Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.mft
File: spuNaKggdWqqP4l5UdWv1n_bPbs.mft (raw, json)
Hash identifier: EAPft8ihHrjG+DlkzitLeL9DJFDJX7LXS83x+I/cTHA=
Subject key identifier: 34:56:55:5C:B6:6C:DD:11:C9:9A:51:10:6F:C8:2B:AB:35:F8:50:1F
Authority key identifier: B2:9B:8D:68:A8:20:75:6A:AA:3F:89:79:51:D5:AF:D6:7F:DB:3D:BB
Certificate issuer: /CN=b29b8d68a820756aaa3f897951d5afd67fdb3dbb
Certificate serial: 019356899C9416B1352E175F14C682687ECE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/spuNaKggdWqqP4l5UdWv1n_bPbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.mft
Manifest number: 136F
Signing time: Sat 23 Nov 2024 01:01:19 +0000
Manifest this update: Sat 23 Nov 2024 01:01:19 +0000
Manifest next update: Sun 24 Nov 2024 01:01:19 +0000
Files and hashes: 1: spuNaKggdWqqP4l5UdWv1n_bPbs.crl (hash: e7oUrYkcFkMEUQJOcpboHw9JEeRtqMTpuv0c4r84TvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.mft
rsync://rpki.ripe.net/repository/DEFAULT/spuNaKggdWqqP4l5UdWv1n_bPbs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:9c:94:16:b1:35:2e:17:5f:14:c6:82:68:7e:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b29b8d68a820756aaa3f897951d5afd67fdb3dbb
Validity
Not Before: Nov 23 01:01:19 2024 GMT
Not After : Nov 24 01:01:19 2024 GMT
Subject: CN=3456555cb66cdd11c99a51106fc82bab35f8501f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:1d:52:c2:2c:94:85:6e:d8:af:ae:e7:3f:af:
36:fe:11:fe:30:0d:b7:25:bb:64:f9:74:18:c8:17:
f6:4e:f2:55:4e:33:57:6d:55:21:b0:f5:d6:f0:22:
bd:83:bc:54:24:24:a8:1d:e8:03:32:46:e9:e5:81:
88:5e:50:d0:72:86:ef:70:31:7c:cf:bd:40:b7:62:
8f:5a:ed:61:70:73:ef:48:c2:e5:10:d2:85:3e:d6:
53:ed:93:9a:81:cb:56:66:c9:7e:ba:3f:51:19:26:
7d:e4:96:49:6f:08:ea:c6:3b:fe:6f:89:e7:25:1f:
68:ae:4e:b9:5e:0e:ae:df:91:f9:20:83:03:b4:1a:
01:74:eb:54:e8:88:8a:88:9d:d7:1b:25:1a:fc:fc:
7b:05:11:c1:79:66:e8:b3:d7:ae:d9:92:2c:18:92:
82:27:f2:fa:ce:73:b3:6f:c4:2f:7c:33:ce:cc:6a:
9a:23:d4:5e:84:ad:6d:64:d4:18:ac:8b:2e:6d:cd:
1b:7f:59:36:69:f1:04:a9:d7:9e:2e:61:d0:ba:49:
19:e2:83:a5:47:ca:1e:46:c2:b9:02:dc:86:1e:e5:
28:ca:88:0c:c5:6f:7e:0f:90:54:d3:fe:b7:aa:d3:
90:30:fa:27:37:18:05:49:39:12:25:96:f3:8f:59:
1f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:56:55:5C:B6:6C:DD:11:C9:9A:51:10:6F:C8:2B:AB:35:F8:50:1F
X509v3 Authority Key Identifier:
keyid:B2:9B:8D:68:A8:20:75:6A:AA:3F:89:79:51:D5:AF:D6:7F:DB:3D:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/spuNaKggdWqqP4l5UdWv1n_bPbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:ab:56:9c:3d:0e:0d:d1:57:47:23:71:a2:3b:c7:d2:73:f0:
1e:0c:2f:4f:b1:44:d2:46:d3:9f:f8:6d:3c:1e:ec:4c:84:da:
15:03:49:88:46:d4:29:fc:1b:21:63:5b:40:70:4f:ed:64:2c:
a1:a8:b7:ec:0d:0c:76:48:5d:0c:04:26:67:8b:93:c5:fb:cb:
ba:02:1f:a6:20:49:58:0e:3f:5a:de:96:91:01:6e:c9:20:1f:
11:71:98:c2:bc:be:c1:8e:05:74:a9:7a:db:ab:a9:49:a0:b4:
05:a9:55:42:e2:fd:43:20:f2:0b:3d:a0:8e:b7:23:8d:e9:39:
b9:45:65:8e:95:48:1d:a2:b9:c3:87:8c:99:02:b7:d3:44:ca:
95:07:60:83:c5:d4:95:ef:42:60:c4:4a:24:64:6f:49:ec:b7:
e9:f7:b5:ee:18:a6:2e:58:04:18:aa:32:57:63:f8:b8:52:46:
c3:bf:13:00:95:9b:6c:84:ba:03:80:00:94:7b:18:64:86:dc:
c8:99:41:a8:cb:03:1e:d9:ad:e4:16:5f:6f:d2:3f:ce:56:49:
50:97:86:a7:b7:8f:83:af:ff:19:b7:80:15:9c:26:0f:77:11:
80:1f:24:e7:e6:af:d5:8b:a3:04:ca:8d:2a:ad:60:41:d7:44:
2d:e2:52:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:01:05 2024 by rpki-client on console-ams.rpki-client.org