Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft
File: GHRUZrThRoMLlit0kG2xxtCB_HA.mft (raw, json)
Hash identifier: SbY9Veycw2NAFkdXYj1YM7J25dEQnJ3flzNX/q/Zb8Q=
Subject key identifier: 2C:AE:CE:7F:F0:29:5C:E8:18:25:87:E0:4A:A4:61:87:E6:43:AE:D8
Authority key identifier: 18:74:54:66:B4:E1:46:83:0B:96:2B:74:90:6D:B1:C6:D0:81:FC:70
Certificate issuer: /CN=18745466b4e146830b962b74906db1c6d081fc70
Certificate serial: 019406EABC8CE918825BC5AFAE7874C8FB40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft
Manifest number: 1392
Signing time: Fri 27 Dec 2024 07:00:34 +0000
Manifest this update: Fri 27 Dec 2024 07:00:34 +0000
Manifest next update: Sat 28 Dec 2024 07:00:34 +0000
Files and hashes: 1: GHRUZrThRoMLlit0kG2xxtCB_HA.crl (hash: GH2OCMuSe2gR2osT4xUyqmjEepbA6R2fk0FlFj73Lgw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft
rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 00:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:06:ea:bc:8c:e9:18:82:5b:c5:af:ae:78:74:c8:fb:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18745466b4e146830b962b74906db1c6d081fc70
Validity
Not Before: Dec 27 07:00:34 2024 GMT
Not After : Dec 28 07:00:34 2024 GMT
Subject: CN=2caece7ff0295ce8182587e04aa46187e643aed8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a6:d9:4f:15:af:76:fa:ff:18:ba:53:2a:5a:
6b:f1:f5:ee:bc:ff:b2:9d:b9:ea:79:ed:33:88:d6:
73:11:79:67:58:1e:16:91:df:9b:3a:1d:ce:4e:3f:
b5:40:d7:ec:4a:c7:75:fa:71:88:f3:37:96:08:08:
c0:38:c4:44:3a:1e:8c:1d:6e:b8:5f:5d:70:f6:81:
cb:85:1e:91:3f:71:d4:07:36:87:cd:4d:cf:a6:57:
5e:2e:46:4a:e1:63:c8:7e:90:ee:fa:a3:ba:e9:c3:
cf:0c:b5:b7:eb:6e:c0:0c:df:fd:6c:72:cc:11:79:
92:a1:00:82:bd:00:d0:ce:43:8e:df:5f:74:f0:41:
b5:de:97:be:bc:42:dc:da:cf:b6:c7:45:fd:df:2c:
f6:b4:e5:81:41:e3:4c:46:be:55:39:57:0d:c0:51:
00:1d:01:8d:78:f8:af:39:d6:13:ce:80:a6:9e:9b:
54:a1:3d:ab:27:cd:5b:2a:a6:9b:0c:4d:e8:60:4f:
c6:b1:2e:3d:6d:7c:f1:54:86:28:7e:28:5e:af:3a:
22:96:48:5e:3e:5c:b4:e9:fd:13:09:b4:8a:e0:d9:
1f:07:05:5c:5d:4f:75:04:14:3b:59:58:45:63:08:
84:fb:95:81:8e:0a:02:5a:4d:5d:ec:95:37:09:30:
c2:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:AE:CE:7F:F0:29:5C:E8:18:25:87:E0:4A:A4:61:87:E6:43:AE:D8
X509v3 Authority Key Identifier:
keyid:18:74:54:66:B4:E1:46:83:0B:96:2B:74:90:6D:B1:C6:D0:81:FC:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:c9:18:b3:41:37:db:11:7f:28:31:15:bc:31:8d:54:b0:70:
9b:22:1b:70:57:a5:19:4e:23:05:be:5a:0e:57:da:d6:3e:c9:
6e:5d:64:f2:75:56:a9:60:9a:45:97:09:8d:e6:a6:b6:4f:25:
dd:8d:a9:fa:36:40:9e:66:93:0e:f5:23:21:49:b6:cb:2e:e5:
63:c6:6a:23:fb:fd:8a:56:0e:9a:b1:97:04:d0:7c:2a:ab:ed:
e5:ab:0a:3a:de:26:ee:dd:be:e9:85:94:b7:e8:cd:c1:88:27:
ff:82:87:44:5e:36:8a:07:3a:37:94:7c:d6:5e:23:9d:eb:6d:
06:08:ca:bb:5d:e6:90:a0:80:f5:5e:f5:60:c7:8f:5d:d9:15:
00:c9:87:c0:d1:65:57:53:73:45:5a:36:5c:87:e4:c3:2f:77:
cf:87:d9:0f:e6:e7:3e:02:64:f0:ae:b9:6d:d7:58:db:7e:28:
5e:26:9e:51:9f:34:27:57:e1:e3:b0:28:d1:13:cc:5e:eb:dd:
75:c1:b1:6f:9e:a0:69:0f:15:4a:73:60:97:a0:fd:cd:eb:49:
30:2f:75:a5:31:e7:de:b9:2e:2c:50:8f:ce:ed:b6:8a:7c:02:
16:4e:28:73:99:19:d7:06:05:34:20:76:e4:63:dc:71:10:75:
20:f2:ce:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 10:06:14 2024 by rpki-client on console-ams.rpki-client.org