Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
File: CZoxZcQAepQBMaMnzHfMIhzBadk.mft (raw, json)
Hash identifier: kbyDdEF4NE4y5AIV/HAoipQbC8gUowgdNGUlOBzuHrU=
Subject key identifier: 65:41:AA:E3:DB:2E:81:85:C6:EC:28:98:15:CB:96:4D:15:A6:83:3B
Authority key identifier: 09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
Certificate issuer: /CN=099a3165c4007a940131a327cc77cc221cc169d9
Certificate serial: 01935A6765A49B364E789238F23A9B6DA1C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
Manifest number: 136F
Signing time: Sat 23 Nov 2024 19:02:25 +0000
Manifest this update: Sat 23 Nov 2024 19:02:25 +0000
Manifest next update: Sun 24 Nov 2024 19:02:25 +0000
Files and hashes: 1: CZoxZcQAepQBMaMnzHfMIhzBadk.crl (hash: 9Ms/krSQhMy5TObv/BeSacph0A/XAgwPSK+3/mYDMLY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:5a:67:65:a4:9b:36:4e:78:92:38:f2:3a:9b:6d:a1:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099a3165c4007a940131a327cc77cc221cc169d9
Validity
Not Before: Nov 23 19:02:25 2024 GMT
Not After : Nov 24 19:02:25 2024 GMT
Subject: CN=6541aae3db2e8185c6ec289815cb964d15a6833b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:8e:f0:12:6f:57:ae:fe:55:34:92:4f:7b:00:
78:ae:f5:ad:f3:73:ce:9c:56:05:47:fe:1b:29:eb:
e8:bd:47:0f:31:11:41:1d:2e:64:6c:7a:55:8b:8d:
ac:cb:4f:1d:2d:14:f4:db:ee:b6:75:34:14:12:23:
04:68:9c:31:ba:eb:72:57:22:db:3e:3f:f0:b7:92:
a8:e7:16:48:cb:bc:4f:4b:1a:41:ad:5a:1e:a0:ac:
fe:a9:07:db:c8:e4:4b:5d:45:4e:a9:b2:26:cf:c8:
cd:c8:06:0f:d6:ee:96:b4:51:56:d5:22:b1:f7:2e:
f9:90:47:94:09:5e:cd:05:85:dc:fe:d2:b4:26:6d:
66:9d:42:c1:53:62:7c:a0:f4:53:0b:9e:25:5e:d9:
6d:f1:e4:54:6b:52:a1:ca:b8:98:6b:a8:23:b6:b4:
0b:60:97:f1:c7:43:a1:d7:ec:f4:a8:ff:74:69:ac:
14:88:d3:08:91:57:46:fb:e4:81:0b:b7:c7:e1:95:
26:77:f0:b6:21:4a:75:d6:cb:4b:5f:03:43:52:56:
81:c5:98:ac:b0:b5:14:09:2d:26:05:f0:85:07:13:
7f:9b:8f:cc:ab:5e:43:3f:c1:81:61:2a:66:0d:39:
41:0c:da:89:83:43:aa:46:43:c2:54:3d:04:6e:77:
40:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:41:AA:E3:DB:2E:81:85:C6:EC:28:98:15:CB:96:4D:15:A6:83:3B
X509v3 Authority Key Identifier:
keyid:09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:8d:3b:dc:36:57:e3:0a:15:bb:7a:40:38:17:6c:9f:31:aa:
df:bc:57:55:cb:d1:55:87:e2:0e:68:d1:6c:d1:58:d7:0d:e3:
b5:4c:94:26:94:85:60:fe:a7:65:4a:3c:30:2a:b8:68:bd:ad:
a8:8b:7c:43:63:62:16:ae:49:39:79:dd:ab:2a:ba:67:3e:e7:
21:cb:3e:f6:2b:c0:9d:1a:fe:94:34:38:4f:ba:83:ab:12:3c:
9d:57:83:bb:ec:a4:2d:1e:78:e3:cb:db:a8:ed:20:22:2d:06:
c7:e8:84:4e:42:08:c0:74:2f:42:99:23:a8:f2:7b:89:29:a8:
9a:85:64:7a:1f:59:0d:4c:75:5f:fc:38:f9:10:11:9b:1e:df:
d2:40:4c:7b:9d:b0:e7:66:63:d8:3e:95:30:e9:4a:bf:40:8a:
79:9b:d4:6d:d4:82:be:85:ce:57:48:5f:b4:18:ab:ab:02:22:
b4:a3:11:f2:a3:3b:71:ae:a3:b6:f1:61:dc:93:92:ef:97:d1:
07:c2:a7:8e:a4:86:e8:88:10:fc:a3:f1:95:c6:63:7c:a7:2e:
10:26:85:a0:e6:9e:a2:cf:c2:31:79:36:2d:8e:2c:3f:7c:b9:
b0:bb:fa:12:74:2e:17:cc:27:ed:95:3e:0c:50:6d:59:85:eb:
7e:32:05:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:43:52 2024 by rpki-client on console-fra.rpki-client.org