Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.mft
File: cr0ONuHCAjBKNRM7EWZmJeXW5e8.mft (raw, json)
Hash identifier: tC4s4amOc2d7hCi2bxrDRuddJD8ZDfk/10G3Cr2ykNc=
Subject key identifier: 2C:11:9E:4D:51:1F:D2:80:1B:D3:32:45:DB:A8:04:55:66:48:14:67
Authority key identifier: 72:BD:0E:36:E1:C2:02:30:4A:35:13:3B:11:66:66:25:E5:D6:E5:EF
Certificate issuer: /CN=72bd0e36e1c202304a35133b11666625e5d6e5ef
Certificate serial: 01935689DDD9A1C638B30ED81731D7539A7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cr0ONuHCAjBKNRM7EWZmJeXW5e8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.mft
Manifest number: 0711
Signing time: Sat 23 Nov 2024 01:01:35 +0000
Manifest this update: Sat 23 Nov 2024 01:01:35 +0000
Manifest next update: Sun 24 Nov 2024 01:01:35 +0000
Files and hashes: 1: Ue8t7ak-mdS7pdxiVsJenOH4auM.roa (hash: k9WX2UzIShjk00jzyDRYl9khq3bVFDyiQoOSD2d34B0=)
2: cr0ONuHCAjBKNRM7EWZmJeXW5e8.crl (hash: DfjbXgHzgrEAhPH0b9r3lRRoWnRdVElpxzu5uUXvsf4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.mft
rsync://rpki.ripe.net/repository/DEFAULT/cr0ONuHCAjBKNRM7EWZmJeXW5e8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:dd:d9:a1:c6:38:b3:0e:d8:17:31:d7:53:9a:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72bd0e36e1c202304a35133b11666625e5d6e5ef
Validity
Not Before: Nov 23 01:01:35 2024 GMT
Not After : Nov 24 01:01:35 2024 GMT
Subject: CN=2c119e4d511fd2801bd33245dba8045566481467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:09:72:d7:01:b5:ba:7b:4a:bd:50:79:d3:f9:
c0:fb:8d:77:59:af:b5:e5:a7:c8:dd:ee:e9:84:7a:
db:ee:12:29:c6:e9:bd:30:fa:bc:53:2d:79:f0:91:
f9:d3:ee:75:d7:d8:98:7a:9e:b4:9e:04:2d:3a:0d:
7f:ad:f0:e2:8d:08:04:f8:0d:04:52:56:6a:a8:21:
b1:b0:32:27:be:7e:2d:d5:bc:b0:dd:e0:c4:af:09:
2d:dd:6d:f9:c1:23:a8:a4:50:54:0a:e8:bc:c9:4f:
03:eb:18:8c:2b:cf:f2:d7:f8:ca:41:f5:5a:d9:4a:
17:2b:45:4b:b2:e6:d8:6a:72:88:3c:85:05:67:17:
ac:07:3b:ad:23:ac:08:52:d2:c5:12:28:5a:7e:1c:
4e:d4:08:f1:33:45:35:03:dd:19:8d:2e:86:f9:23:
6b:a0:e0:e7:4a:80:55:74:5e:4e:eb:80:66:2e:88:
d7:7f:25:52:a2:79:8d:37:18:14:74:af:51:a8:ad:
3d:d8:11:65:ef:9e:61:02:89:1e:e3:1b:ff:8c:1e:
b5:79:0f:12:82:ee:be:dc:1b:44:93:33:42:00:61:
66:c4:f7:82:f1:20:86:7b:38:c0:f3:ee:00:10:c4:
9b:2a:4a:70:07:30:5f:a5:8b:49:96:c4:36:60:d0:
bd:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:11:9E:4D:51:1F:D2:80:1B:D3:32:45:DB:A8:04:55:66:48:14:67
X509v3 Authority Key Identifier:
keyid:72:BD:0E:36:E1:C2:02:30:4A:35:13:3B:11:66:66:25:E5:D6:E5:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cr0ONuHCAjBKNRM7EWZmJeXW5e8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:bd:f0:89:44:53:d0:f0:e3:4a:78:2f:af:83:04:02:c7:ea:
a8:56:d6:51:06:df:be:11:14:22:cb:21:8a:1f:c7:fc:72:0c:
f9:a3:e6:f7:e3:9c:2c:22:13:13:9b:9e:c5:f4:25:c0:2a:b4:
16:08:f7:6e:c6:2c:4c:72:7c:9e:af:bb:33:cf:c4:d5:8e:9f:
1c:06:0d:14:26:cd:c6:94:2e:de:89:18:d9:fd:d3:77:b1:1a:
64:74:3c:5f:46:24:c2:6e:a9:4d:6e:46:85:a2:e9:5a:64:e2:
f5:ca:16:12:3d:cd:b0:25:5f:38:d5:ba:55:47:9a:b7:96:de:
64:bd:39:9d:ca:0e:da:c4:9a:fc:18:61:c4:4c:42:5b:4f:3d:
ff:d7:ee:17:05:3b:6b:b9:ae:88:b2:8d:b4:9a:fe:de:56:1e:
23:72:81:54:89:00:21:d1:39:12:c4:a5:91:d4:fe:99:97:d1:
f0:fe:f4:1b:4f:51:2b:36:92:c5:bb:c1:08:76:76:88:69:d0:
f4:c2:89:4e:01:33:7d:8e:0f:22:06:5b:1f:7f:88:16:f1:06:
a7:c4:49:25:86:dd:4b:f9:00:77:b0:d7:3b:98:77:6a:54:11:
1a:34:95:8a:54:40:fa:a1:a3:92:46:38:b5:51:f0:1c:c2:6d:
23:8c:fd:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:18:02 2024 by rpki-client on console-fra.rpki-client.org