Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
File: aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft (raw, json)
Hash identifier: 488kj0JUOip6IYKnlqZDthn+xJ+kflgewFWHt0qlUrw=
Subject key identifier: 44:D6:28:7A:F4:0F:1C:18:80:DE:5B:E3:0A:93:2D:86:BB:AD:01:06
Authority key identifier: 68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97
Certificate issuer: /CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97
Certificate serial: 019358092C39D22F5C831949EB1EBD6F8BFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
Manifest number: 02DC
Signing time: Sat 23 Nov 2024 08:00:16 +0000
Manifest this update: Sat 23 Nov 2024 08:00:16 +0000
Manifest next update: Sun 24 Nov 2024 08:00:16 +0000
Files and hashes: 1: aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl (hash: cMB376JgJFRomp63ylF9Szs80ju26rilrOaYk0xhrBc=)
2: gnIYDo3mNwTAoC83wy1cUtJcdGg.roa (hash: RE8LmU12RnUyI+6NcYnw8Plm6CgMfYERzFZzioQSpAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:09:2c:39:d2:2f:5c:83:19:49:eb:1e:bd:6f:8b:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97
Validity
Not Before: Nov 23 08:00:16 2024 GMT
Not After : Nov 24 08:00:16 2024 GMT
Subject: CN=44d6287af40f1c1880de5be30a932d86bbad0106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0e:36:2a:08:6a:eb:29:d5:f9:2e:4f:ee:e9:
63:29:37:02:a6:47:68:86:14:41:d1:10:f8:01:4e:
66:9f:af:2a:57:0c:b0:fc:a0:ac:4f:0c:d3:de:7b:
db:66:73:fd:0a:49:16:41:41:20:ce:70:3b:c3:60:
37:ef:fa:4e:d3:8a:73:ed:e5:7f:a9:0d:55:cc:fa:
bd:6f:41:1a:ad:ed:6d:a3:69:d9:6d:7d:79:3d:54:
44:1f:10:b0:c1:37:ad:27:72:d6:34:1f:b1:ad:02:
5c:d1:48:c0:39:69:8b:6e:fa:90:53:83:df:4e:3e:
96:12:2a:4f:d4:0b:af:33:ac:d6:d8:6b:ed:5c:51:
b6:f0:a2:46:49:b4:dd:33:b9:e3:56:19:df:f7:2f:
6f:ae:0b:6f:4d:6c:65:72:82:cf:47:40:3f:87:b8:
81:9a:59:67:92:d0:95:88:20:89:ea:4c:25:53:ae:
85:af:1d:4c:fe:d2:fb:0e:79:6f:3f:8e:74:62:53:
7a:f1:29:36:27:69:a2:95:02:2a:35:86:28:35:56:
73:b4:96:b3:bc:9e:f2:b6:be:2c:d4:aa:d9:e2:37:
35:93:ac:04:35:9c:51:b8:66:ea:3f:36:81:6f:7c:
59:bd:1c:6a:16:de:4a:cd:73:a6:3b:01:d2:30:24:
23:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:D6:28:7A:F4:0F:1C:18:80:DE:5B:E3:0A:93:2D:86:BB:AD:01:06
X509v3 Authority Key Identifier:
keyid:68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:74:0a:2d:0c:38:ba:dc:c7:ea:ad:d7:19:b9:4c:00:82:0e:
cb:3e:bb:00:dd:a5:90:a7:55:56:ae:ec:88:11:44:22:6a:66:
6d:7b:63:03:b5:f9:fd:eb:1d:7a:3a:9d:48:5d:c5:d0:6d:84:
df:76:0a:dc:97:28:ab:f2:7a:94:c3:1c:70:51:f4:66:5e:81:
b1:81:3a:12:b2:82:b6:f1:d7:25:93:80:fd:ee:22:d5:45:e0:
71:6a:67:4b:43:68:49:7f:60:1f:42:78:eb:35:6d:c9:e5:a0:
50:98:68:9d:d6:7c:44:c2:eb:01:81:0f:e8:f0:1b:50:c7:86:
14:c4:27:4c:bf:47:8a:57:19:7f:64:dd:05:bf:21:1e:3c:a1:
e4:40:2b:82:bb:ff:53:2d:42:a4:4e:b1:38:cf:26:74:bd:03:
12:74:09:7e:c1:bd:96:27:b0:23:4d:c7:8a:9f:cf:85:f6:10:
41:08:f2:48:f4:01:ce:b9:fe:34:1f:d5:db:c1:eb:2f:c2:95:
75:6c:a4:a7:d5:b7:21:96:ba:00:5c:10:c1:88:a6:09:5e:77:
fe:b4:9f:46:dd:65:89:45:fc:66:b7:65:14:eb:ff:02:49:42:
df:95:75:08:07:7c:25:0a:cd:36:d6:ac:0d:57:1f:14:61:77:
17:cc:e8:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:18:51 2024 by rpki-client on console-fra.rpki-client.org