Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/0/B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.mft
File: B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.mft (raw, json)
Hash identifier: fez+ighlD3fXcKRRg2nMjuyyHi3tnr/BO9XdBa+T3cA=
Subject key identifier: 1C:40:C4:E7:76:CB:9B:B3:71:5D:D7:31:6D:65:7D:F6:8D:C2:A8:AD
Authority key identifier: B8:28:8E:A9:E3:D6:7D:C3:D3:8F:A7:75:18:1C:4B:2C:87:72:9B:DF
Certificate issuer: /CN=b8288ea9e3d67dc3d38fa775181c4b2c87729bdf
Certificate serial: 37A37226C47576FF92238359529CC3B2F33B8B0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uCiOqePWfcPTj6d1GBxLLIdym98.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/0/B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.mft
Manifest number: BF
Signing time: Mon 25 Nov 2024 11:56:21 +0000
Manifest this update: Mon 25 Nov 2024 11:51:21 +0000
Manifest next update: Tue 26 Nov 2024 12:06:21 +0000
Files and hashes: 1: B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.crl (hash: /UKvuAXb2ZbbzXTsXxaSoTG41IeIRr+VEX6TekWljTg=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/0/B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.crl
rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/0/B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.mft
rsync://rpki.ripe.net/repository/DEFAULT/uCiOqePWfcPTj6d1GBxLLIdym98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 11:39:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:a3:72:26:c4:75:76:ff:92:23:83:59:52:9c:c3:b2:f3:3b:8b:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8288ea9e3d67dc3d38fa775181c4b2c87729bdf
Validity
Not Before: Nov 25 11:51:21 2024 GMT
Not After : Nov 26 12:06:21 2024 GMT
Subject: CN=1C40C4E776CB9BB3715DD7316D657DF68DC2A8AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:81:e6:bc:d9:1b:f2:f7:f1:53:56:d7:37:e7:
f5:74:b8:c6:78:47:9b:a0:e6:77:ee:a2:11:98:98:
59:38:90:b5:df:91:1f:6e:40:3b:8e:e9:7f:b8:4e:
ed:e9:67:eb:d2:21:c5:a8:1e:69:80:94:f2:0c:bf:
c1:48:5b:f7:8a:fa:24:d3:8a:59:8f:80:5a:7e:93:
1a:fa:99:79:ea:60:71:0e:b2:93:1e:69:ca:70:90:
69:1e:83:e5:68:12:f6:55:1c:27:4c:ca:fa:9e:a7:
aa:0e:78:8a:d8:a8:b6:0c:88:9a:71:10:64:13:9c:
62:f3:05:48:1c:93:39:a8:9c:e4:78:92:51:b2:c5:
3c:61:b7:03:87:10:40:49:35:e3:a2:9d:99:a6:ab:
a3:7e:05:d6:12:6b:cc:b4:b9:f7:f6:b5:bc:5a:91:
5a:7e:2b:13:58:a8:0e:9e:2e:5f:64:0e:0a:57:aa:
49:c9:e4:cd:bc:10:02:1f:f6:b6:23:b8:c5:55:80:
8c:d6:20:24:16:1d:85:db:66:a4:de:c6:5b:de:7c:
b6:db:8b:ec:2b:ff:2a:1c:e7:96:44:65:14:10:eb:
f2:fd:6f:08:38:a3:65:78:5a:ad:c8:11:2a:03:2c:
07:02:dd:d3:d0:15:e7:8c:04:f9:f0:da:6f:25:83:
bd:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:40:C4:E7:76:CB:9B:B3:71:5D:D7:31:6D:65:7D:F6:8D:C2:A8:AD
X509v3 Authority Key Identifier:
keyid:B8:28:8E:A9:E3:D6:7D:C3:D3:8F:A7:75:18:1C:4B:2C:87:72:9B:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/0/B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uCiOqePWfcPTj6d1GBxLLIdym98.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/0/B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:ac:b6:1b:95:2a:64:52:04:35:ee:6a:06:67:c1:ef:7f:12:
2b:6e:a0:38:ca:81:d6:5f:d3:95:e7:be:36:c0:d7:47:84:05:
17:75:5a:92:3d:14:36:eb:a5:08:e8:3b:b5:62:7e:c5:fb:70:
f7:3b:75:9b:26:0a:2d:21:a7:4d:5d:79:d2:f6:e2:82:1d:dc:
33:6c:32:50:fe:a6:99:a7:12:53:b0:50:ce:98:d1:56:17:09:
54:57:1f:36:77:cb:d6:95:3c:77:aa:14:fe:09:b3:cb:b7:76:
4b:bf:dd:e6:6f:43:84:79:64:32:8b:84:ee:28:eb:79:11:44:
b6:00:3e:53:ba:a0:b7:20:bb:75:30:62:46:1c:30:b1:d4:7e:
f2:7d:16:93:d2:6c:ab:f5:f1:92:b5:73:1c:aa:66:9e:9c:ea:
ae:a0:c0:96:9e:5e:02:1c:61:c4:f0:de:9f:d5:f6:fb:69:dd:
77:a4:b2:c1:d0:86:d4:0d:75:c5:d2:ef:f4:97:9a:a0:a5:75:
2f:ed:82:e9:6f:94:fc:1b:48:3c:a9:73:19:7b:9b:05:b7:21:
e2:60:e8:ff:77:bb:c7:51:f3:c0:fc:84:d7:97:7a:07:29:9b:
d2:a6:5b:0c:c8:7b:a3:65:e0:07:84:e9:1b:27:8c:4d:b6:84:
e8:2b:0c:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 14:20:29 2024 by rpki-client on console-fra.rpki-client.org