Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
File: Brft72GFhyPErevj7lqJ9wBY1f4.mft (raw, json)
Hash identifier: /HPSziPGszND8J90W3C16yvWkj5E36BGytt3O9rK0OQ=
Subject key identifier: 37:4F:9C:29:B0:56:83:9E:93:82:35:BB:1E:86:0C:67:88:A0:8C:A0
Authority key identifier: 06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
Certificate issuer: /CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Certificate serial: 0193584058BF84DB94EA1B86CCF5A36C5C7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
Manifest number: 1371
Signing time: Sat 23 Nov 2024 09:00:32 +0000
Manifest this update: Sat 23 Nov 2024 09:00:32 +0000
Manifest next update: Sun 24 Nov 2024 09:00:32 +0000
Files and hashes: 1: Brft72GFhyPErevj7lqJ9wBY1f4.crl (hash: yBfyDywRG9N/rThb/NjgZ0X/Gw1tDzCuGjzzpHJZkps=)
2: JFttxtIqpzAqnZmZzUqXzftjeLU.roa (hash: bBdb9EOTayTTjtBlc0isUw2G3DhBZnsy3p8gv/9u/iI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:40:58:bf:84:db:94:ea:1b:86:cc:f5:a3:6c:5c:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Validity
Not Before: Nov 23 09:00:32 2024 GMT
Not After : Nov 24 09:00:32 2024 GMT
Subject: CN=374f9c29b056839e938235bb1e860c6788a08ca0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4e:75:e0:c7:3d:27:21:e0:da:89:d5:d4:9a:
86:c2:9d:d0:1e:b7:da:a2:fe:21:a8:af:23:9a:62:
79:9b:4b:fe:0b:a1:87:f8:56:cb:8b:3a:96:ed:50:
c3:60:ac:6a:30:c9:49:b3:39:c6:9e:a1:50:6c:2a:
82:19:d3:97:ac:01:40:76:ff:32:26:f2:f8:1c:53:
e7:ae:1d:82:61:ed:20:72:bc:07:e9:e5:6c:49:c7:
cf:22:b7:ff:12:e3:5d:03:1b:51:ec:84:08:62:7b:
75:5f:3a:05:59:57:76:5e:8d:b6:f7:50:59:52:37:
5e:ce:f3:cd:46:40:9e:14:0a:f5:49:6c:d3:ce:67:
99:c5:57:4c:36:e6:20:7c:9e:64:a8:2e:63:a0:15:
29:47:dd:de:6e:32:18:e5:fa:ee:aa:37:fa:3c:c1:
ab:06:86:78:f1:a7:33:ba:63:c8:73:53:34:6f:00:
11:42:93:6f:88:fc:39:f4:60:9f:7b:5a:e7:f8:84:
76:f1:e8:4d:64:97:fa:44:ca:de:c4:fa:36:cf:2f:
5a:cf:b8:ab:95:21:a1:82:12:78:03:29:57:78:01:
59:a4:66:b8:7d:b5:f0:8e:8d:cb:49:13:e9:d4:21:
20:49:88:7d:0d:c3:b0:60:78:f4:d7:c7:ba:07:9d:
06:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:4F:9C:29:B0:56:83:9E:93:82:35:BB:1E:86:0C:67:88:A0:8C:A0
X509v3 Authority Key Identifier:
keyid:06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:6d:fd:47:e2:4d:e7:98:55:07:27:6d:ce:28:c8:80:dd:a0:
bc:54:b2:2d:2a:dd:8b:5e:91:d4:2a:90:a8:32:a4:00:6a:0a:
73:79:b7:31:bb:f9:f6:45:45:80:1e:3e:0d:aa:f1:33:58:b0:
d9:98:6b:ec:1c:61:14:95:b9:09:98:fc:60:9f:60:1b:53:dc:
e3:1d:13:f1:4a:b1:8f:ad:ee:09:bc:e0:59:ba:f3:32:51:cd:
32:70:c2:e5:2a:a6:be:14:a7:ea:bb:5b:62:97:fd:f2:3f:c3:
21:cd:6a:f0:a5:eb:be:5c:3c:65:98:eb:f0:b4:a5:f8:99:31:
f8:1b:f7:b0:f3:92:e9:b6:13:b3:5b:d5:00:a5:2f:ce:be:e9:
b3:b3:83:0a:b2:da:03:5e:87:87:ca:ca:78:8c:e4:5b:53:cb:
99:28:2b:a0:ad:21:6a:d4:85:1a:17:7f:c3:b1:4d:37:90:5c:
28:61:68:11:68:ff:96:36:da:09:4d:c2:15:9f:7f:49:f6:40:
f9:e7:4d:df:bd:26:f8:59:fd:c1:3f:25:d1:fa:05:11:96:51:
26:bf:05:eb:f1:90:d9:b8:8e:64:d2:12:6e:70:32:f8:a2:36:
9e:24:b8:f0:b2:97:f7:36:d2:bb:e6:c6:e1:da:d9:c2:81:bf:
13:2b:86:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:00:26 2024 by rpki-client on console-ams.rpki-client.org