Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.mft
File: riYajfUykscw4q4d_PxP4_92sdA.mft (raw, json)
Hash identifier: 7KXLDu2YZ+BUJwCs9gqNcLQhftcTpjI5paDCdPZiIm4=
Subject key identifier: 60:0D:52:48:D4:F1:0A:DF:42:8A:3E:DB:FE:A9:25:57:AD:1D:17:92
Authority key identifier: AE:26:1A:8D:F5:32:92:C7:30:E2:AE:1D:FC:FC:4F:E3:FF:76:B1:D0
Certificate issuer: /CN=ae261a8df53292c730e2ae1dfcfc4fe3ff76b1d0
Certificate serial: 019356F702F777B665B88AE19C2203F15167
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/riYajfUykscw4q4d_PxP4_92sdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.mft
Manifest number: 136E
Signing time: Sat 23 Nov 2024 03:00:48 +0000
Manifest this update: Sat 23 Nov 2024 03:00:48 +0000
Manifest next update: Sun 24 Nov 2024 03:00:48 +0000
Files and hashes: 1: riYajfUykscw4q4d_PxP4_92sdA.crl (hash: d0Zt9+YTFikZEiZdeWoWYZGMnOYxDqHvSpLXx4yas24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.mft
rsync://rpki.ripe.net/repository/DEFAULT/riYajfUykscw4q4d_PxP4_92sdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:f7:02:f7:77:b6:65:b8:8a:e1:9c:22:03:f1:51:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae261a8df53292c730e2ae1dfcfc4fe3ff76b1d0
Validity
Not Before: Nov 23 03:00:48 2024 GMT
Not After : Nov 24 03:00:48 2024 GMT
Subject: CN=600d5248d4f10adf428a3edbfea92557ad1d1792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e2:ec:55:3f:b7:6a:9c:4b:d0:06:e9:d1:4c:
48:5f:56:3d:69:11:40:ec:f8:e1:ce:4e:e8:9d:3c:
17:b4:b4:3a:56:a6:32:a3:68:68:5c:e1:fb:da:8c:
32:8c:b6:7e:44:f4:25:16:52:db:78:14:55:0d:a1:
16:97:4e:60:03:71:a7:04:0e:ec:ab:b5:0e:da:5b:
49:78:4d:6a:a1:b6:cc:13:35:3c:8c:98:74:42:fb:
e1:cb:36:1d:49:08:f4:f1:b6:29:b5:70:ca:57:1d:
5d:92:aa:2f:7f:93:86:6d:ca:b4:93:b1:e2:3c:51:
ba:ea:15:fd:b8:29:1c:04:23:3e:88:3a:15:89:8a:
a4:4b:a9:61:12:a1:fb:37:fd:c3:08:40:6b:98:5c:
57:50:1c:a6:1a:df:e1:ca:83:51:e6:23:a9:00:24:
f4:bc:73:24:3b:56:19:4f:ca:2f:c7:62:b2:74:30:
20:dc:dc:a7:f6:3d:fc:a4:ea:b7:e0:b8:23:b8:8c:
ea:ce:d1:25:62:31:ee:c4:b2:8f:95:e9:0a:2c:5b:
08:15:c0:ac:b3:78:0c:44:cd:48:80:26:80:06:93:
53:1e:70:23:fa:ef:ba:fd:38:23:b0:b6:3c:19:92:
ed:aa:1f:64:11:12:a5:03:a6:93:7e:68:06:47:10:
61:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:0D:52:48:D4:F1:0A:DF:42:8A:3E:DB:FE:A9:25:57:AD:1D:17:92
X509v3 Authority Key Identifier:
keyid:AE:26:1A:8D:F5:32:92:C7:30:E2:AE:1D:FC:FC:4F:E3:FF:76:B1:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/riYajfUykscw4q4d_PxP4_92sdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:b9:68:bb:75:2c:2d:9c:f0:9b:7e:b7:6c:b6:dc:15:e7:c3:
40:cb:be:ea:c3:c3:31:ba:42:3e:39:37:74:89:05:64:8a:0a:
12:e7:d4:41:2b:f0:69:8a:c9:64:3f:d7:5f:e1:e6:9e:a7:4f:
5c:f5:38:17:df:44:cf:17:39:7b:a0:59:84:35:d1:73:f0:06:
42:31:16:40:27:65:a2:89:38:d7:81:60:96:9b:85:cd:4b:06:
81:82:af:ea:b0:c2:96:3f:99:39:38:ea:e4:81:15:38:ee:dd:
39:2a:7e:3b:7c:b5:b8:3d:f6:e9:df:85:53:d7:fc:67:91:a0:
9d:26:b2:aa:c3:75:1e:20:84:5e:2d:68:22:66:33:ed:aa:cc:
86:c6:38:c6:54:87:76:e3:cb:00:06:48:e6:b3:c1:1b:77:11:
8c:1f:cf:07:96:7b:dc:90:6d:91:d9:e9:8b:3e:45:85:cd:22:
7b:f4:56:4c:36:b6:13:c5:14:69:f3:03:30:86:8c:f1:31:76:
56:58:5d:1b:41:10:0a:ff:8b:99:a4:fa:3e:e1:87:07:4a:4a:
40:a2:43:40:ed:38:90:5c:c8:76:f6:25:89:77:ac:32:b6:85:
80:df:d7:4b:ad:4e:13:e8:49:30:f8:c0:9b:17:c9:5b:c4:30:
b9:c4:6d:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:01:42 2024 by rpki-client on console-ams.rpki-client.org