Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
File: 53A2AA1601CC09214461D03CA771ED50EC1D6325.mft (raw, json)
Hash identifier: jTPZsxNzvtPlDrOeOgRCS7Dzvmp2rESTaIVmoHhwcDM=
Subject key identifier: AA:68:77:EA:9D:04:9F:55:60:53:D6:C1:76:B1:90:3F:A7:E2:26:A5
Authority key identifier: 53:A2:AA:16:01:CC:09:21:44:61:D0:3C:A7:71:ED:50:EC:1D:63:25
Certificate issuer: /CN=53a2aa1601cc09214461d03ca771ed50ec1d6325
Certificate serial: 5E3F4F3FEC079A39D7515B731AC7E3C1A63EBC30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6KqFgHMCSFEYdA8p3HtUOwdYyU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
Manifest number: 0104
Signing time: Fri 22 Nov 2024 11:06:27 +0000
Manifest this update: Fri 22 Nov 2024 11:01:27 +0000
Manifest next update: Sat 23 Nov 2024 13:08:27 +0000
Files and hashes: 1: 53A2AA1601CC09214461D03CA771ED50EC1D6325.crl (hash: mbvE6j4ptFVLjYvlPzJipfN+/jmGuR5ZpaJx/zZ4a/E=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.crl
rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6KqFgHMCSFEYdA8p3HtUOwdYyU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:3f:4f:3f:ec:07:9a:39:d7:51:5b:73:1a:c7:e3:c1:a6:3e:bc:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a2aa1601cc09214461d03ca771ed50ec1d6325
Validity
Not Before: Nov 22 11:01:27 2024 GMT
Not After : Nov 23 13:08:27 2024 GMT
Subject: CN=AA6877EA9D049F556053D6C176B1903FA7E226A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:57:29:04:e9:d5:1d:5d:b1:3d:89:4d:9e:9b:
17:b5:60:5d:16:3d:a4:e9:d1:ee:2c:30:0b:52:c8:
47:47:10:a2:af:f1:3c:e5:fd:00:9e:11:3a:6a:4c:
9d:8f:d6:48:e1:5c:39:95:f2:c7:b5:02:93:23:bd:
e4:46:7a:dc:9a:09:16:f6:63:d7:fc:db:3f:dc:7e:
4e:d1:fe:d3:2c:51:5e:2a:28:c9:e1:50:1d:f5:f7:
c4:b3:9f:1b:01:d0:93:44:37:47:ae:4c:9d:f7:2e:
98:97:87:38:f8:0e:09:55:a1:2d:fd:46:19:af:88:
58:5e:b1:46:76:4b:e9:6e:b6:35:84:96:23:0a:a4:
dd:9f:78:be:51:a0:5b:0c:79:e6:1c:96:f2:1f:9a:
ff:f5:18:3f:85:5d:3d:6e:c0:11:e1:56:d7:04:e8:
29:cb:82:96:7b:2d:b6:0a:b7:0a:81:91:ec:41:03:
45:90:3e:d0:ef:7e:c5:ad:e4:3e:7b:81:b9:dd:76:
37:38:9e:9e:e3:e5:b6:0b:0b:55:70:05:e5:58:e5:
f7:09:b6:e0:4d:0c:8b:55:f3:4c:db:9f:35:f5:92:
8a:0a:27:f7:c2:25:f5:57:4c:b4:79:6c:0e:3b:99:
11:11:cf:96:b8:ba:1b:17:0f:35:5b:00:98:5f:07:
e0:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:68:77:EA:9D:04:9F:55:60:53:D6:C1:76:B1:90:3F:A7:E2:26:A5
X509v3 Authority Key Identifier:
keyid:53:A2:AA:16:01:CC:09:21:44:61:D0:3C:A7:71:ED:50:EC:1D:63:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6KqFgHMCSFEYdA8p3HtUOwdYyU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:5e:a7:17:9f:16:03:71:e3:3d:28:35:4f:83:3b:1c:83:c7:
1a:0c:4e:5e:a7:26:09:78:b5:ee:ad:97:15:16:f8:99:5a:33:
42:ba:fc:61:71:34:aa:ca:6f:ad:00:ca:08:b8:08:70:af:e0:
d2:98:71:5d:3f:b8:55:16:62:13:02:90:24:4a:8e:84:0c:bb:
67:06:73:91:40:d9:0d:88:b3:f4:5c:5d:de:19:2b:3e:60:bc:
70:1c:dc:63:93:68:70:d2:2a:60:07:9c:1b:4e:a5:45:06:6d:
d8:38:d3:2e:e4:fa:da:2f:4a:9d:d2:1d:af:b3:fc:61:1d:1d:
b5:5b:00:c9:4c:e4:2c:6c:ef:95:00:31:4c:ec:35:fb:31:ef:
a1:53:72:5d:ad:7c:31:96:5f:30:ae:03:9e:00:dd:46:7e:34:
56:e7:3c:f3:ca:20:2a:ae:bc:48:d7:3b:5e:b6:37:4e:2f:4d:
3f:21:98:e3:e3:c0:11:bb:30:f5:0a:64:5a:1b:ef:3b:3b:01:
3b:b4:ff:da:aa:94:24:0a:bd:be:41:10:e1:7e:81:43:b4:d1:
e9:5f:89:0d:3d:50:54:9d:70:d4:dd:c5:6c:ef:60:8e:32:ca:
f3:5a:e6:a4:19:29:09:e3:0d:fd:99:d6:72:d2:fa:30:14:72:
ff:ab:49:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:13:20 2024 by rpki-client on console-fra.rpki-client.org