Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
File: 63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft (raw, json)
Hash identifier: qZXTC//UyDpvzTuiguDmqP+kvBL2Y50RFLXoII60WQc=
Subject key identifier: AF:49:24:D0:BE:FB:88:CC:4F:19:20:A5:8C:B9:9E:8A:24:21:A6:FE
Authority key identifier: 63:F7:B2:93:71:E8:14:33:6C:52:D9:C4:3D:1A:F4:F9:FA:33:E8:55
Certificate issuer: /CN=63f7b29371e814336c52d9c43d1af4f9fa33e855
Certificate serial: 40D9410085D00BFC67681D47E0E076A08569691D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y_eyk3HoFDNsUtnEPRr0-foz6FU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
Manifest number: 4B
Signing time: Fri 17 May 2024 19:21:42 +0000
Manifest this update: Fri 17 May 2024 19:16:42 +0000
Manifest next update: Sat 18 May 2024 21:55:42 +0000
Files and hashes: 1: 63F7B29371E814336C52D9C43D1AF4F9FA33E855.crl (hash: YkOk5c9lqAv910EDQXKQbwzBfeqQpOe99ArdWIks9TQ=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.crl
rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y_eyk3HoFDNsUtnEPRr0-foz6FU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:d9:41:00:85:d0:0b:fc:67:68:1d:47:e0:e0:76:a0:85:69:69:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63f7b29371e814336c52d9c43d1af4f9fa33e855
Validity
Not Before: May 17 19:16:42 2024 GMT
Not After : May 18 21:55:42 2024 GMT
Subject: CN=AF4924D0BEFB88CC4F1920A58CB99E8A2421A6FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:75:6e:8c:e7:5c:1c:50:30:7c:4b:d3:3a:e7:
6b:69:72:a4:db:02:30:cd:a4:53:cd:f9:c0:cd:06:
b8:bb:e4:54:4a:f3:3d:26:9e:9a:ae:4a:b5:62:d4:
9d:ee:06:64:d5:a1:57:66:1d:10:65:b0:c7:b7:6b:
74:8f:e8:4b:56:c7:de:c8:15:e2:66:94:56:68:c3:
78:5e:11:c3:13:fc:0c:ff:ef:95:e3:73:f4:61:e0:
f8:a0:64:81:be:cc:a6:ca:cc:22:6a:d5:df:aa:81:
9a:48:48:7f:52:f5:24:b3:60:e3:5a:ac:42:f4:e4:
eb:e1:85:5d:f1:74:ad:7b:ca:08:eb:05:60:4c:45:
89:d0:55:c2:e1:8f:f9:4a:c8:c8:e0:5a:16:49:67:
9f:b9:00:cb:a7:c5:b0:e2:24:a1:d4:b4:5f:d8:b9:
8e:da:12:b6:27:0d:6e:7b:2a:a3:9a:4c:69:9d:53:
42:b2:fe:d3:70:33:14:0e:bd:0d:f3:c3:1c:38:de:
75:75:51:f9:9f:78:25:61:fd:53:fe:8f:b1:95:8c:
99:62:0c:e3:12:f9:55:7f:40:08:9f:47:8e:45:1f:
2d:c9:56:b6:2f:a3:49:3d:28:48:bd:a8:b0:0f:ee:
f6:c7:a6:1a:6d:bf:91:98:9d:c2:a9:e6:9e:f5:d8:
5b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:49:24:D0:BE:FB:88:CC:4F:19:20:A5:8C:B9:9E:8A:24:21:A6:FE
X509v3 Authority Key Identifier:
keyid:63:F7:B2:93:71:E8:14:33:6C:52:D9:C4:3D:1A:F4:F9:FA:33:E8:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y_eyk3HoFDNsUtnEPRr0-foz6FU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:a3:bf:25:be:a3:a2:93:ae:56:ad:36:a1:05:52:af:71:38:
4b:2b:70:7d:5e:d1:69:b4:41:2f:e1:f3:d9:2d:01:69:da:42:
8c:aa:70:a1:ef:a5:73:92:1e:b3:9d:38:9a:74:6d:95:b7:1b:
9a:94:6b:82:6a:03:67:e8:b9:62:64:07:dd:1d:00:37:d5:db:
5d:26:5d:bc:2b:48:b5:43:fc:fa:18:8b:5b:cf:7c:e4:fb:c5:
9a:87:da:8d:01:8e:ed:9a:2b:54:86:a3:f6:f0:a8:7a:c2:e5:
1a:85:75:a2:6a:42:80:1a:03:e6:34:13:17:43:f0:c1:91:13:
7e:e4:52:3d:cc:ce:14:97:ce:5e:2d:97:8e:57:1e:07:29:db:
eb:c4:e3:98:61:5a:fa:88:49:12:83:25:0c:72:b4:ac:15:a4:
8a:ab:f7:a1:de:3d:e1:3b:a9:8b:2f:db:84:0d:6a:82:ed:16:
2b:be:3d:ab:34:90:43:28:c5:08:ba:8f:4c:5c:ba:71:45:25:
6a:c3:64:40:f3:f2:f1:15:e4:18:9a:ff:21:79:5c:b4:b3:86:
ae:94:50:3c:2f:08:02:9d:e9:59:51:df:47:7f:99:33:9d:87:
eb:34:66:a8:d6:c7:9e:07:ce:16:d5:ef:ab:43:5e:73:ad:34:
9a:f0:a3:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 20:21:17 2024 by rpki-client on console-fra.rpki-client.org