Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft
File: nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft (raw, json)
Hash identifier: AkMSOX4e2tPyQSaBUHaQRDyrdDlvLdJTSgBYsyOaaxo=
Subject key identifier: E6:96:1E:60:D3:16:F8:2B:7A:55:DA:38:14:E5:9D:64:90:0B:98:FF
Authority key identifier: 9D:36:27:D9:76:65:14:57:89:42:42:00:50:BF:83:A8:B1:29:16:6E
Certificate issuer: /CN=9d3627d9766514578942420050bf83a8b129166e
Certificate serial: 019357D303C866CCB0993DBFE71E48DD1CCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTYn2XZlFFeJQkIAUL-DqLEpFm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft
Manifest number: 1002
Signing time: Sat 23 Nov 2024 07:01:07 +0000
Manifest this update: Sat 23 Nov 2024 07:01:07 +0000
Manifest next update: Sun 24 Nov 2024 07:01:07 +0000
Files and hashes: 1: nTYn2XZlFFeJQkIAUL-DqLEpFm4.crl (hash: VcqRfy59gOYuME7HvNQoYdoK544fIHomYmwZJINWAzE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTYn2XZlFFeJQkIAUL-DqLEpFm4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d3:03:c8:66:cc:b0:99:3d:bf:e7:1e:48:dd:1c:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d3627d9766514578942420050bf83a8b129166e
Validity
Not Before: Nov 23 07:01:07 2024 GMT
Not After : Nov 24 07:01:07 2024 GMT
Subject: CN=e6961e60d316f82b7a55da3814e59d64900b98ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:da:6f:07:65:3e:07:e4:fe:2b:cb:d2:44:39:
5a:fa:13:9e:6c:11:be:ea:a5:90:53:50:16:f4:25:
fd:0f:d9:af:a0:f9:10:24:b9:8b:29:47:a5:07:a8:
6a:0b:a2:c9:78:58:49:58:78:ec:50:02:3f:08:cb:
04:06:ee:c9:11:1a:ed:48:26:b5:d1:eb:40:ca:15:
58:5a:09:21:5e:e3:43:cb:98:20:f4:53:29:cf:ce:
81:4d:ff:22:7c:f8:df:97:f2:9f:d4:da:1e:77:f9:
a8:6a:3c:42:ea:46:6e:15:0a:00:ac:7f:89:41:60:
91:13:6b:ce:a4:1f:17:d4:e8:6b:cc:1f:a8:62:1d:
a8:01:48:c6:5c:94:67:d7:76:4e:0e:42:c4:5d:fe:
be:2a:3f:ad:e9:01:df:50:7f:ca:42:3b:7a:8d:56:
69:1c:55:76:0c:76:95:c9:da:c2:b0:e2:e8:34:44:
4c:fb:dc:c1:74:dd:d4:ee:a8:89:8d:1d:62:f5:d2:
c3:18:f3:e4:6e:5c:08:9f:22:cb:62:d0:61:30:7a:
fc:07:f1:f8:c0:45:30:4e:ba:4e:6e:52:93:f4:1e:
fe:72:0d:d5:1a:86:03:73:31:86:c8:5c:94:6a:a0:
58:32:34:14:d0:58:4a:33:c9:97:12:b5:75:49:0c:
3f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:96:1E:60:D3:16:F8:2B:7A:55:DA:38:14:E5:9D:64:90:0B:98:FF
X509v3 Authority Key Identifier:
keyid:9D:36:27:D9:76:65:14:57:89:42:42:00:50:BF:83:A8:B1:29:16:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTYn2XZlFFeJQkIAUL-DqLEpFm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:57:b9:41:4a:d4:4d:9d:f0:45:67:d2:06:f0:09:6b:28:82:
c9:f0:5e:e5:32:8b:73:fd:12:5b:d0:2b:ef:47:dd:92:ef:6c:
a8:c9:60:a2:0b:15:3f:2c:d6:a2:69:ba:b4:48:ae:08:ea:ea:
67:91:71:5c:c1:61:1f:dc:37:97:21:9f:90:1b:98:6c:4a:54:
63:c6:e5:47:b0:40:2a:47:04:16:f2:9f:42:7c:04:bd:89:e0:
0e:e9:9c:52:22:da:7e:0b:e2:b2:00:8e:80:f8:a1:2f:9d:d4:
fe:7a:4e:2a:69:84:26:67:f0:bf:84:a0:65:1d:97:85:cd:50:
9f:3e:e4:4b:95:5f:21:69:42:60:d7:52:58:77:d5:b2:66:35:
d6:40:12:a0:4d:d5:0f:3a:3e:5d:23:c1:a3:a9:bd:a8:7b:2a:
5a:55:bb:4f:a4:ed:e8:a1:b6:be:56:e1:ab:f8:9f:47:13:b2:
36:dc:f0:1c:81:e1:f8:aa:be:3d:36:f1:9d:61:25:b6:28:f1:
e5:bf:21:54:07:e0:f8:6e:f2:01:13:4a:3e:f3:85:b0:8d:5c:
aa:e5:b5:a8:80:0c:ed:d8:eb:04:8b:05:bb:ec:f9:21:d4:16:
c8:88:95:ef:f8:3d:71:d6:b8:9c:95:fa:c0:82:0a:a6:87:5e:
98:14:e4:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:16:31 2024 by rpki-client on console-fra.rpki-client.org