Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/1/F20A9342F5BF4B788A6DA73BF5003344E46047B9.mft
File: F20A9342F5BF4B788A6DA73BF5003344E46047B9.mft (raw, json)
Hash identifier: BsCoVS5NjNza6SNvjB77obzu25ayytoDGxuyKIh4l+E=
Subject key identifier: 77:BE:6F:80:67:53:3C:1E:4A:2B:EF:96:CA:54:2A:F6:64:C3:C5:DD
Authority key identifier: F2:0A:93:42:F5:BF:4B:78:8A:6D:A7:3B:F5:00:33:44:E4:60:47:B9
Certificate issuer: /CN=f20a9342f5bf4b788a6da73bf5003344e46047b9
Certificate serial: 785A47158021996903D93A5536C944B2F30F941C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8gqTQvW_S3iKbac79QAzRORgR7k.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/1/F20A9342F5BF4B788A6DA73BF5003344E46047B9.mft
Manifest number: D1
Signing time: Fri 22 Nov 2024 07:49:52 +0000
Manifest this update: Fri 22 Nov 2024 07:44:52 +0000
Manifest next update: Sat 23 Nov 2024 10:28:52 +0000
Files and hashes: 1: F20A9342F5BF4B788A6DA73BF5003344E46047B9.crl (hash: gIKFqfxWgxYrGxdaEkLDQbD/gfN0seifPRuF7bS1SIY=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/1/F20A9342F5BF4B788A6DA73BF5003344E46047B9.crl
rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/1/F20A9342F5BF4B788A6DA73BF5003344E46047B9.mft
rsync://rpki.ripe.net/repository/DEFAULT/8gqTQvW_S3iKbac79QAzRORgR7k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:5a:47:15:80:21:99:69:03:d9:3a:55:36:c9:44:b2:f3:0f:94:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f20a9342f5bf4b788a6da73bf5003344e46047b9
Validity
Not Before: Nov 22 07:44:52 2024 GMT
Not After : Nov 23 10:28:52 2024 GMT
Subject: CN=77BE6F8067533C1E4A2BEF96CA542AF664C3C5DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4b:fa:c5:08:4c:8e:b7:17:d6:75:ef:57:7e:
f8:7a:66:15:47:32:96:d3:31:08:0e:e0:06:18:2c:
d2:fe:61:b6:66:16:79:9b:cf:06:ad:64:ea:14:33:
44:ff:a6:8b:ef:e0:03:a7:85:6f:0c:5c:2d:db:2e:
15:89:28:36:e4:a6:55:0e:3c:79:b8:62:2c:c5:23:
85:c3:77:44:51:54:25:d7:73:7f:86:74:e2:72:1d:
73:4a:37:64:cf:c7:b9:90:c3:73:72:2a:fb:ff:2d:
bd:f5:a3:c3:26:3f:b5:14:f4:ec:7c:5f:63:dc:b9:
06:e8:a8:a7:34:50:95:df:b2:28:b4:95:de:42:7a:
34:b1:45:e2:12:f6:e2:b9:94:05:f7:a9:23:35:28:
05:a4:24:e7:c2:d6:4a:7b:19:38:36:a0:8f:27:39:
58:f8:a5:fa:b8:75:d7:fe:7e:01:f3:3b:a1:47:2a:
5b:5e:77:13:77:72:ee:d5:0a:62:81:45:1c:a7:05:
16:a6:2a:9b:9c:46:91:fc:38:b9:e3:8a:9a:42:6a:
9d:40:fb:bc:5a:f5:1d:bf:f7:02:46:1c:28:9e:c2:
1d:fb:96:4f:aa:76:9a:75:e4:9b:d5:9f:3d:fb:5f:
d2:da:c2:f6:d1:b2:54:49:68:9b:87:ff:36:a1:a0:
3d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:BE:6F:80:67:53:3C:1E:4A:2B:EF:96:CA:54:2A:F6:64:C3:C5:DD
X509v3 Authority Key Identifier:
keyid:F2:0A:93:42:F5:BF:4B:78:8A:6D:A7:3B:F5:00:33:44:E4:60:47:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/1/F20A9342F5BF4B788A6DA73BF5003344E46047B9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8gqTQvW_S3iKbac79QAzRORgR7k.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/1/F20A9342F5BF4B788A6DA73BF5003344E46047B9.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:a9:10:f7:82:d1:74:d2:9b:03:5f:77:5c:10:97:53:04:ef:
a0:f1:04:7c:39:a2:ee:07:5d:87:86:67:f2:07:6a:61:1b:77:
f6:3f:4d:d9:eb:71:0c:61:1b:94:4c:9f:e6:ff:be:58:36:09:
5c:85:f3:e9:6d:5e:b1:4c:d5:b2:a3:d4:b3:95:18:b8:9a:0b:
b4:de:18:d6:4e:92:42:8c:11:d7:e9:c6:af:6b:94:af:23:f1:
6d:ed:64:b4:9e:6d:60:31:c8:71:ab:05:60:e2:a7:88:0b:07:
47:db:dc:5e:a3:b2:39:b9:a7:a5:37:bd:85:f1:2c:32:55:7d:
65:e0:27:12:0a:88:a6:f5:8b:51:fc:4e:8c:89:f3:6f:cd:39:
e0:86:b5:46:f7:54:38:a2:f6:e9:f4:a8:40:0d:d4:91:e5:a1:
b0:11:ee:74:45:cd:0d:9d:59:a7:77:fb:55:62:fe:c2:5b:94:
4d:a4:df:b6:b8:e8:3d:c4:e8:b7:48:be:1c:90:b1:1f:fa:9e:
0c:eb:e4:db:81:e8:58:79:90:06:71:45:3b:8d:88:72:fb:f1:
88:e8:82:e9:78:c7:43:f5:2f:1d:c7:1a:5e:8f:a7:ca:b0:f1:
19:78:1d:36:5b:38:e5:bf:54:c9:e7:4b:bf:d3:98:c6:d5:b5:
14:26:b7:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:01 2024 by rpki-client on console-fra.rpki-client.org