Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.mft
File: LKyEzuxXs1-jlTSuIwCa6oICOao.mft (raw, json)
Hash identifier: ggrp/EOVbRWq8Ppn0IZbGbni/FXHc+5utjZlC3NZPVg=
Subject key identifier: 41:5B:67:F3:8F:62:42:4C:D5:8F:E7:E9:91:42:33:36:12:46:0E:42
Authority key identifier: 2C:AC:84:CE:EC:57:B3:5F:A3:95:34:AE:23:00:9A:EA:82:02:39:AA
Certificate issuer: /CN=2cac84ceec57b35fa39534ae23009aea820239aa
Certificate serial: 0193579B84BAC872424919989A23DB47D424
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LKyEzuxXs1-jlTSuIwCa6oICOao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.mft
Manifest number: 0596
Signing time: Sat 23 Nov 2024 06:00:29 +0000
Manifest this update: Sat 23 Nov 2024 06:00:29 +0000
Manifest next update: Sun 24 Nov 2024 06:00:29 +0000
Files and hashes: 1: LKyEzuxXs1-jlTSuIwCa6oICOao.crl (hash: Tdd6HD+0w/KH1wujdIqTgtFBMntPW4IuIAqISoA6sGY=)
2: QewG02ZmelbxArTx7szw1Mk3Nr0.roa (hash: gTVn4ttNO2Ov+7Fc8KtyTVJwhEDAdXu6AU5zdFXkbF4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.mft
rsync://rpki.ripe.net/repository/DEFAULT/LKyEzuxXs1-jlTSuIwCa6oICOao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:84:ba:c8:72:42:49:19:98:9a:23:db:47:d4:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cac84ceec57b35fa39534ae23009aea820239aa
Validity
Not Before: Nov 23 06:00:29 2024 GMT
Not After : Nov 24 06:00:29 2024 GMT
Subject: CN=415b67f38f62424cd58fe7e99142333612460e42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f2:21:f3:7d:3c:7a:c0:f0:df:f0:d1:b0:02:
40:59:9f:6c:c3:61:6f:23:15:77:0f:8d:a2:a9:8f:
44:3c:a2:c4:94:7a:21:b4:19:76:89:03:63:2b:a3:
f4:a5:52:80:84:27:eb:72:48:1e:46:89:9e:0c:44:
ee:b9:12:62:41:3e:de:7d:fd:5f:4b:b9:f7:81:04:
5c:f3:12:a9:7e:55:b2:92:8e:0f:03:df:b7:61:67:
1d:64:5a:6a:48:04:01:d2:bb:a6:0a:b7:98:d8:9d:
f3:55:c3:26:de:98:0e:f7:94:ad:88:72:fb:60:84:
b8:82:35:bc:cc:e7:85:44:47:6e:e0:0c:3f:e4:c2:
da:c7:b7:e7:8c:3e:1d:d5:95:83:f0:cc:d3:60:df:
79:cf:f3:82:3c:d1:86:42:b2:f9:b0:56:f4:4e:e8:
fa:e7:a7:c6:e0:f3:88:a5:d6:e1:5b:83:72:4f:f0:
6d:9d:f8:3d:94:5e:51:e5:26:ac:3f:0b:f6:3f:63:
2f:90:9b:19:3a:2b:c4:07:e2:0b:c0:5b:2d:6a:4e:
59:ec:71:91:11:46:3c:f6:30:49:f2:58:69:6a:c3:
ea:2a:ab:c9:7a:11:10:48:26:e1:6a:05:ac:d2:fb:
c2:9f:1c:1e:17:7f:22:0c:5b:16:93:1a:60:ca:e4:
2b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:5B:67:F3:8F:62:42:4C:D5:8F:E7:E9:91:42:33:36:12:46:0E:42
X509v3 Authority Key Identifier:
keyid:2C:AC:84:CE:EC:57:B3:5F:A3:95:34:AE:23:00:9A:EA:82:02:39:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LKyEzuxXs1-jlTSuIwCa6oICOao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:cc:d8:4d:5d:01:53:b9:d3:1a:93:d5:18:b1:8a:0b:0f:d6:
86:33:fc:0e:66:0f:94:44:d5:ae:7a:30:04:14:31:43:66:57:
d6:82:b3:4e:86:e1:78:18:99:0a:5c:a0:b7:1b:69:4f:d3:ae:
64:51:41:63:8f:d2:13:6c:bb:94:79:34:5a:f6:a7:82:94:64:
08:bd:d6:be:9d:56:83:c9:5c:1a:78:36:7d:27:67:79:51:34:
6f:5a:f7:20:8b:cb:0d:c1:28:b4:56:fd:59:44:00:22:b0:80:
44:34:d6:af:68:42:05:77:d5:2f:c4:6a:e2:57:a8:07:c0:3f:
a9:5f:ad:08:45:4a:52:af:ac:85:e1:e3:23:74:7a:08:0d:19:
ae:ad:af:66:66:19:6d:da:06:2f:4a:77:58:df:c4:9c:0a:90:
47:26:57:1c:80:b7:4c:ed:e6:38:14:58:da:6e:3f:91:01:ae:
b0:d1:03:00:3c:63:d1:0c:02:4e:f8:7b:19:ed:88:de:74:7f:
2e:a3:6d:66:1d:9a:12:f6:3a:4f:13:45:99:d4:bc:72:c2:96:
19:cd:60:fe:34:79:af:5b:a1:7a:99:a3:0f:10:93:27:79:bf:
b3:7b:67:b6:c6:2a:d2:a1:fe:f5:ee:2d:09:12:72:e5:dc:43:
59:90:a2:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:51:13 2024 by rpki-client on console-fra.rpki-client.org