Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
File: CaT39OTp5yw6M5P7XW6nQrwbTCg.mft (raw, json)
Hash identifier: XQRc4JVHSZNUmQgThzFDWR0UzaQUBMZfZpcsLjTOhdM=
Subject key identifier: DE:27:D1:B1:7A:18:AC:F9:7B:F9:40:1F:94:BB:91:3A:6F:ED:F9:2C
Authority key identifier: 09:A4:F7:F4:E4:E9:E7:2C:3A:33:93:FB:5D:6E:A7:42:BC:1B:4C:28
Certificate issuer: /CN=09a4f7f4e4e9e72c3a3393fb5d6ea742bc1b4c28
Certificate serial: 019357D257C7C10ED083D9A7FC358E6B08ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
Manifest number: 0D34
Signing time: Sat 23 Nov 2024 07:00:22 +0000
Manifest this update: Sat 23 Nov 2024 07:00:22 +0000
Manifest next update: Sun 24 Nov 2024 07:00:22 +0000
Files and hashes: 1: CaT39OTp5yw6M5P7XW6nQrwbTCg.crl (hash: Fp0HJL0zufsoyYC+sVRwDBWYjv4yVIFUP5vOlBXuCbU=)
2: qP26xAERBpsbJ6Ao_eYJ7Nx5DBU.roa (hash: Fx7REnV6lfPp/kA/mwXuE9uTQV0YEWqNf6y5LgCgIbQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:57:c7:c1:0e:d0:83:d9:a7:fc:35:8e:6b:08:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09a4f7f4e4e9e72c3a3393fb5d6ea742bc1b4c28
Validity
Not Before: Nov 23 07:00:22 2024 GMT
Not After : Nov 24 07:00:22 2024 GMT
Subject: CN=de27d1b17a18acf97bf9401f94bb913a6fedf92c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:06:e7:21:82:99:e8:64:5b:67:85:9b:10:66:
d4:17:6b:12:1c:ce:c2:7e:f5:74:d7:17:59:6f:a4:
98:26:1d:28:a0:b5:73:a9:6e:42:e7:b9:ad:d0:da:
61:09:5f:e8:2f:75:83:49:43:26:f2:72:0e:11:76:
c5:14:72:ae:e8:d5:3a:90:3a:1b:99:2f:12:89:cb:
0f:26:82:11:73:c5:a3:36:f7:56:51:3d:be:55:21:
c5:8e:29:a7:c4:97:92:6e:c0:a0:2a:f8:33:81:5c:
03:8b:df:b7:e2:35:88:f9:a6:c2:ba:e5:cc:09:d3:
e4:15:0b:02:a3:55:74:0e:66:c8:06:70:9a:78:97:
bf:1c:ef:af:08:ca:9b:ac:2d:1e:96:f9:77:cb:82:
41:ff:02:00:4b:6e:4b:62:c9:c6:34:e4:f4:30:dc:
c0:f7:5b:11:63:2e:89:81:c2:62:5e:76:a2:9d:33:
eb:ec:f7:01:73:b6:35:e6:cf:7b:7a:6b:18:af:a8:
04:24:40:f9:74:d3:0f:ef:cc:8e:45:58:fe:3d:09:
b4:c2:69:bc:80:fa:15:b4:27:e9:62:7c:af:86:2f:
d8:ec:2a:3b:30:14:30:ec:8a:22:10:fb:14:19:ca:
94:32:29:22:50:a1:de:d0:a7:3f:9f:f1:dc:ec:bc:
fa:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:27:D1:B1:7A:18:AC:F9:7B:F9:40:1F:94:BB:91:3A:6F:ED:F9:2C
X509v3 Authority Key Identifier:
keyid:09:A4:F7:F4:E4:E9:E7:2C:3A:33:93:FB:5D:6E:A7:42:BC:1B:4C:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:2c:7c:22:05:a1:fc:7b:2a:61:74:82:91:5f:92:4b:97:c7:
d0:90:fb:da:9d:a6:61:ff:5c:4f:29:38:19:e0:75:4f:2e:b7:
30:a1:48:8f:0f:c7:8c:0c:69:f8:ca:6b:ac:f0:85:4a:27:42:
02:54:d0:20:0c:c5:98:76:9c:ba:42:4c:8f:16:1e:bb:d4:b1:
5c:8a:8d:f2:eb:09:96:6c:52:34:53:cb:47:9c:9a:ba:47:bf:
22:e8:65:13:73:39:74:26:89:4b:a6:74:ce:3e:af:5c:92:41:
c5:10:9c:0b:73:e0:4a:67:ad:b1:67:c8:2e:be:92:7e:94:78:
63:e1:ed:3c:01:cc:c4:17:8e:df:b7:5c:67:2c:ee:b6:36:f2:
fe:2a:9a:58:fb:2c:42:b6:70:a8:61:e0:a0:c7:81:6d:03:67:
f0:99:a6:ea:68:73:bb:80:92:65:20:3b:53:e1:5e:d6:0f:1f:
ec:e1:e4:39:c7:09:d2:f4:49:1d:0a:67:84:76:85:c9:67:81:
2c:c0:7a:fb:fc:08:54:e7:2a:b7:91:f7:66:a2:c6:5e:f5:99:
10:3d:35:cb:1b:69:a6:ac:bd:a6:79:45:80:b1:f6:b7:b8:57:
ed:76:1d:aa:f8:7c:e5:7e:ab:94:db:bf:2e:17:9b:f9:88:f9:
4d:fc:18:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:16:54 2024 by rpki-client on console-fra.rpki-client.org