f5:43:0b:36:89:1e:bb:c5:bf:81:19:9b:43:f1:28:
54:b3:fc:5a:87:91:7a:ec:76:20:fa:d5:75:0c:33:
cc:90:f6:ca:5d:f9:f8:57:ba:f4:da:68:c2:2b:4d:
18:80:73:64:58:2f:f5:33:86:ed:46:4c:2a:d7:7c:
a4:4b:59:c8:a7:65:c3:54:3b:96:ad:b1:2b:0a:3e:
fa:8b:a2:cf:fa:76:a1:1f:88:13:bf:ff:61:36:e8:
db:5d:9a:bd:9f:7e:2f:b9:96:30:25:46:7d:1e:7e:
23:85:3e:15:af:29:3c:8c:54:7c:16:94:ae:ad:5e:
99:d4:b7:f8:40:54:91:0f:33:96:87:e7:29:b1:56:
9a:1d:d2:a5:fd:8b:4c:b6:ee:70:08:15:37:8b:90:
00:66:30:42:dd:99:e4:82:59:7e:f3:1d:6e:45:76:
e0:ed:81:bb:ba:4f:44:c7:00:a6:bd:f2:5e:ee:ea:
63:f4:f1:03:40:00:73:c2:02:ab:21:a1:1b:e4:dd:
4f:39:88:f9:b4:48:4e:64:a8:86:d5:b8:c3:df:26:
09:67:44:c3:21:d1:76:fb:23:c6:f1:70:7f:d9:a1:
d7:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:4A:DC:78:45:53:E6:EF:97:A1:6D:23:10:5C:69:C4:56:35:85:8A
X509v3 Authority Key Identifier:
keyid:D8:11:DD:22:F7:EA:F2:72:BC:4B:F3:EB:B1:52:D3:64:BB:4D:97:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:bc:2f:63:97:51:f2:19:a9:80:91:82:ab:b8:27:c9:bf:16:
92:dd:e6:51:c9:7b:e6:a9:4c:53:9c:db:8c:0a:02:51:06:3e:
64:da:90:fb:37:46:8b:8b:e0:21:11:3a:37:42:48:f6:fe:c3:
0a:bd:fe:8f:4f:6f:a1:be:d6:70:fa:ac:23:d6:79:78:f9:50:
92:aa:bd:58:3f:21:58:c7:ed:45:98:a6:b1:eb:24:ce:37:0c:
7e:4f:aa:fd:f9:44:90:22:b4:52:4c:14:8d:63:d5:a9:66:27:
51:6a:34:35:22:c2:12:07:64:23:44:69:50:2f:df:70:15:b4:
bb:55:6e:7f:67:7b:7f:fc:a2:94:44:2e:46:c7:65:24:18:2a:
2b:a9:89:99:b5:ca:81:13:53:5c:13:c9:50:57:44:50:5b:fb:
ac:e0:0e:68:22:6a:22:b9:25:2f:85:99:f8:7d:db:a9:41:9c:
8a:94:08:b1:a1:e8:2c:89:ed:71:0f:49:6b:01:03:b1:50:cd:
34:13:3e:db:35:13:69:37:9f:bc:2b:86:79:f6:73:24:83:db:
a4:61:82:8d:82:35:06:52:08:ff:d7:3d:7f:17:ce:d2:83:c6:
cd:33:03:5f:02:e3:85:79:dd:09:fa:4b:49:f4:b7:dc:ae:ce:
8e:6b:b6:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 11:11:36 2024 by rpki-client on console-fra.rpki-client.org