Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft
File: Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft (raw, json)
Hash identifier: v9UbNziAZkw43Nye3n4kpP/EtWYPbDpC4FPr1CN9RkM=
Subject key identifier: F0:41:30:BF:EC:56:B5:E2:16:D9:9E:A2:E4:7E:5A:4A:0F:F6:25:24
Authority key identifier: 03:2D:39:CE:91:BE:86:7C:F5:CE:1B:60:09:D5:26:2C:28:B6:52:09
Certificate issuer: /CN=032d39ce91be867cf5ce1b6009d5262c28b65209
Certificate serial: 019405A14B027F3DCE2B609C3184C8CCBC88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft
Manifest number: 13C8
Signing time: Fri 27 Dec 2024 01:00:44 +0000
Manifest this update: Fri 27 Dec 2024 01:00:44 +0000
Manifest next update: Sat 28 Dec 2024 01:00:44 +0000
Files and hashes: 1: Ay05zpG-hnz1zhtgCdUmLCi2Ugk.crl (hash: 7R/1oX+3vUxjfJZmCWQEiW4xRtKJwMRWmdoGrXDcvS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 00:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:05:a1:4b:02:7f:3d:ce:2b:60:9c:31:84:c8:cc:bc:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=032d39ce91be867cf5ce1b6009d5262c28b65209
Validity
Not Before: Dec 27 01:00:44 2024 GMT
Not After : Dec 28 01:00:44 2024 GMT
Subject: CN=f04130bfec56b5e216d99ea2e47e5a4a0ff62524
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5b:f8:29:31:a6:ad:13:b0:97:c4:3f:63:ef:
d8:9f:9d:a8:03:0a:57:cf:2b:a7:63:21:58:a4:17:
bf:4d:b9:15:81:29:45:ce:2e:f5:84:e5:5e:23:99:
5d:36:78:a2:6a:c8:1b:40:00:24:48:a4:9b:e5:b0:
d3:74:5f:73:65:71:64:9a:02:5d:86:4d:12:e7:25:
2f:ad:21:c1:1f:33:f8:29:1d:bc:2c:cd:5e:70:55:
4d:a4:2d:aa:0e:80:71:c7:8c:98:42:10:4d:a9:f1:
5d:13:a7:42:fb:f1:77:b9:bf:28:f3:fa:5b:ee:03:
d9:30:3f:c6:5b:c6:10:da:25:05:a1:22:28:eb:e1:
21:e3:be:9d:54:4a:49:6e:41:60:29:a3:a9:15:01:
10:3a:d8:e1:fc:fc:20:e5:c9:18:e2:c6:04:fa:94:
c5:a8:c4:c1:87:af:95:5a:66:73:34:6e:cf:ca:6f:
ab:ce:6c:50:3f:2e:b8:fe:fa:6a:42:40:03:31:56:
7b:d3:fe:46:b1:6d:c4:97:08:a1:71:d3:12:3b:eb:
18:3d:77:e6:c6:d3:06:22:87:2f:62:8e:3b:99:ea:
f5:09:d3:6b:47:62:a0:24:6a:ca:38:e6:ff:e3:06:
55:91:7b:4f:c3:b0:00:bf:b1:c7:a2:76:4b:c1:7d:
e5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:41:30:BF:EC:56:B5:E2:16:D9:9E:A2:E4:7E:5A:4A:0F:F6:25:24
X509v3 Authority Key Identifier:
keyid:03:2D:39:CE:91:BE:86:7C:F5:CE:1B:60:09:D5:26:2C:28:B6:52:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:a3:8e:2a:23:88:43:db:16:32:bb:aa:34:15:43:dd:a2:f4:
07:96:98:a3:c0:c7:7f:6a:7c:3f:eb:22:77:c0:e5:df:11:64:
56:47:29:57:25:4e:2c:b6:95:d3:91:b0:e6:82:b5:ba:e5:d7:
dc:95:c1:78:1b:6f:87:35:2b:d4:d5:cb:87:22:3e:7b:d4:0a:
38:09:a8:bc:3c:19:36:a4:c1:74:31:11:03:81:e8:b9:32:eb:
56:e6:ac:4d:04:6a:6e:e0:0b:af:4b:44:f1:ec:cc:9f:44:ca:
51:8a:53:87:95:e8:40:f0:40:6f:36:dc:52:8e:9e:5f:7f:f9:
7b:16:56:00:f1:f8:2c:3e:27:c8:ac:34:7d:71:b8:0e:76:1f:
6d:cf:86:78:c1:30:68:da:cb:db:12:0b:48:e4:71:c1:57:c6:
b7:e9:16:8a:8f:bd:53:c2:a0:f9:93:83:7f:16:23:1b:f1:c1:
85:c7:23:55:3c:23:3b:ba:bd:5c:a4:ef:d1:c7:7c:79:d9:42:
bc:46:02:17:dd:44:52:13:f6:f8:74:f6:d1:d1:4d:28:a0:82:
bf:52:23:7b:48:32:96:f0:e9:a1:73:aa:e8:a1:6a:5f:1f:14:
e7:d8:ce:fa:85:66:4a:a3:51:96:d3:3d:05:7f:09:df:39:ea:
2d:82:31:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 10:04:51 2024 by rpki-client on console-ams.rpki-client.org