Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
File: 40B5208BE500E368704ABCF5103C6E71ED3633EE.mft (raw, json)
Hash identifier: 5UCzs0sUvMOSVJXYP15LOoVOOrr4GjqnSxHFi0se7TE=
Subject key identifier: A2:70:36:2A:05:9C:63:63:50:A1:33:01:8D:32:02:C3:0C:D2:A9:96
Authority key identifier: 40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
Certificate issuer: /CN=40b5208be500e368704abcf5103c6e71ed3633ee
Certificate serial: 144B21F65FB1DA6D600408348DC0C261982E82F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
Manifest number: 0304
Signing time: Mon 25 Nov 2024 03:35:13 +0000
Manifest this update: Mon 25 Nov 2024 03:30:13 +0000
Manifest next update: Tue 26 Nov 2024 07:00:13 +0000
Files and hashes: 1: 40B5208BE500E368704ABCF5103C6E71ED3633EE.crl (hash: q3e2/vCM+aiMHshuIG8und6ryTxnQCDn128UCYQon50=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:4b:21:f6:5f:b1:da:6d:60:04:08:34:8d:c0:c2:61:98:2e:82:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b5208be500e368704abcf5103c6e71ed3633ee
Validity
Not Before: Nov 25 03:30:13 2024 GMT
Not After : Nov 26 07:00:13 2024 GMT
Subject: CN=A270362A059C636350A133018D3202C30CD2A996
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:21:c0:c6:0d:b3:e5:62:6a:fb:57:b2:e4:02:
94:98:42:41:5a:9e:35:7d:81:95:ac:a9:57:89:17:
af:b3:36:18:45:e5:88:c8:15:f9:42:3c:2e:a9:11:
53:3e:ac:b3:1f:63:27:ec:43:14:01:83:3d:98:10:
cd:4d:8c:8b:78:f5:b3:41:bb:be:1f:67:0f:cd:65:
a1:70:06:49:5b:c8:db:db:37:f3:14:c1:a6:72:e4:
12:cf:4f:c8:25:52:9e:35:06:82:79:0a:73:68:8d:
1b:04:9d:aa:5f:67:f6:62:a8:c5:19:58:83:0c:b7:
76:94:4b:86:80:2c:27:25:6a:7e:53:61:e1:5e:3b:
f6:c3:a5:20:cb:30:61:08:a9:52:61:8c:e4:44:c1:
e6:95:9d:14:3b:46:0c:e8:43:9f:1e:e7:3b:2d:aa:
e5:e9:90:fa:4f:5f:72:41:e9:c3:14:e9:e0:ee:fd:
b9:87:43:4c:93:01:57:71:6d:84:85:23:02:9c:1d:
76:59:ab:7e:25:0c:8a:12:fd:de:b3:9d:de:b8:b3:
b6:ef:d2:8e:38:05:04:50:9e:22:e3:c8:dc:c8:16:
39:fc:d2:8c:51:2a:5e:3b:a2:8a:a1:e5:28:49:0c:
dc:75:76:a5:88:c0:cc:9d:ba:70:37:b9:c7:8a:ef:
46:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:70:36:2A:05:9C:63:63:50:A1:33:01:8D:32:02:C3:0C:D2:A9:96
X509v3 Authority Key Identifier:
keyid:40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:16:be:2c:de:09:d1:0f:8d:d9:f1:25:1c:f3:e1:3f:5f:29:
f4:4c:5a:6b:f5:96:ca:27:0e:a3:e0:65:6c:9f:f3:91:c9:dc:
2a:2b:3b:0b:e6:48:e5:90:ed:54:a6:26:a3:18:79:be:94:17:
4a:a8:31:cf:4f:e2:77:89:2c:d2:62:36:b2:a0:1a:b4:62:60:
e9:53:99:2c:0c:da:61:9e:1d:af:ca:c0:60:32:99:cd:02:50:
f7:43:d7:b6:18:8c:29:98:86:e9:ee:26:ee:60:33:9a:57:36:
81:f3:28:7f:e8:ee:91:f4:86:f3:8a:1a:ea:1e:88:a0:16:57:
89:db:aa:51:14:a1:a7:fd:a1:f0:30:ea:3c:06:6f:8f:f2:cb:
b2:39:e9:1c:90:ce:29:24:fc:c1:47:0f:42:da:42:4a:3b:3e:
4f:17:2d:69:88:df:5e:ff:5b:82:f6:ce:ac:85:1f:24:55:a5:
bc:ba:e1:df:98:49:03:77:db:e2:3f:3f:d7:6e:83:79:0b:27:
cb:b1:9c:66:7e:8b:30:17:71:10:c2:b4:8f:ae:9c:23:4d:ff:
48:60:5c:eb:19:bf:e0:5c:4e:29:61:8d:14:ef:03:93:11:4f:
f6:ad:3a:08:38:af:8d:e5:1e:30:3f:d4:93:f2:93:38:33:72:
18:a0:6c:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 04:59:53 2024 by rpki-client on console-fra.rpki-client.org