Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/69a034-b508-42e8-99e8-75ee24a3f96b/1/cZLzVgwVuU0e9JdyaEXXhnhrx2I.mft
File: cZLzVgwVuU0e9JdyaEXXhnhrx2I.mft (raw, json)
Hash identifier: cphCg0socFvFWHQ911l61tN28lqcRYrN2wHBk+AwFus=
Subject key identifier: 99:A0:D7:C0:40:7C:7A:B6:62:E1:39:7C:A9:AE:72:DC:E3:68:97:4A
Authority key identifier: 71:92:F3:56:0C:15:B9:4D:1E:F4:97:72:68:45:D7:86:78:6B:C7:62
Certificate issuer: /CN=7192f3560c15b94d1ef497726845d786786bc762
Certificate serial: 0193568A977C27C0B474BDBA6F4E39C401A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZLzVgwVuU0e9JdyaEXXhnhrx2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/69a034-b508-42e8-99e8-75ee24a3f96b/1/cZLzVgwVuU0e9JdyaEXXhnhrx2I.mft
Manifest number: 0AA5
Signing time: Sat 23 Nov 2024 01:02:23 +0000
Manifest this update: Sat 23 Nov 2024 01:02:23 +0000
Manifest next update: Sun 24 Nov 2024 01:02:23 +0000
Files and hashes: 1: cZLzVgwVuU0e9JdyaEXXhnhrx2I.crl (hash: nakBpfwN/JKQuzR5JOaKuaw1DAh1+yxyuaUsjTcp2rA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/69a034-b508-42e8-99e8-75ee24a3f96b/1/cZLzVgwVuU0e9JdyaEXXhnhrx2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/69a034-b508-42e8-99e8-75ee24a3f96b/1/cZLzVgwVuU0e9JdyaEXXhnhrx2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/cZLzVgwVuU0e9JdyaEXXhnhrx2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:97:7c:27:c0:b4:74:bd:ba:6f:4e:39:c4:01:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7192f3560c15b94d1ef497726845d786786bc762
Validity
Not Before: Nov 23 01:02:23 2024 GMT
Not After : Nov 24 01:02:23 2024 GMT
Subject: CN=99a0d7c0407c7ab662e1397ca9ae72dce368974a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:86:9b:0e:44:bc:2a:28:7e:c6:25:4d:ec:b7:
89:77:5c:dc:5f:47:4e:78:aa:00:63:f8:5a:87:a5:
e6:93:b1:83:0d:1a:d8:5a:23:6c:e5:23:4d:b5:e6:
a6:c0:2b:30:a9:0b:7e:b9:0e:0b:b5:af:1d:c8:03:
4b:53:85:1c:7d:62:70:96:36:8c:b0:d6:b8:84:1f:
a4:98:9c:41:68:04:ad:c0:6e:fd:74:1f:96:b9:71:
aa:8c:c2:1e:59:cc:8c:fc:01:12:8d:0f:0c:91:b7:
2c:68:b7:4c:99:4f:fa:5c:f8:ca:ba:e8:d6:c9:d1:
3e:ca:89:2f:3e:af:7a:40:37:1e:e0:f8:49:b7:27:
c8:e1:d7:e5:ce:77:8e:1f:07:17:b9:3c:e9:83:d4:
8d:dc:95:2b:cb:3b:60:98:23:bd:69:1e:53:46:e1:
74:38:29:46:e3:73:97:27:be:1b:75:6b:f9:c0:71:
6a:67:99:2f:18:b1:b5:13:19:a9:c7:f7:a2:71:aa:
ec:12:44:c2:f4:a3:1f:d2:46:59:30:ca:9c:e3:be:
a0:03:79:c8:9b:87:ef:70:38:50:62:30:c3:fa:9f:
30:42:61:89:d4:76:cf:b2:7d:7a:6b:fe:6d:23:3e:
5f:34:d2:8d:86:14:a6:df:73:0f:d8:87:fe:12:e0:
19:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:A0:D7:C0:40:7C:7A:B6:62:E1:39:7C:A9:AE:72:DC:E3:68:97:4A
X509v3 Authority Key Identifier:
keyid:71:92:F3:56:0C:15:B9:4D:1E:F4:97:72:68:45:D7:86:78:6B:C7:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZLzVgwVuU0e9JdyaEXXhnhrx2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/69a034-b508-42e8-99e8-75ee24a3f96b/1/cZLzVgwVuU0e9JdyaEXXhnhrx2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/69a034-b508-42e8-99e8-75ee24a3f96b/1/cZLzVgwVuU0e9JdyaEXXhnhrx2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:a4:f2:ed:69:17:12:51:97:96:1c:92:f8:a6:e0:fd:db:c2:
a9:48:52:84:52:d4:50:3a:dd:60:60:f0:dc:75:d1:e6:23:a6:
fc:4b:f1:58:dc:11:8e:97:f2:a3:d0:88:57:42:b2:b8:e4:f7:
c8:22:7e:63:86:0b:29:76:4c:09:f8:59:e8:e9:2d:19:04:c8:
58:65:35:77:62:d4:6a:b6:1a:b5:fa:3b:e3:77:b2:c9:8b:e9:
46:29:fa:39:ac:11:f5:fb:cd:31:42:dc:58:1b:ba:7c:d3:e2:
5e:a1:67:1a:e2:4d:18:f2:be:7e:0e:3a:e0:11:4f:4b:00:df:
59:74:67:59:5b:f7:92:5a:5f:48:f2:ee:d5:7d:11:33:99:59:
95:91:21:66:71:ff:d2:e3:bb:31:7e:58:46:d7:27:83:73:bd:
1d:d2:de:95:f7:f9:3f:63:c2:3d:81:fb:e2:9c:28:39:7c:41:
73:ce:80:9c:6d:02:c1:09:de:7f:ba:91:d1:3a:31:bc:04:b4:
f4:ee:e6:17:fe:c7:41:3d:e7:07:67:bb:32:68:85:32:30:17:
61:5e:3c:72:98:6b:2c:56:42:68:22:3e:64:f0:82:09:5a:7d:
09:94:d0:15:e6:61:76:b6:3d:a3:5b:8a:36:96:a9:38:7f:31:
6c:0b:34:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:19:17 2024 by rpki-client on console-fra.rpki-client.org