Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft
File: aZHFbxGnFxxhUyOXafVXvroQGC0.mft (raw, json)
Hash identifier: EEiIL/4TJbycUqPDhzrPxaBvdY1L80G13yV1G86gP6c=
Subject key identifier: CA:45:47:D1:C1:B3:C3:A7:7A:A6:DF:04:A4:DA:C3:BE:49:B5:A2:5C
Authority key identifier: 69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D
Certificate issuer: /CN=6991c56f11a7171c6153239769f557beba10182d
Certificate serial: 0193568A4B00F0ED5B3F6338A66B05FD39A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft
Manifest number: 06C9
Signing time: Sat 23 Nov 2024 01:02:03 +0000
Manifest this update: Sat 23 Nov 2024 01:02:03 +0000
Manifest next update: Sun 24 Nov 2024 01:02:03 +0000
Files and hashes: 1: aZHFbxGnFxxhUyOXafVXvroQGC0.crl (hash: boI+5J9IctGruoMD86KfJHL2ZmhcqPyOUHutNb5NNnM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:4b:00:f0:ed:5b:3f:63:38:a6:6b:05:fd:39:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6991c56f11a7171c6153239769f557beba10182d
Validity
Not Before: Nov 23 01:02:03 2024 GMT
Not After : Nov 24 01:02:03 2024 GMT
Subject: CN=ca4547d1c1b3c3a77aa6df04a4dac3be49b5a25c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:92:7c:65:dd:58:83:bd:0a:cf:f1:77:0d:d8:
9f:21:60:39:9a:30:32:05:48:f2:37:ba:07:01:f4:
46:97:fe:c1:fd:43:1b:f2:0c:13:d7:11:22:67:2d:
5e:3f:fa:49:c8:67:2e:1d:48:64:c7:da:55:93:1c:
f5:da:5b:24:51:a1:3f:e3:f9:30:36:00:e7:95:64:
94:c7:c0:cb:37:e7:1f:94:27:e1:b2:ab:75:64:a9:
7a:cc:4b:88:fa:b4:d3:45:fe:4d:2a:28:ba:f8:3c:
c2:15:ca:8a:75:a2:a9:85:e9:45:66:7b:f8:d7:cb:
32:fc:50:7d:51:be:5d:a4:24:45:fc:73:55:40:67:
0b:85:ab:9d:9c:d8:45:96:37:82:16:87:66:8d:44:
63:9b:0f:2a:44:a5:50:c6:3d:7b:24:6f:b3:39:07:
45:2c:f2:b1:74:7d:51:9d:d9:bb:46:bf:5c:4f:ab:
16:fb:72:57:be:6a:65:a5:33:94:73:3e:8b:e3:16:
69:db:03:fc:b9:e4:c9:17:8b:af:b0:f9:6f:9d:bc:
58:11:7b:48:9b:25:9c:00:9d:2a:e4:53:06:5c:fe:
02:0b:c0:5c:74:96:05:20:dc:69:e5:4d:e2:2a:b9:
68:eb:11:19:72:89:26:2a:fa:ce:2f:0c:6a:3a:98:
e8:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:45:47:D1:C1:B3:C3:A7:7A:A6:DF:04:A4:DA:C3:BE:49:B5:A2:5C
X509v3 Authority Key Identifier:
keyid:69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:6b:7e:c5:cc:b9:d0:66:85:5d:86:b0:a6:63:ec:8f:51:ca:
93:33:94:68:38:d0:a7:dc:de:dd:6e:83:ac:0d:84:33:d0:e8:
08:06:02:60:39:55:4d:53:23:a6:fd:26:9c:47:f0:56:52:97:
b1:3f:26:da:02:fb:56:0d:f2:90:41:a9:22:ef:ae:07:31:82:
85:7f:f1:5d:1b:90:72:6d:81:bf:f8:d7:ad:16:0b:99:43:4f:
dd:c8:ec:06:25:55:2e:e0:11:e0:a3:57:3e:77:1c:06:cf:a4:
24:31:56:89:7b:4f:9e:cc:ac:45:3e:9c:47:17:c5:ff:d0:45:
5e:db:ab:68:1e:8b:e1:c7:95:fb:dd:5d:f5:89:a2:85:67:cf:
40:d6:01:3b:ee:30:1e:69:f4:95:a0:3a:ad:d7:a7:f4:bf:aa:
12:ca:4e:1f:f9:4b:b5:59:91:45:f7:1a:cf:7f:54:40:35:3a:
34:49:c9:e2:6e:6f:dc:0b:a3:28:91:24:04:46:78:97:54:2b:
42:52:fa:14:73:5a:fb:3e:ed:6d:7c:f3:85:45:86:12:78:b9:
99:e3:8f:1a:37:45:71:78:5d:73:0f:ee:7e:b3:8c:94:4a:7f:
fb:0e:58:74:60:00:f4:f5:b8:7a:b6:c9:0c:4d:fd:63:36:b1:
97:06:e5:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:00:18 2024 by rpki-client on console-ams.rpki-client.org